Phishing
A Phishing email is an email message sent by criminals to get hold of your username and password. Once these criminals have acquired your login details they will use them to, for instance, send SPAM messages from your account. Besides being a source of annoyance to you, phishing also disrupts UM’s and external email services.
ICT Service center
00 (0)43 388 5555
ma t/m vr
8.00 - 17.00
Servicedesk-ICTS@maastrichtuniversity.nl
Recognising phishing mail
Phishing emails usually have subject lines such as “System Administrator” or “Upgrade Your Mailbox”.
Below are the three most common ways criminals use to steal personal information:
- you are asked to reveal your login details by replying to their message
- you are asked to click on a web link and fill in a web form
- you are asked to click on a web link which leads you to a, hardly noticeable, imitation of a UM login page
Please note that these messages are NOT being sent by ICTS or any other UM department. We strongly advise you to delete these emails without opening any links or attachments.
UM SPAM-filter will not immediately recognise all new phishing emails. Therefore, you might still get unwanted emails. However, you can recognise a phishing email by:
- poor use of language
- a reply-to address that does not belong to a UM user
- an internet link (URL) not directing you to a trusted domain
UM will NEVER use email communication to ask you to confirm your username and password. So please delete future messages of this type without taking any further action.
Trusted Domains
A URL starts with 'http://' or 'https://'. The domain part consists of the last 2 entities just before the next slash (/). In http://www.maastrichtuniversity.nl/... '.maastrichtuniversity.nl' is the domain part.
UM's central services use, amongst others, the following domains:
- https://<servicename>.unimaas.nl/...
- https://<servicename>.maastrichtuniversity.nl/...
- http://www.flycatcher.eu/...