Phishing is a form of email fraud. It is a malicious attempt to trick a recipient into providing credentials like their Lafayette NetID and password. Though there may be some overlap, phishing and spam are different. Spam is unsolicited marketing email and does not attempt to collect your personal information.

Phishers try to look like an entity you trust to make you disclose your private information. Messages called phish appear to come from a reputable source, such as the Lafayette Help Desk, a trusted online service, or a credit card company. While email is the most common channel, the same tactics show up in text messages and phone calls, too.

Phish might have Subjects like “Lafayette email update” or “Email account termination” and instruct you to click on a link and “log in and update your account.” A message might look legitimate, but today’s phishing emails are often written or cleaned up with AI, so misspellings and bad grammar are no longer reliable giveaways. The signals that hold up are below.

How to spot a phish

  • A sense of urgency: pressure to “act now or lose access.”
  • An unexpected request: a message you weren’t expecting, especially one asking you to log in, pay, or confirm details.
  • A From address that doesn’t match: the sender’s address doesn’t line up with an official Lafayette or company contact email.

A message might look legitimate, but today’s phishing emails are often written with AI, so misspellings and bad grammar are no longer reliable giveaways.

Remember

  • Information Technology Services will never ask you for your password.

What to do

  • Be discriminating. Look for the clues detailed above to spot forms of fraudulent email. A legitimate message won’t prompt you for sensitive information.
  • Report it. Reporting phish helps ITS spot and shut down campaigns that target the campus. It protects everyone, not just you. In Gmail, open the suspicious message, click the three-dot menu in the top right, and choose Report phishing. When in doubt about whether a message is a phish, contact the Help Desk at help@lafayette.edu or (610) 330-5501 for guidance.
  • Block and delete. After reporting, block future emails from the sender and delete the message. StaySafeOnline.org explains how to block senders.
  • Educate yourself. Use the resources below to keep your digital identity safe.

Other forms of email fraud

Spear phishing

Spear phishing is email spoofing that targets a specific individual or organization in order to gain access to systems like email. Messages might be personalized, look authentic, and appear to come from a Lafayette email address. Pay particular attention to emails that appear to come from Lafayette College Webmail Services, ITS Help-Desk, Help Desk Support, or System Administrator. These messages may include an official Lafayette logo and include instructions to click on a link.

Ransomware

Ransomware attacks also impersonate a trusted sender, but involve an attacker requesting a recipient download an attached file. The file contains ransomware, a type of malware that encrypts files on a computer or shared drive and literally holds data hostage. A warning that files are encrypted may appear. A victim cannot decrypt the files unless they pay a monetary ransom.

  • If you cannot open files and suspect ransomware, do not pay the ransom. Immediately contact the Help Desk at help@lafayette.edu or (610) 330-5501.

Wire Fraud

Wire fraud is another type of targeted phishing that tries to trick an employee into providing payment for an invoice. The phish might state the invoice is past due and a late fee is pending. The message appears to be from someone with whom the employee has an established business relationship.

  • If you receive an email asking for payment of an invoice, check your records and communicate directly with your contact at the entity requesting payment.

Think you've been targeted?

  • Think you gave up your NetID and password? Change your password and immediately contact the Help Desk at help@lafayette.edu or (610)330-5501. After changing it, update your password on any mobile device configured to access your Lafayette email or calendar. If you are unable to reset your password, contact the Help Desk.
Tagged in: