Below you'll find some examples of current phishing emails seen on campus. The most recent examples are listed at the top of the list.
If you get a suspicious email but don't see it listed here, Do NOT assume it is safe. There are many variants of every phish, and new ones are sent each day. When in doubt, consult with your IT support staff or the ITS Help Desk.
Report suspected phish messages to the UI Phishing team using these instructions. However, if you see a particular message you received on this page, there is no need to report it as we are already aware of it.
Still aren't sure if your email is phishing or not? Here are some tips to recognize phishing scams.
- Never Download images in Phish messages.
- Never Click links in suspected phish messages. Hold (Hover) your mouse over the link to preview where it goes but do NOT click.
- Carefully check the FROM address to make sure it is coming from the person you think
- Never reply to a phish message.
Multiple variations of messages with your email Display Name as the subject. Email contains a link that they want you to click.
eg: "Please confirm." or "Please see attached"
Email with a displayname of someone you know but with a non-uiowa email address such as @gmail.com. Email asks 1) if you are available and they need your help or 2) Send me your available text number that I can reach you at or 3) email asks for a gift card or some form of funds.
If you reply to the message you receive this:
Note: We never allow you to extend or keep an expired password
Message from "Uiowa 2020-03-20 16:19" or Uiowa@ some non UI domain or similar