September 30, 2020

Phishing for financial aid credentials

Cyberthieves have been sending phishing email messages tailored to steal student login credentials on financial aid websites. The emails link to phony websites to harvest login credentials for student financial aid accounts, and once the credentials are obtained, thieves change the direct deposit information, re-directing payments to their own bank accounts.

Please note that these messages may be crafted with information about you that may be found on the Internet, a tactic known as “spear-phishing.”

Please visit the Office of the Chief Information Security Officer web page for additional information.