If you believe you have inadvertently submitted information to a phishing site, then contact your department’s IT staff or DSC  immediately. If you do not have an IT team, please contact the UCF Police Department  , the Security Incident Response Team ( and refer to the Federal Trade Commission identity theft website:  .

Phishing is the act of convincing someone to surrender their private information (e.g.  bank account number,  Social Security number, passwords)  which  can then be used to commit identity theft. Often phishing is done as spam  email formatted to look like official communication from banks, eBay,  or  other  organizations including UCF.

Phishing messages typically contain a threat that an account will be disabled if the recipient does not re-enter or update their information. The recipient is then asked to click a  bogus web link or reply to the email  and provide  personal information.

Protect Yourself From Phishing Attempts
  • Legitimate businesses do not solicit user account information through email.  Delete all phishing email that you receive.
  • Do not click on links in a phishing  spam.
  • Do not reply to a phishing spam.
  • Contact the company directly.
    • Do not use any contact information listed in a spam.
    • Open a web browser and go directly to the site (if you know the address) or search for the company site.
    • Check  the institution’s website for more information on phishing attacks.
  • Read Spotting Spam  to learn how to identify phishing spam.
  • Learn more about spam on the Dealing with Spam page.

If you have any questions regarding any of these  computer threats, contact your department’s IT staff. If you don’t have an IT team, contact the  UCF Service Desk  at (407) 823-5117.