What To Do If You Respond To A Phishing Email

Phishing emails are a consistent threat that we face on a daily basis. Find out more about what to do if you have submitted sensitive information to a malicious phishing site.

If you have submitted sensitive UNC Health Care System information to a phishing site (your work email [username and password], account information, patient information or other work-related information), you must:

  • Contact the ISD Service Desk at 984-974-4357
  • Once you have contacted the service desk they will assist you in:
    • Changing your compromised account passwords.
    • Assessing the severity of the situation.
    • Creating a HEAT ticket that ISD Technical Security will investigate.
  • Many times it can be difficult to remember all of the passwords that you work with and because of this it can be very tempting to make that one password the same for everything. This can be a VERY dangerous habit in the context of a phishing attack. If that one password is stolen during a phishing attack then the criminals will have access to ALL of your accounts instead of just one account, and the damage could potentially be much greater. ISD Technical Security recommends that you to use different passwords for each or your accounts, in order to protect yourself from situations such as these.

If you have submitted sensitive PERSONAL information to a phishing site (your personal email account information, social security number, banking information or other personal information), you must:

  • Change your username and password for the accounts you think could have been compromised
  • If banking information is involved contact your bank immediately and explain the situation to them, they will assist you in resolving the situation and deactivating the possibly stolen banking information.
  • Contact law enforcement and file a police report as soon as possible when your credit cards, etc., are stolen. This proves to credit providers you were diligent, and is a first step toward an investigation (if there ever is one)
  • Activate a "fraud alert" on your possibly stolen files at credit reporting bureaus and with Social Security (This will stop the criminals from making an application for credit in your name)
    1. Equifax: 1-800-525-6285 
    2. Experian: 1-888-397-3742 
    3. Trans Union: 1-800-680-7289 
    4. Social Security Administration (fraud line): 1-800-269-0271
  • For Additional information and assistance for possible identity theft, contact the Federal Trade Commission's ID Theft Clearinghouse here, or by calling 877-438-4338 (TDD: 202-326-2502).


Filed under: ,