Phishing Scam Recovery

If you have responded to a phishing scam, there are a few very important steps to take to ensure that your accounts are protected.

Change your password

If you responded to a phishing scam which asked you to confirm account information by sending a username and password, change that password immediately.

Additionally, if you use that password anywhere else, you should change that password wherever you've used it. To change your SU NetID password visit the following website:

https : / / netid . syr . edu  (this is intentionally not clickable)

Identity Theft Recovery Steps

If you input your personal information, please learn more about  steps to protect your identity at https://www.identitytheft.gov/info-lost-or-stolen

Contact Credit Bureaus

If you responded to a phishing scam which asked you to confirm your identity with personal information such as phone number, social security, or address information, you should contact the credit reporting bureaus, and your banks, immediately. They are able to put monitoring in place to prevent against fraud and protect in you in the event that fraud is attempted. For example, https://help.equifax.com/s/topic/0TO37000000CjteGAC/security-freeze-fraud-alerts.

Report it

It is always a good idea to report the fraud to the service upon which you received it. If you received a scam at SU, forward the message you received to help@syr.edu so that it can be handled by SU's IT Security team.