Be careful what you click on!

A cool thing about your Google Apps @ NC State account is that you can easily share documents with others. However, this type of sharing can also open your cyber door to data predators, like phishers!

In 2014, the Office of Information Technology (OIT) has seen an uptick in phishing attacks targeting the campus community. More than 200 individuals with university accounts have fallen prey to these attacks, causing their accounts to become compromised, and thus suspended.

OIT reminds you to be “click-savvy” when it comes to links to Google docs or websites within an email and offers the following advice.

What does a phishing email look like?

In recent phishing attacks, campus users received an email (possibly from someone they knew whose account had been hacked) that included a link to a Google doc with a message similar to the following:

“Please view the document I uploaded for you using Google docs. Click here just sign in with your email to view the document its very important. Thank you.”

As with many phishing attacks, the grammar is poor, but it could sound legitimate if coming from a friend or classmate you are working with.

Another red flag of a possible attack is a link that requires an additional login in order to open the document. You shouldn’t have to sign in again if you’re following a link from a Gmail session where you’ve already been authenticated. Clicking on the link can actually start a chain of events that can lead to your account being compromised.

To see specific examples of phishing sites, visit the Google Docs Phishing Gallery.

How can I tell if the document link is legitimate?

  • If you’re a desktop user, you can just hover over the link to see where it is going. In this latest campus attack, users were directed to a website in Russia, not to google.com.
  • If you’re a mobile device or tablet user, you need to be extra careful! Learn how to view a link in your specific device without clicking on it, or just wait until you are on a desktop browser and can confirm the link is going to a valid address.

Why do phishers always try to steal passwords?

Phishers typically try to gain access to your password to send more spam. However, some phishers look for financial or other personal information, which can lead to the theft of your identity.

How can I protect myself?

  • Always use different passwords for different online accounts. Make sure that your email password is not the same as the one for your online banking account.
  • Never store credit card or other personal information in your email account.
  • Use Google’s 2-Step Verification for an extra layer of protection for your account.
  • Visit the Data Privacy Month 2014 website for other suggestions for staying safe online.

If you receive a phishing email, forward it to abuse@ncsu.edu or call the NC State Help Desk at 515-HELP (4357). Remember, the Help Desk staff will never ask for your password via email or over the telephone.