If you receive a phishing email that appears to come from the University of Otago, don't open any attachments or click on any links. Report any spear phishing emails you receive to AskOtago:
Send AskOtago an original copy of the email containing full header information. The header is located at the top of an email and includes the tracking information of the path an email took as it crossed mail servers:
If you think you may have responded to a spear phishing email by clicking on a link or attachment and could have accidentally disclosed your University of Otago password or other personal details, change your password immediately and report the email to AskOtago.
If the phishing email appears to come from an outside organisation:
- Delete the email.
- Do not respond, enter any personal information, open any attachments, or click on any links.
If you have accidentally responded to this type of phishing attempt, you need to contact the organisation (for example, your bank) that the phishing attempt "claimed" to come from to find out what you need to do.