Phishing

As a college, we often experience phishing email cyber attacks. You will likely receive some during your time here, so we want to help you learn what to look out for. The key is to be mindful of what you share and click.

We've recognized and stopped most, but some have succeeded. One stole straight from a YCP employee's direct deposit, after claiming they wanted to change their bank info for the next payroll. Another used ransomware to steal and withhold a YCP student's work and personal info; she was forced to pay a hefty fee before getting her content back.

Please be highly suspicious of any emails that ask you to click a link, change an employee or student record, or send money or gift cards. Contact us if you see any such thing.

Spot a phishing email

  • Mismatched email address - Ensure that the email address displayed in the From: section matches the sender’s name and email address. Every employee should be using their @ycp.edu email address to communicate with other employees.

  • Urgent request - Phishing attacks will attempt to rush you into taking action before you can verify the request. They appear to come from a person or department with authority, such as Human Resources, the president, or a dean.

  • Bad spelling or grammar - Often, these scams are thrown together quickly and/or from abroad.

  • Generic signature line - Emails from YCP employees usually have a signature line at the bottom, with a name you can verify and valid contact information.

  • Unexpected request - Demands for employee or student information, or requests to purchase gift cards.

If you receive a suspicious email...

  • Verify the request - Look up the sender in the directory then ask them if their request is valid.

  • Contact us - Forward the email to LTShelp@ycp.edu. Please let us know whether you took any actions from the email or provided any information.

  • Report it to Google

  • Delete the message - After you forward the message to us, we'll have all we need to investigate.