Email: Phishing Messages
A “phishing” email is designed to trick you into sharing personal information such as
- PIN numbers
- Credit card numbers
- Family information (mother’s maiden name)
- Social Security numbers
- Bank account numbers
The scammers behind these messages are not targeting you individually. Rather, they are blindly sending out email to millions of email addresses in the hopes that a few people will be fooled into providing the information they seek.
LPS email filters prevent hundreds of thousands of illicit messages from reaching LPS employee inboxes every week. Due to the ever changing tactics on the part of phishing scammers, some undesirable messages still reach our employee inboxes, despite our state of the art efforts to prevent it.
Have you already provided your personal information to someone?
If you have given your username and password to any NON-LPS site, your password must be changed as soon as possible.
If you know your current password, follow these steps to change your password in the LPS Portal:
- Log into the LPS Portal
- In the “portal settings” area (upper right corner), select Settings, Recovery and Change Password
If you do not know your password, contact The LPS Help Desk at 402-436-1735 for assistance.
How to recognize phishing
Your best protection against phishing is awareness. Modern phishing attempts are often sophisticated and appear to be legitimate correspondence from companies or organizations you trust. If any of the following tell-tale signs of an email scam are present DO NOT respond to the email:
- You have never done business with this company
- You are being told that there is a problem with your account and you must click a link to address the problem.
- The sender’s email address does not match the company legitimate address (@company.com)
- The message contains an impersonal greeting (Dear account holder, Dear web mail user, etc.)
- The message looks distinctly unprofessional (spelling mistakes, all capital letters, etc.)
- The message has a frightening or aggressive tone
- The message asks you to share your passwords, bank account info, or any other personal information via an email reply or link contained in the message
- The message claims you have won something you did not sign up to win
Is *this* email from LPS?
- LPS will NEVER ask you for your password. Not even the help desk.
- LPS does not have email “quotas” in place. In other words, we won’t email you to say that your mailbox is nearly full.
- LPS will never threaten to deactivate your email account. You need it to do your job.
- Any legitimate messages sent from the LPS Help Desk come from the address email@example.com. Most phishing messages come from some variation of near misses. (firstname.lastname@example.org, IT@lps.org, etc.)
If you question a message, feel free to call x1735 to check its authenticity.
What to do when you receive a phishing message
OPTION 1: If the message displays hallmarks of a phishing scam, simply DELETE the message and carry on with your day.
OPTION 2: Please REPORT any messages you believe to be phishing for your credentials. To report a message in Gmail:
- Open the offending message.
- Click the MORE (3-dot) menu.
- Select “Report Phishing”
- Click the “Report Phishing Message” button to confirm
The message will be deleted and the sender will be reported to LPS email administrators.
OPTION 3: If you feel you are being personally/individually targeted by a scammer, you can file a report of a potential e-scams at the Internet Crime Complaint Center (IC3). The IC3 is a partnership between the Federal Bureau of Investigation (FBI) and the National White Collar Crime Center (NW3C).
Additional resources on Phishing scams
Updated January 3, 2024