News

Beware of phishing e-mails: think before you click!

article_published_on_label
August 19, 2021

Every September, a hacking group, called ‘Silent Librarian’ targets university libraries worldwide. This group attempts to steal login credentials using university and library themed phishing emails and fake library login pages. Stop further spreading and learn how to recognise and avoid phishing scams.

How does phishing work

The phishing emails sent by Silent Librarian include library themed subject lines for example ‘Library Services’, or ‘Library Account Expiration’. The phishing emails state that your library account has expired. You then receive a request to log in with your library account on a forged library website. After entering the login details, you're redirected to the valid university website.

How to protect yourself

E-mails

Be extra cautious when you receive an email with a login request and check the sender’s email address. Note that WUR Library doesn't issue emails about inactive accounts. Emails from WUR Library contain the domain name .wur.nl,.wur.eu or .wurnet.nl. The only exception are emails from the WUR Library's service provider OCLC. The OCLC email address is no-reply@oclc.org.

Websites

If you are on a website that requires you to login with your WUR account, please check the link in your browser. The URL for logging in to WUR Library's services always starts with https://login.wur.nl/adfs/ls. Our catalogue 'WUR Library Search' is the only exception: https://wur.on.worldcat.org/v2.

Other characteristics of a phishing e-mails

  • You are not addressed personally, but rather with a general salutation.

  • Poor language skills with spelling mistakes may indicate phishing, but that doesn’t mean that ‘well-written’ emails are always safe!

  • An urgent request to give your personal information because otherwise …!

  • The sender’s display name looks official, but the actual email address is fake.

  • You have to click on a link to give your personal information. Don’t do that!

What can you do?

  • Never reply to requests to send your login name and password and don’t click on a link in the email.

  • Check to see if the information and assertions in the email are correct.

  • Look at links in an email by ‘floating’ over the link with your cursor. Do not open the link. If you're using a smart phone, hold your finger a bit longer on the link, and the URL will pop up for verification. The URL for logging in for WUR Library's services always starts with https://login.wur.nl/adfs/ls.

  • Check the name of the site in the browser bar and check to see if it is preceded by ‘https’ with a closed green lock.

  • If you have received a suspicious e-mail, contact servicedesk.it@wur.nl and then delete the email from your mailbox by using the ‘Report Junk’ button in Outlook. If you have accidentally disclosed private information, immediately change your password and contact the IT Service Desk.