The University of Texas at Dallas
close menu

Information Security

Becoming a Human Firewall

Renee Stone

February 23, 2021

Trying to get through school is stressful on its own, but it is increasingly stressful because cyber criminals target students. These attacks are motivated by access to personal information, financial gain and access to University systems. That being said, cyber criminals are motivated by an endless number of things. Students focused on their studies and lacking experience with attacks are perceived by criminals as vulnerable targets. We will explain some common scams that target students, and by the end of this blog you will be ready to have attackers questioning why they chose to phish you.

Federal Student Aid Scam

One student-related scam that has been on the rise lately targets financial aid recipients. Criminals use various methods to determine who is enrolled in the program, and then contact potential victims pretending to be relevant school or government authorities. The scammer will usually contact the victim via email or phone with the ultimate goal of stealing sensitive information (think social security number or university login). The attacker can then use the sensitive information in other scams, such as a tax scam with the social security number or by using the school login to change the direct deposit information for the student’s financial aid disbursement.

Student Employment Scam

Graffiti saying Scammer Wuz Here

Another student-related attack that has become increasingly problematic is the student employment scam. In this scam, students are recruited for bogus positions that offer extraordinary pay relative to the work that needs to be performed. When a student takes the bait and responds to a fake offer, they are sent a check (regardless of whether any work is actually performed) along with instructions to deposit it into their personal bank account. Since banks often make check deposits available to their clients prior to the check actually being processed, it can seem to the victim as if the deposit went through as expected despite the check being fake. The student is then instructed to withdrawal a portion of the deposited check and send it back to the fake employer as payment for supplies, training, or commission. The victimized student is at risk of losing financial funds and being treated as a criminal in the eyes of the bank. The student is then left on the hook with the financial damages, or worse.

Be a Human Firewall

Committing cyber crime is not only an attack on technology. Rather, people, process, technology and facilities may all be attacked by criminals determined to gain at the expense of students. Educating ourselves about criminal tactics will help us defend against crimes while also helping inform family, friends, and community members of risks. We leave you with some quick tips below to help you stay safe against fraud and phishing, but you can always contact us at infosecurity@utdallas.edu if have questions regarding a possible scam.

stick figure waving bye
  • Hover over hyperlinks before you click on them, criminals can make a link read one thing and have it go to a different location
  • Attackers create website URLs and graphics that mimic the real version of the website, be careful not to accidentally mistype or interact with an attacker site while navigating to a website
  • Look for typos and grammatical errors in written phishing attempts, criminals usually pay little attention to grammar and spelling
  • Take responsibility for validating communications and beware unexpected attempts to contact you by email, text, social media, and phone; when in doubt, pause and analyze the situation
  • If you receive a request for information from a business you have a relationship with, return contact at a known phone number or email instead of replying directly to the message