Skip to Content Skip to Footer Accessibility Concerns

Phishing Email Scams

To further enhance the District’s cyber defenses, we want to highlight a common cyber-attack that everyone should be aware of –phishing. "Phishing" is the most common type of cyber-attack that affects organizations like ours. Phishing attacks can take many forms, but they all share a common goal –getting you to share sensitive information such as login credentials, credit card information, or bank account details. Although we maintain controls to help protect our networks and computers from cyber threats, we rely on you to be our first line of defense. Phishing scams can come in a variety of styles with a goal to get different information from you.
 
phishing exampleCommon phishing emails impersonate a real company to obtain your login credentials. You may receive an e-mail asking you to verify your account details with a link that takes you to an imposter login screen that delivers your information directly to the attackers.

Some phishing emails includes customized information that makes the attacker seem like a legitimate source. They may use your name and phone number and refer to Dysart in the e-mail to trick you into thinking they have a connection to you, making you more likely to click a link or attachment that they provide.

A growing threat is scams that impersonate a real district administrator. Using a fake domain that appears similar to ours, they look like normal emails from a high-level administrator, typically the Superintendent, Principal, or CFO, and ask you for sensitive information (including usernames and passwords).

Another imposter email is one appears to come from file-sharing site like Google alerting you that a document has been shared with you. The link provided in these e-mails will take you to a fake login page that mimics the real login page and will steal your account credentials.
What you can do to avoid these phishing schemes
Please observe the following email best practices and review the examples below:
 
 
  • Do not click on links or attachments from senders that you do not recognize. Be especially wary of.zip or other compressed or executable file types.
  • Do not provide sensitive personal information (like usernames and passwords) over email.
  • Watch for email senders that use suspicious or misleading domain names.
  • Inspect URLs carefully to make sure they’re legitimate and not imposter sites.
  • Do not try to open any shared document that you’re not expecting to receive.
  • If you can’t tell if an email is legitimate or not, please do not click on links and let IT know.
  • Be especially cautious when opening attachments or clicking links if you receive an email containing a warning banner indicating that it originated from an external source. Thanks again for helping to keep our network, and our people, safe from these cyber threats.


visa phishing exampleamazon phishing examplephishing example