Phishing Alert:
Fraudulent Emails to SIOP community

We have just been made aware that some of our members have received some fraudulent email messages who claim to be sent from our President, Dr Eric Bouffet or the SIOP Office asking for bank account transfers and providing a lot of internal references to our work processes and society.
These are fraudulent communications that have nothing to do with SIOP.
Opening, replying, or clicking the links provided in these emails poses a serious security risk to you and your institutional network.

What is Phishing?
Phishing refers to different types of online scams that ‘phish’ for your personal and financial information.
These messages claim to come from a legitimate source: a well-known software company, online payment service, bank, or other reputable institution. Some will use an organization’s email address, logo, and other trademarks to fake authenticity. Phishing messages may also appear to be from a trusted friend or colleague.
Phishing messages can come from a growing number of sources, including:
• Email
• Phone calls
• Fraudulent software (e.g, anti-virus)
• Social Media messages (e.g., Facebook, Twitter)
• Advertisements
• Text messages

What is spear phishing?
More sophisticated attacks, known as spear phishing, are personalized messages from scammers posing as people or institutions that you trust. They often collect identifiable information about you from social media or the compromised account of someone you know to make their messages more convincing. Never transmit sensitive information over email or social media, even if the message requesting information appears to be legitimate.

Signs of phishing include:
• Ultimatum: An urgent warning attempts to intimidate you into responding without thinking. ‘Warning! You will lose your email permanently unless you respond within 7 days’.
• Incorrect URLs: Scammers may obscure URLs by using hyperlinks that appear to go to a reputable site. Hover your mouse over any suspicious links to view the address of the link. Illegitimate links often contain a series of numbers or unfamiliar web addresses.
• No signature or contact information: Additional contact information is not provided.
• Too good to be true offer: Messages about contests you did not enter or offers for goods or services at an unbelievable price are likely fraudulent.
• Style inconsistencies: Pop up windows that claim to be from your operating system or other software may have a different style or colors than authentic notifications. Messages that claim to be from a reputable organization may be missing branding aspects such as a logo.
• Spelling, punctuation, or grammar errors: Some messages will include mistakes. ‘Email owner that refuses to update his or her Email, within Seven days’
• Attention-grabbing titles: “Clickbait” titles (e.g., “You won’t believe this video!”) on social media, advertisements or articles are sensationalist or attention-grabbing and sometimes lead to scams

Thank you for your collaboration.
SIOP Office