University employees have recently received an influx of phishing emails resulting in account compromises and malicious downloads. Although the spring semester is coming to a close, cybercriminals don’t take a summer break.

Recent successful phishing scams include:

• Emails about compensation
• Emails about a student report
• Electronic signature requests that resemble Docusign or Adobe Acrobat Sign
• Event invitations

If you interact with these emails, your account may be disabled to protect university systems. Depending on the volume of affected users, it could take up to 24 hours to restore access.

Follow These Steps

1. Be suspicious: Watch out for unexpected emails and downloads. Verify the sender, even if they seem familiar or the email comes from an ‌ncsu‌‌.‌‌edu address.
2. Take your time: Hover over links — or carefully press and hold on a mobile device — to see where they point. If the destination is unclear, do not click.
3. Ask for help: If you suspect phishing, do not reply or forward the email. Report it directly to the Office of Information Technology. For additional support, contact the NC State Help Desk via the NC State IT Service Portal or call 919-515-HELP (4357).

Learn more about phishing. For monthly tips to help you stay safe online, subscribe to OIT News.