The IT Security Office posts copies of all Cornell-targeted phishing messages to the “Phish Bowl.” We realize that there are many phishing and spam messages that do not make it to the Phish Bowl because they do not specifically reference Cornell or its services. These messages are still important to report, even if you don’t see them in the Phish Bowl. You can view the Phish Bowl here to see if the message you’ve reported is already listed:
https://it.cornell.edu/phish-bowl
*If you see the e-mail you received already listed in the Phishbowl, please go ahead and just delete the e-mail and empty your Deleted Items folder to completely remove it.
*If the e-mail is NOT listed, instructions are below on how to report the e-mail to security-services@cornell.edu. (Please cc me at wsbnit@cornell.edu on the e-mail as well so I’m aware of it.)
You can also check the Verified Communications website to see if the message you received was legitimate communication from Cornell. (note: NetID login is required to view this website):
https://it.cornell.edu/verified-cornell-communications
For more information on how to spot phishing messages and to learn tips to help protect yourself against them, feel free to view these references:
WHAT IF I CLICKED THE LINK/ATTACHMENT?
—————————————————————–
Most phishing links take users to fraudulent websites where recipients are asked to fill in their personal information or their account credentials. However, it’s still important to exercise caution with links as they can be for malicious websites, as well.
Please also exercise caution with attachments, even from email addresses you recognize. If you’ve opened an attachment from a phishing e-mail, please disconnect your computer from the internet and let your local and/or regional IT person know immediately.
WHAT IF I SUBMITTED MY ACCOUNT CREDENTIALS?
—————————————————————————-
Please change your Cornell NetID password and security questions from a known secure computer as soon as possible. You can change your NetID password and security questions at this website:
HOW DO I REPORT THESE MESSAGES?
————————————————————————–
Providing full email headers help the IT Security Office fully respond to phishing reports because the sending details are located here. You can either forward the original message as an attachment or copy/paste the full headers into a new email sent to security-services@cornell.edu. Here is how to find the headers using your email client of choice: