Phishing and Cybersecurity During the COVID-19 Crisis

Hackers and other bad actors are exploiting the current global pandemic and particularly targeting University students, faculty, and staff. Below are some tips to help keep you safe online.

Types of Phishing and Social Engineering
Cyber attackers and social engineers will modify their tactics, but there are some common signs to help you recognize an attack. Let’s look at the trends and tactics of a cyber criminal:

Phishing—Using e-mail to trick you into providing sensitive information, replying to the original malicious e-mail, clicking on bogus links, opening attachments, and entering data.

Spear Phishing—These are phishing attempts aimed at specific targets, such as student-athletes.

Baiting—An attempt to hook you in by offering job offers or goods, such as a free device or gift card. If it seems too good to be true, it probably isn’t true.

While the tactics of cyber criminals may seem difficult to spot on the surface, here are some common ways to spot and thwart social engineering attempts while navigating the social engineering ocean. Be cautious of:

• A request or appeal for sensitive, personal information, including social security number, user IDs, passwords, or banking information.
• Correspondence that comes with a sense of urgency—you may be missing out on a deal or service; an impending network shutoff; or even a loss of funds.
• Open communication from a perceived authority, perhaps your bank or utility company.

Remember that these bad actors exploit our willingness to provide information and are good at creating a trust relationship. Being able to recognize social engineering attempts is key, especially if that attempt includes the mother lode of social engineering: the phish.

If you see a suspicious email or believe you might be a victim of fraud, report it immediately to ITS at helpdesk@hartford.edu or 860.768.4357; or Public Safety at pubsafety@hartford.edu or 860.768.7985.