There are a number of wide-spread email phishing campaigns being distributed which we should all remain aware and vigilant of. Please disseminate this information immediately to all staff and governors. My thanks in anticipation.
What is a phishing email?
Phishing is an attempt by an attacker who will masquerade as a trustworthy entity/contact to acquire information.
Usually when such an email is received, the sender is reliant upon the recipient forwarding the email on or responding.
For example: a phish may generate an email posing as your Headteacher requesting that you click on a ‘secure link’ and input your username and password, or ‘pay an urgent invoice’ to gain access to the Academy bank details.
How to spot a phishing email:
Here are the most common signs of an email phishing attempt to watch for:
What should you do if you receive an email you are unsure of?
If you believe you have received a suspicious email – DO NOT FORWARD IT, DO NOT RESPOND.
Contact your IT administrator (EIS or similar), and notify the Data Protection Officer firstname.lastname@example.org
What can you do protect your Academy?
The Data Protection Officer is currently reviewing training for data leads and senior leaders, and a communication will be sent shortly. In the meantime, please ensure that all staff and governors remain aware and vigilant, some of our academies have received such emails.
Thank you and should this give rise to any queries, please do not hesitate to get in touch.
Company Secretary and Data Protection Officer