Frequently, faculty and staff email addresses receive fake emails from their contacts that appear legitimate. Cybercriminals use email and fake websites in an attempt to steal your NetID and Patriot Pass Password. This is called phishing. Once criminals phish credentials, they will use them in an attempt to exploit Mason's computer networks, your Mason email, and your personal information.

The following are common cybercriminal social engineering and phishing themes we see at Mason:

• Notice of an overdue bill
• Notice of a package delivery or missed delivery
• Notice of an eFax message
• Notice that an email mailbox has exceeded its limit
• Notice of an award, monetary deposit, or prize
• Notice of an invoice that needs to be paid
• Threat to close a bank account