Here at the university, we never ask for a student's password or account information, and that is especially true over email. However, hundreds of students are fooled every year by scammers dropping a line out and phishing for passwords.
Here are some tips to keep all your accounts safe.
What to look for:
- Misspellings-most companies have very good editors and will make sure they don't spell "loose" (as in lose your account) with too many o's.
- Threats-companies want to keep your business, so if an email threatens to "close your account", then you can bet it's not an official email.
- Email address-if a shady looking email is coming from your bank, and the return email address is firstname.lastname@example.org, then it's an obvious scam.
- Amazing offers-it is as simple as this, if an offer sounds too good to be true, then it is a scam.
- Attachments-these CAN contain viruses that can passively steal your information, avoid opening attachments from email addresses you don't recognize or that seem illegitimate. Note that not all attachments are dangerous.
- Links-links can lead you to a site that may look like a legitimate one, but it also might be a replica of what your bank site looks like. Remember to verify that the website URL is the correct one. If you don't feel an email is trustworthy, then don't follow links.
- Never give your password out online.
- If you think your account has been jeopardized, call the company and have them help.
- Use common sense; would you give a man on your doorstep your wallet simply because he was wearing a suit and said he was from your bank? (no)
http://www.theregister.co.uk/2004/02/02/is_this_the_worst_scam/ --here is a link to a terrible scam, many are far more convincing than this one.