- Institutional Technology
- Phishing Education
The email message you just read and the link you clicked were part of Ringling’s Phishing Education effort. Phishing is when attackers send fake emails with malicious files or attempt to engage you and steal information such as usernames and passwords. The highlighted items below show indicators that the message was not legitimate.
 Attackers will use urgency and excitement to entice you to interact with the email, promising you some kind of reward.
 There are ways for an attacker to spoof any email address; firstname.lastname@example.org is not a real Ringling address.
 If an email is unexpected and vague and is trying to get you to download a file or click a link, it could be fake and you should verify by checking with the sender or get a second opinion from the IT department.
 Hovering over the link shows the target domain to
 While the spoofed page looks similar to the legitimate Ringling website, the domain name is not from “ringling.edu” so it cannot be trusted and could be owned by someone malicious.
 Be sure to scrutinize any site asking you to submit a password.
Phishing attacks are fairly common and it can be easy to fall prey to them. The purpose of this exercise is to increase awareness of how to detect future phishing attempts. By paying attention before you click or download, you can protect yourself and the Ringling community.