Red Flag on a BeachPhishing Red Flags

The following are examples of suspicious emails that should be deleted. If you believe that you have sent information through a suspicious or phishing email please contact

Password Requests

Phishing emails or forms sometimes ask for your personal information, like your username, password, or birthdate. You may be asked to send your information by email, or the email may link to a fake web form or a fake login page. If you fill in the form, you are giving the hackers your information.

No representative of the Mount, such as the IT&S Help Desk or the Registrar’s Office, will ask you for the type of information, especially passwords.

The only time we will ask you for account information is when you contact the IT&S Help Desk. The Help Desk staff may ask you for some questions to verify who you are before resetting your password or any other account changes.

In this example, you are asked to provide your username, password, and date of birth by email, which IT&S will never do.

Phishing Example - Request for Password

Account Verification

Phishing emails will often ask you to verify your password by clicking on a link. The Mount does not do this.

Do not click on links within suspicious emails, even if the message seems to be from someone you trust.

Do not send your personal information in an email.

Emails from IT&S will minimize the use of links, but if we do send a link, it will be at

In this example, you are asked to click a link to verify your account, something IT&S will never do. As well, it appears to come from (a fake address) not


Poorly Written

Phishing emails are often poorly written. They may have grammatical, spelling, capitalization, or punctuation errors.

This example is riddled with capitalization, grammatical, and punctuation errors.


From an Unfamiliar Email Address

Emails from the Mount’s IT&S Department will come from an individual’s email address ending in or from For instance, if you get an email from a Yahoo account claiming to be from the IT&S Department, you will know that it is phishing.

Unfortunately, phishing emails sometimes appear to be from a real email account, and this is called spoofing.


Threatening or Urgent

Often phishing emails will try to scare you into clicking a link. They may threaten to delete your account. They may say something is very urgent, and you need to fill out a form by a certain deadline.

IT&S will never send threatening emails.

Beware of final warnings and consequences of account deletion or deactivation, like in this example:


Links to Unfamiliar or Strange Websites

Before clicking on a link, you can check the URL by moving the mouse cursor over the link without clicking it. In Outlook, the URL will appear for your inspection. Do not trust links to sites you don’t recognize.

You can check the URLs of links by hovering your mouse cursor over the link without clicking on it.



Phishing emails may have attachments posing to be things like contracts, forms, or shipping labels. Often they are Word, Excel or Zip files. These attachments could contain viruses, so do not open attachments from people you don’t know or if you suspect it is a phishing email. Some attachments may be password protected, but these even are more dangerous because your antivirus software may not be able to scan them.

bmo-payments - pop up

Too Good to Be True

If it’s too good to be true, it might be phishing.

For instance, offers of free trips or merchandise should be treated as suspicious.

You did not initiate the communication

If you have no reason to expect this email, you shouldn’t trust it. For instance, if you get a shipping label emailed to you, but you didn’t order anything, that would be suspicious.

Just doesn’t look right

Lastly, it just might not look right. Trust your instincts if the email seems fishy.