4. What you can do to help us

If you recieve an email that is asking you to divulge your login details for a University service you can help OUCS by reporting these. We would far rather receive multiple reports of a particular scam than fail to receive any; user reports are vital to us in setting up appropriate countermeasures.

Please send emails to phishing@it.ox.ac.uk, but please note that as well as the message body, we require the 'full headers' of the email in order to trace the origins of a message. The full headers will include one or more lines starting "Received: ". Please see our instructions on how to view and forward full headers on a variety of common email platforms.

4.1. What to report

We encourage you to report any phishing attempts which might deceive others into revealing login information for one or more University services. Many scams do not specifically mention University services but use generic terms such as "your webmail account"; we encourage reports of these as some users may fall for them.

4.2. Other phishing

Please note that there is no need to inform OUCS of phishing scams which clearly directed at external services, such as online banking, Ebay, Paypal, Hotmail, Amazon, etc. While University members may fall for such scams, doing so does not directly place University services at risk. OUCS is not well-placed, and does not have the resources, to take action as a result of such scams.

External organisations are interested in reports of such scams and you may wish to report these to organisations such as Bank Safe Online (where a bank or other financial institution is being targetted) or directly to the organisation named in the scam.

Up: Contents Previous: 3. If you believe you may have responded