News

Warning: phishing e-mails about the Library

Published on
September 23, 2019

Hackers increasingly focus on Dutch academic library users to obtain access to licensed library resources. The phishing emails request users to log in with their library accounts on a forged library website. Stop further spreading and learn how to recognize and avoid phishing scams.

How does phishing work?

The phishing emails state that your library account has expired. You then receive a request to log in with your library account on a forged library website. After entering the login details, you're redirected to the valid university website.

How to recognize phishing emails?

Always be careful with emails from unknown senders, with strange emails and with emails where you're asked for personal information. Note that WUR Library doesn't issue emails about inactive accounts. The URL for logging in for WUR Library's services always starts with https://login.wur.nl/adfs/ls.

Other characteristics of a phishing email

  • You are not addressed personally but rather with a general salutation.
  • Poor language skills with spelling mistakes may indicate phishing, but that doesn’t mean that ‘well-written’ emails are always safe!
  • An urgent request to give your personal information because otherwise …!
  • The sender’s display name looks official, but the actual email address is fake.
  • To give your personal information, you have to click on a link. Don’t do that!

What can you do?

  • Never reply to requests to send your login name and password and don’t click on a link in the mail.
  • Check to see if the information and assertions in the email are correct.
  • Look at links in an email by ‘floating’ over the link with your cursor. Do not open the link. If you're using a smart phone, hold your finger a bit longer on the link, and the URL will pop up for verification. The URL for logging in for WUR Library's services always starts with https://login.wur.nl/adfs/ls.
  • Check the name of the site in the browser bar and check to see if it is preceded by ‘https’ with a closed green lock.
  • Contact servicedesk.it@wur.nl and then delete the email from your mailbox by using the ‘Report Junk’ button in Outlook. If you have accidentally disclosed private information, immediately change your password and contact the IT Service Desk.