Close

Iron Rule 1 | Beware of Phishing

Report suspicious emails to phishing@lse.ac.uk

Phishing emails are an attempt to collect your confidential information (usernames, passwords, or bank details) by sending an email pretending to be from a trusted source. 

LSE is heavily targeted by phishing attempts. This is partly due to its large user base, but also because @lse.ac.uk is reputable and our email addresses are easily accessible from our website. 

 

undersea-g2793160a7_1280

Phish Bowl: Dive into real examples of phishing reported at LSE

 

Some phishing signs to look out for... 

  • There are emails/ messages that have been held back, and you need to click on a link and enter your username and password to access them 
  • Your account has been ‘hacked’, and you need to pay in Bitcoins to prevent embarrassing content being sent to all your contacts 
  • Your mailbox has exceeded its capacity, and you need to click on a link and enter your username and password to extend it 
  • There are high-paying jobs (e.g. mystery shopper) or easy low interest loans (up to 200k) available for you if you provide your personal and/or bank details 
  • You’ve been sent an attached invoice that needs to be paid immediately, and the email doesn’t quite say what it is 
  • You’re received a message that isn’t displaying, and there is link text saying ‘view entire message’ 

Advice and Actions 

What to do if you have responded to a phishing attempt

If you have replied or clicked on links contained in a suspicious email, or if you have given out your credentials through the link, please contact Tech Support as soon as possible: tech.support@lse.ac.uk.  

Your account will be disabled while we check for any viruses or malware on your device and your password and security settings will need to be updated in due course. 

How to report a phishing attempt

To report a suspicious email, use the following steps: 

  • Create a new email in Outlook, with ‘Phishing Attempt’ in the subject line
  • Click on ‘Attach Item’ (envelope and paperclip icon) and select the phishing email from the list
  • Send to: phishing@lse.ac.uk 

How to reduce spam

Spam often refers to junk mail or unsolicited emails. 

To minimise the amounts of spam you receive:

  • Be cautious of registering or publishing your LSE email address across various online services or social networks. 
  • Be cautious of the phone apps you are downloading which can share with third parties some of your information, and never respond to a spam, including to ‘unsubscribe’, as this incurs more spam. 
  • Set the email rule under your LSE account, to direct the spam or any other unwanted emails straight to the junk box.  

Protecting personal emails

To protect your personal emails, use the spam email filter. 

Almost all major email services do some basic filtering before messages hit your Inbox, and provide you with options to block unwanted emails. 

For more protection you can also purchase add-on spam tools for your personal machine to weed out and stop junk mail.   

Related Information 

Remember if you suspect an email is not legitimate, do not reply, and do not click on any links or download any attachments. If you have any doubts, contact us!  

 

LSE Phishing LSE Phishing
LSE Phishing Anne Hewitt, Charlie White

Share

understanddata

Iron Rule 2: Understand the Nature of your Data
mfa

Iron Rule 3: Adopt a Layered Approach to Protection
socialmedia

Iron Rule 4: Safeguard Your Social Media
gdpr

Iron Rule 5: GDPR & Your Legal and Ethical Responsibilities