Phishing Awareness – Don’t take the bait!

Email is an essential part of our everyday communications. It is also one of the most common methods that hackers use to attempt to gain access to your sensitive information. Most data breaches now start with a phishing attack. “Phishing” uses fraudulent email messages designed to impersonate a legitimate person or organization and trick the recipient into downloading harmful attachments or divulging sensitive information, such as passwords, bank account numbers, and Social Security numbers.

Often these messages will ask you to respond with sensitive information or click on a malicious link. UCI will never ask you to send your password or sensitive information in email. If you receive an email asking you for your password for any reason or an email you suspect is phishing, do not reply to it.

It is good practice to never click on a link but copy and paste it. You can also take this opportunity to quickly look at the link and make sure it looks legitimate. Because determining if a link is fake is not always easy, the OIT Security team now offers an interactive training game to help you learn.

UCI Learning Center Website:

  • Course: Phishing Awareness – Identifying Fraudulent URLs

For additional information on protecting yourself from phishing, see

Learn to protect yourself and UC during National Cyber Security Awareness Month

October is National Cyber Security Awareness Month (NCSAM) and a good time to remind ourselves that the information and systems we use to carry out UC’s mission of teaching, research, and public service must be safeguarded.

Cybersecurity resources

Isaac Straley
Chief Information Security Officer-Risk and Compliance
Office of Information Technology

Joshua Drummond
Chief Information Security Officer-Technology and Operations
Office of Information Technology