Friday, December 18, 2009

Privacy Rx: Never answer "account verification" emails

A few days ago a doctor at the University of California San Francisco School of Medicine was tricked into giving his email account information. His email account contained some personal data about patients. How was he tricked? The email was designed to look like an official university email. So the first thing to do is put a strong policy in place that the university will never ask for account information through email. Then make sure that everyone knows this.

Well this is a short blurb today, but tomorrow we will go over a phishing email and see how you can detect one.