Protect yourself from spam, phishing and viruses

As digital usage grows, security risks remain just as prevalent and are even on the rise.

Did you know that the main threats come via email, through clicking on a link or an attachment?

This is one of the reasons why human behavior is often cited as the leading cause of security incidents.

Email systems detect unwanted or malicious emails, but some slip through the cracks. Indeed, emails can contain ransomware or phishing scams.

What is ransomware?

Ransomware is a type of malware or virus that locks a user out of their computer or files and demands that the victim pay a ransom to regain access (Source cybermalveillance.gouv.fr).

Many private and public institutions fall victim to ransomware attacks. In 2021, ANSSI (the French National Cybersecurity Agency) recorded a 255% increase in attacks of this type.

What is phishing?

Phishing is a fraudulent technique designed to trick internet users into revealing personal information (username, password, etc.) and/or banking details by impersonating a trusted third party. This may take the form of a fake message, text message, or phone call from a bank, social media platform, phone carrier, energy provider, e-commerce site, government agency, etc. (Source cybermalveillance.gouv.fr).

How can you avoid pitfalls?

To avoid falling into the traps set by hackers, it’s important to act cautiously, patiently, and vigilantly so that you never rush to share confidential information or click on links or attachments.

Best practices:

• Verify the origin of emails and the addresses of links;
• Never share confidential information via email, phone, or forms;
• Never respond to requests for bank transfers or for passwords or credit card numbers.
• Report suspicious emails as spam.

For more information: Guide sécurité du numérique (PDF, 829 Ko)

For more information on hacking of student accounts and access to educational platforms, see a fiche d'information de cybermalveillance.gouv.fr

Spam emails

In the event of email harassment (repeated instances of receiving unwanted emails, or unauthorized use of your email address without your consent), there is little you can do through an email service provider, as there is no moderation like on a social media platform; you cannot request the removal of content, or you must contact the sender directly—which is precisely what you are trying to avoid.

First, you should use the email client’s built-in features to block the sender by marking the email as spam (For more information: Block emails from a person). This blocks the sender, but it won’t prevent them from creating new addresses. You’ll need to repeat the process for each new address.

Google notes the limitations of this action and advises contacting local authorities:

“Anyone who harasses, intimidates, or threatens you through Gmail is violating the Gmail Program Policies. If you believe you are in danger, contact local authorities immediately to ask if there are anti-cyberbullying laws applicable to your situation.”

Next, if you feel it is worth pursuing because the harm is too severe, you should file a complaint. The government platform PHAROS guides users through the process of reporting and filing a complaint.

Here are two links to official websites with information on cyberbullying and ways to take action:

• https://www.service-public.fr/particuliers/vosdroits/F32239
• https://www.cnil.fr/fr/reagir-en-cas-de-harcelement-en-ligne

If you have any problems or questions

Contact the helpdesk for instructions: sos@sciencespo.fr