![\"\"](\"https:\/\/mitchellhamline.edu\/technology\/wp-content\/uploads\/sites\/42\/2018\/10\/083118PhishingTargetStudentEmail.png\")
<\/a><\/p>\nUpon gaining access to the portal via the login provided by the student, the attacker changes the student\u2019s direct deposit destination to a bank account controlled by the attacker, and any subsequent federal student aid refunds will be stolen from the student.\u00a0 FSA believes that attackers are practicing and refining the scheme on a smaller scale now and that this will emerge as a prominent threat against schools during periods when federal student aid funds are disseminated in large volumes.<\/p>\n
Mitchell Hamline advises students to always be careful when entering personally identifiable information on web forms.\u00a0 Be vigilant and skeptical when receiving emails with links asking for information.\u00a0 Watch for sender’s email addresses that don’t match the sender’s supposed identity and scrutinize URLs closely.\u00a0 More information on recognizing and preventing phishing attempts can be found on the US Federal Trade Commission website at\u00a0https:\/\/www.consumer.ftc.gov\/articles\/0003-phishing.<\/a><\/p>\n <\/p>\n Mitchell Hamline Information Technology<\/p>\n <\/p>\n <\/p>\n <\/p>\n <\/p>\n","protected":false},"excerpt":{"rendered":" The US Department of Education’s Federal Student Aid office has identified a malicious phishing campaign aimed at defrauding students of their refunds and aid distributions. Several schools have reported that attackers are using a phishing email to obtain access to student accounts on the student portal (see example phishing email screenshot below, courtesy of FSA). … <\/p>\n