INFORMATION SECURITY: PHISHING

Social Engineering & Phishing Awareness

  • Stay Informed & Updated:
    Follow @binghamtonITS on Instagram for phishing awareness and the latest scam alerts.
  • Review Dateline and B-Line regularly.
  • Use the when in doubt and check the ITS PhishTank for current scam examples.
  • Take advantage of security awareness training for more insights.
  • For comprehensive resources, visit and Google’s
  • Learn more from Google Help: How Phishing Works, Information Phishing Sites May Ask For, and Reporting Phishing Sites.

Be Careful with Links & Websites

  • Think Before You Click: never click on a link unless you are certain of its authenticity.
  • Hover over links to preview their destinations before clicking.
  • Verify site security: look for https://, a lock icon, and a valid certificate.
  • Exercise caution with pop-ups: even one click can be harmful.
  • Install an anti-phishing toolbar on your browser for additional protection.

Protect Your Information

  • Never share personal information (Social Security number, OTPs, address, phone number) with unverified sources.
  • Be cautious with suspicious emails:
    • Do not click links or provide personal information until the sender’s legitimacy is verified.
    • Confirm that the sender’s email address matches their displayed name.
    • Check if the email is authenticated.
    • Hover over links to confirm destinations and beware of misleading URLs.
    • Inspect message headers for signs of spoofing.


If the sender has a Bmail address, report abuse to Google and/or contact the Help Desk (607-777-6420).

Maintain Accounts & Devices

  • Regularly check your online accounts for unusual or suspicious activity.
  • Keep your browser up-to-date to avoid vulnerabilities.
  • Regularly update software and apps for added security.
  • Use firewalls to block malicious traffic and protect your devices.
  • Run antivirus software with malware prevention and browser protection. 

Secure Your Accounts

  • Implement 2-Step Verification for stronger account protection (instructions available for Bmail Google accounts).
  • If you suspect your Gmail (Bmail) account has been compromised:
    1. Recover your account before sending or opening emails.
    2. Change your password.
    3. If problems persist, visit the IT Self Help page or contact the Help Desk.

If you've fallen victim to a phishing scam, promptly. Additionally, please report any suspicious emails or phishing scams at security@binghamton.edu and contact the Help Desk if you require further assistance.