Internal Phishing Program
As part of our ongoing efforts to help defend App State from increasing cybersecurity threats, ITS will be sending out test phishing emails. These internal phishing messages are learning opportunities and employees will not be punished for falling victim to a test phishing attack.
Phishing is a type of social engineering attack often used to steal user data, including login credentials, credit card numbers, and personal information. To learn more about phishing, visit our page on Common Threats: Phishing.
The test phishing messages will simulate real-world attacks that we are often observing in our security monitoring practices. These test messages will be sent out at random intervals throughout the year.
Note: Internal phishing campaigns are learning exercises only and employees will not be punished for falling the simulated phishing tests.
Employees are strongly encouraged to treat all suspicious emails as potentially dangerous.
Although the test emails are not malicious, real phishing attacks are a threat to our university community. We can help mitigate these risks by reporting suspicious email messages to phish@appstate.edu.