Scams and Fraud
Be aware! Students are a target for unethical and illegal scams and fraud.
Identifying official University e-mail communications
E-mail can be "spoofed" or forged to look like it's coming from a respected source. Fraudsters use e-mail spoofing to trick recipients into sharing account numbers or sensitive information. Highly sophisticated e-mail spoofs can be hard to detect, but most are given away by a few tell-tale signs.
How to identify official University e-mails and avoid potential e-mail scams:
- Watch for incorrect grammar and spelling. Many e-mail scams originate from outside the U.S.
- View the hidden e-mail header information and verify that it was sent from an address ending in "umn.edu." Click here for instructions.
- Never share sensitive information by e-mail. The University of Minnesota will never send an unsolicited email message asking you to reply with your password or other confidential information such as a Social Security or bank account number. Messages requesting such information are fraudulent and should be deleted.
- Be suspicious of any message demanding immediate action.
If you receive a questionable e-mail:
- Don't use the links if the message is directing you to a Web page. Open a new browser window and type in the address yourself or do an Internet search for the business/organization.
- Review the Federal Trade Commission's consumer alert, How Not to Get Hooked by a Phishing Scam and if warranted, forward the suspected e-mail message to spam@uce.gov for further action.
- Permanently delete the message from your inbox.
If the questionable e-mail claims to be from the University:
- Report the suspicious message to the Office of Information Technology. First, make sure the hidden e-mail header information is displayed. Click here for instructions. Then, forward the e-mail to abuse@umn.edu.
Keeping fraud out of your inbox:
- Use your GopherMail account for umn.edu messages only.
- Set up SpamAssassin to scan your University e-mail account.
- Visit the Federal Trade Commission Web site for more fraud prevention resources.
Identity theft
What is identity theft? What can you do to prevent it? Where can you go for help if you are a victim? Find answers to these questions here.
Phishing
If you receive an e-mail you suspect is a phishing scheme, confirm through other means that the e-mail or the Web site it directs you to, is legitimate. This may mean that you need to contact a department within the University, or the Customer Service division of a bank.
For secured University functions such as registration, billing and payments, or admissions, the familiar University login page should appear for any University pages that ask for personal information. If in doubt, remember that most functions are available by going to One Stop on the Web by typing onestop.umn.edu directly into your web browser. Follow the links there rather than those in the e-mail.
Scholarship fraud
You should never have to pay to find out about scholarships. This page provides a list of common fraud techniques to watch out for.
Consumer information
An overview of the University of Minnesota, Twin Cities. Federally required, this page provides a primer to making informed decisions as a University of Minnesota student.