IT security tip: Training helps combat phishing
A popup message in Outlook desktop congratulates the user for reporting a simulated phishing attack.
From time to time, the Information Security Office (ISO) provides University of Utah students, staff, and faculty with simulated phishing training opportunities. The intent is to provide a safe option to help users understand what a phish looks like and what to do when they receive one, and follow-up training if they open a link in a simulated phish. The goal is to raise the cybersecurity awareness of university community members and reduce the risk of phishing at our institution.
To help combat phishing, UIT implemented the Phish Alert button (PAB) for UMail accounts. The button is accessible on all supported versions of the Microsoft Outlook client (mobile, desktop, and Outlook Web Access). The PAB, and associated training, are part of a service provided by KnowBe4, an industry leader in IT security awareness training.
While users can still forward emails as attachments to phish@utah.edu, the PAB is the preferred — and easiest — way to report phishing emails, including all simulated phishing messages. You can read more about the PAB in this IT Knowledge Base article or Node 4 article.
Node 4
Our monthly newsletter includes news from UIT and other campus/ University of Utah Health IT organizations, features about UIT employees, IT governance news, and various announcements and updates.