Bee Aware: Recognize, Relax, Rethink… and Report suspicious messages!

May 16, 2024 by James Tucciarone III
Bee Aware Hero: Bee Cyber Fit bee with bullhorn

Did you know social engineering remains a top concern at the university?

Or that artificial intelligence (AI) has increased the complexity and frequency of phishing attacks?

That’s why it’s so important that we know how to spot and report suspicious emails, also known as phishing messages!

Phishing is a common tool cybercriminals use to steal sensitive information. In many cases, cybercriminals are trying to steal your Yale NetID login credentials. Compromised credentials grant access to sensitive data and systems that can result in the loss of tax information, re-routing of employee paychecks, and more.

 

Recognize, Relax, Rethink... and Report suspicious messages

It’s important to be mindful to be cybersafe. This includes recognizing red flags indicating suspicious messages, relaxing and pausing before reacting, and rethinking the way you respond.

  • Recognize malicious messages. If a message seems urgent, too good to be true, or off in any way, trust your gut and do not respond. Learn more about the red flags to look for by getting familiar with our FUDGE model.
  • Relax and be mindful before responding to messages. Cybercriminals know we’re more likely to fall for a scam when we are busy or urged into quick action. Pausing helps us avoid quick responses that can result in loss of time and sensitive data.
  • Rethink before you respond. Replying to a suspicious message isn’t the best response. If you think the message may be malicious, trust your instinct. Don’t respond even if the message seems urgent.
  • Report the message. Even if it winds up being nothing, it is always better to “Bee SAFE, not sorry” and report messages that seem suspicious. You can also call the Help Desk at 203-432-9000 to help confirm the legitimacy of a message. Quick reporting benefits everyone.

Check out our Click with Caution page for helpful tips on recognizing suspicious emails. Remember – it’s always better to be safe, not sorry and report suspicious emails, right away!

How to report suspicious messages

Reporting a suspicious email looks different based on your email service provider. 

  • For Office 365 (O365, a.k.a. Outlook) click on the “Report Message” button and choose “Phishing”. This button is located in the email banner.
  • For Gmail (EliApps), click on the menu button (three dots) to the right of the email date and click “Report phishing”.
  • Alternatively, if you do not have the report message option in your email client, you may forward emails to phishing@yale.edu.
     

Need help?

Check out our Click with Caution page for helpful tips on recognizing suspicious emails. Remember - it is always better to “Bee SAFE, Not Sorry” and report suspicious emails, right away.

For more help, call the ITS Help Desk at 203-432-9000.