Phishing is...

a form of Internet fraud. It consists of scamming people by e.g. luring them to a fake website, which is a copy of the real website and getting them to log in there - unsuspectingly - with their login name and password (or their credit card data). As a result, the fraudster obtains this data with all its consequences.

Phishing messages are regularly sent to UGent e-mail addresses. The intention is simple: to request your login name and password in order to abuse your account, e.g. by using your account to send spam or to gain unauthorized access to UGent applications such as Oasis, Minerva, Athena or SAP.

If account information (login name, password, codes, ...) is requested via e-mail (including via reference to a website) it is always phishing.

How do I report phishing mails?

Report phishing mails in Outlook on the web

Select "Report phishing" under the "Report" button in the menu bar. Or right-click on a message and select "Report Phishing" under "Report."

Report phishing mails using Outlook for Windows and Mac

1. Click on an email to view the message.
2. Select the option "Report phishing" in Windows (via Start) and Mac (via the 3 dots).
3. Select "Phishing" in the pop up menu.

Report phishing mails using Outlook for iOS and Android

1. Tap an email to view the message.
2. Tap the 3 dots in the upper right corner of the message.
3. Select "Phishing".

What is UGent doing against phishing?

• UGent provides extensive filtering of the e-mail traffic
• UGent is raising awareness and training with simulated phishing emails
• UGent is doing every effort to keep the many cyber threats under control is made, but information security is a responsibility of all UGent staff and students.
• ...

What is spam?

A collective term for junk mail (and unwanted advertising messages on websites).

Characteristics of spam messages:

• the messages are sent in large quantities, to thousands of people simultaneously.
• the messages have a commercial purpose. The messages usually refer to a product or website.
• the messages are sent or posted without permission or knowledge of the site, or the recipient.
• the messages may seem to be sent by yourself.

How do I report spam mails?

1. Open your mail in https://outlook.office.com/mail
2. Click on the 3-dot menu.
3. Choose the Save option to save the mail as an eml file.
4. Send a mail to spam@ugent.be with the eml file attached.

Please visit Save an Outlook message as a .eml file, a PDF file, or as a draft for more details.

What is UGent doing against spam?

• UGent is taking measures to combat spam.
• UGent is doing every effort to keep the many cyber threats under control is made, but information security is a responsibility of all UGent staff and students.
• ...

The IT security team (ICT) regularly sends out simulated phishing emails (campaign) to raise IT security awareness at Ghent University.

• If you correctly reported such a simulated email as phishing, you will receive a message about this. You can check your score on your personal dashboard at the Phished Academy.
• If you click on a link in such a simulation email, a page will open that clearly states that you have clicked on a link in a phishing simulation email.

Please do not send emails to the helpdesk if you have clicked on a phishing simulation.

• If you entered data on a malicious website, always reset your Ghent University password.
• If you downloaded files from a suspicious website, always reset your Ghent University password.
• If your work computer is not yet included in Intune, contact your local IT manager so that your computer can be included in Intune.
• If you suspect further suspicious activity on your computer, contact your local IT manager or the helpdesk for further analysis.