Skip to content
Reading time: < 1 minute

At the beginning of each semester, attackers increase their phishing attempts to UH email accounts in hopes of catching you off-guard. The attackers want your UH username and password.

Their tactics include:

  • Using compromised UH email accounts (including valid signatures) to send out additional phishing emails
  • Threatening termination of your account if you don’t respond
  • Asking you to click on a link and login to view a confidential document stored in Dropbox, Google Drive or other cloud storage services
  • Impersonating legitimate organizations, such as the IRS

Don’t be victimized by these phishing messages, remember the following:

  1. Be vigilant about protecting personal information, such as your UH username and password and your social security number. NEVER respond with any personal information (like your social security number) to an unsolicited email.
  2. Be careful when clicking on links in unsolicited messages, particularly when the link points to a website that does not begin with www.hawaii.edu or (something).hawaii.edu.
  3. Be safe, if you think you may have provided your UH username and password in response to a phishing message, change your password immediately. You can check your Google@UH login activity by following these simple instructions.

If you have any questions about the validity of an official-looking communication, check the ITS website for a list of reported phishing attempts or contact the ITS Help Desk.

For more information about on-going phishing attempts at UH, please read this Phishing at UH article.

Back To Top