Is this legitimate? Protect yourself from scams

Modern scams can be highly sophisticated, making it difficult to know what is real and what is fake. Criminals often impersonate government agencies and trusted businesses to appear legitimate, or use information about us and the people we know to coordinate highly personalised deceptions.

To help stay safe, take a moment before clicking or responding to unexpected requests to ask yourself: Is this legitimate?

Think before you click or respond.

Emails and messages containing malicious links or attachments are a common and effective attack method.

  • Hover over links in emails before clicking to check the destination address is legitimate.
  • Verify with the sender that they really sent the message if you’re unsure of its authenticity.

Can you spot a scam message? Take this quiz to improve your skills.

Do you really know who you are talking to?

  • If you’re contacted unexpectedly by a government agency, business or individual, always consider the possibility it may be a scam. If unsure, call them back using officially listed contact details.
  • Never give anyone remote access to your computer, except legitimate support personnel with whom you have initiated contact. (Microsoft, Apple or the government will never call about a virus on your computer.)

Ask yourself: Is this legitimate?

Look out for warning signs: A sense of urgency, unlikely claims, requests to provide personal or sensitive information, severe consequences for inaction, unusual or unexpected messages from someone you trust (even UQ).

  • Never approve an MFA request you’re not expecting; it could be somebody trying to access your account. Deny the request, change your account password, and report it immediately to IT support.

Get help quickly.

Rapid reporting can help reduce the impact of security incidents and prevent further harm. If you suspect you’ve encountered a scam, or notice suspicious activity on your computer or UQ account, contact IT support immediately.