The Information Security Office (ISO) continues to see a steady stream of phishing scams on campus. Please be on alert for scammers “phishing” for personal information like your social security number, birth date, user accounts, and passwords — anything that might allow them to steal your money, credit, or identity, or compromise your computer or device. This presents a risk both to you and to Princeton.

Important reminders

• University offices should not ask for personal information by email, nor would any reputable organization. Be on guard — several University email addresses have been spoofed. This is a technique used to trick users into thinking an email came from a person or entity they know or trust (for example, email that looks like it’s coming from a princeton.edu address). 
• If you receive an email asking for personal information, handle this with extreme caution. Common phishing messages claim that an account will close unless you take immediate action and click a link or provide account and password information. These emails are fraudulent. DO NOT respond to them! Learn more about common scams targeting students on the ISO website.
• If you are unsure whether an email is a scam, DO NOT click on any links or attachments provided. Instead check The Phish Bowl or the OIT homepage for alerts concerning phishing attempts reported on campus. If a suspicious email is not posted, report it by forwarding to [email protected]. 
• You can always contact the OIT Service Desk for assistance at 609-258-4357 (8-HELP), [email protected], or chat online. 

Remember that everyone plays a role in keeping Princeton information secure, and it all starts with protecting your netID, password, and personal information. Thank you for your attention.