Phishing Awareness and Prevention

phishing-prevention-and-awareness-banner

On behalf of the Chief Information Officer, 

In response to global trends and other emerging threats related to information security, in 2021-2022, President Stokes asked UNM IT to make a focused effort on accelerating improvements to our security controls.  Our next effort addresses phishing awareness and prevention.  

Ninety-one percent (91%) of all cyberattacks start with a phishing email. Phishing emails are the most common approach to getting personal information, username (NetID) and password, and access to an institution’s environment. To help educate our students, faculty, and staff, and prevent phishing, the UNM Information Security & Privacy Office (ISPO) will implement phishing awareness training along with an improved approach for reporting suspect messages and spam.  

NOTE: These changes apply only to UNM LoboMail (unm.edu) users. These changes do not impact the security controls for HHS accounts or other email accounts that are not managed by UNM IT.

What does this mean for you? 

Beginning 04/18/2022, all LoboMail users will be sent a simulated phishing message once per quarter. The simulated phishing email will leverage specific methods that adversaries commonly use to deceive the recipient. These include messages that create a sense of urgency, play on emotions, invoke curiosity, and/or include links or attachments. If someone is successfully phished in our awareness campaign, they will be prompted to complete targeted training that provides useful information on how to identify a phishing message. 

By using the new ‘Report Message’ feature to flag a phishing or spam message, UNM students, faculty, and staff help improve message screening and prevent further spread of phishing messages. To report a phish, simply click on the appropriate ‘Report Message’ button in your email.  Specific instructions vary by browser or device, see FastInfo 7931.  

See FastInfo 7930, “What is a Phishing Email?” for more information, including how to identify a phishing email. 

See FastInfo 7929, “What is Spam?” for more information.  

For assistance with UNM IT services, please contact the UNM IT Service Desk at 277-5757. Hours of operation are Monday – Friday, 7:30 a.m. to 5 p.m. 

Due to the healthcare nature of UNM Health and Health Sciences (HHS), there may be variations to services and support for HHS students, faculty, and staff.  If you experience any issues regarding HHS technology services, please contact the following: During regular business hours, 8-5, Monday – Friday, contact the Health Sciences IT Service Desk at 505-272-1694. Outside of regular business hours contact the Health IT Service Desk at 505-272-3282 (2-DATA).