FAQ on Email Phishing, Job Recruitment Scams and Other False Communications

Rasmussen University is aware of recent job recruitment scams being spread via phishing email attacks that use the Rasmussen University name. In some cases, the scammers make it appear as if the emails are from a Rasmussen University employee, student or alum to give their scam a sense of legitimacy. These job recruitment phishing emails typically do not contain viruses or other malicious content, but they are fake.

Please know that our student and employee information is safe. If you have shared any confidential information with a scammer, contact your local law enforcement agency and monitor your accounts for suspicious behavior. If you feel someone is trying to steal your identity, file a report with the Federal Trade Commission at FTC.gov/complaint and the Anti-Phishing Working Group at https://apwg.org/.

Always be wary of unsolicited job offers and any offer that seems too good to be true. Please contact the Personal Support Center immediately if you receive any messages that appear to be fraudulent. If you have any questions or concerns, please do not hesitate to reach out to the PSC at [email protected].

It is important to note, these types of attacks are to systems outside of Rasmussen University’s control. We are currently investigating remediation and proactive measures to thwart similar incidents in the future as we take these situations seriously. Our main priority is to protect our students and their personal information, and we would like to raise awareness regarding the issue of online scams.

Below are questions and answers to help safeguard yourself and others against phishing attempts, job recruitment scams and other false communications—a widespread problem across the internet, unfortunately.

Q: Why did Rasmussen University students get targeted for the phishing scam?

A: Any system connected to the internet is at risk, and if one scam message is opened, it can begin to spread to other accounts. The scammers lure their targets by spoofing legitimate companies, using trusted logos or even pretending to be an employee, a friend or a family member. According to the FBI, University students across the U.S. continue to be targeted, including receiving messages to their school accounts that recruit them for phony employment positions. The best way to protect yourself from possible future scams is to stay vigilant and suspicious of email messages, job postings and other communications that seek personal information.

Q: What should I do if I gave scammers my personal information?

A: If you gave personal information to suspected scammers, monitor your accounts for suspicious behavior and, if you think someone may be trying to steal your identity, file a report with the Federal Trade Commission. We encourage you to contact your bank and/or your local police department if you believe you’re the victim of a scam.

After someone provides personal information to scammers, they may receive more emails, phone calls or mailers that could also be malicious. Those mailers should be disregarded and thrown away, and any suspicious phone numbers blocked. Any time you get a phone call or piece of mail regarding an account or pending account, search for the phone number of the organization to research its legitimacy first.

Any solicitation should be researched before you provide personal information. If email messages appear fraudulent, do not click any of the links within it and instead forward to [email protected].

Warning signs for malicious email messages:

If a suspicious message contains any of the following, it might be a scam:

• Email comes from an unknown sender or from an unknown domain.
• Email includes incorrect or outdated company logos or branding.
• When hovering your mouse over a link in the email (DO NOT CLICK), the link doesn’t match the sender’s email address or company website.
• Email supposedly requires immediate action from the receiver.
• Email is seeking personal information about the receiver.

The Federal Trade Commission’s tips to avoid becoming a target of a phishing scam:

• Be cautious about opening attachments or clicking on links in emails.
• Do your own typing. Use a search engine to look up a website rather than clicking on and following a suspicious link.
• Don’t respond to any emails that request personal or financial information.
• Turn on two-factor authentication to require both your password and another piece of information to log into accounts that support it.
• Back up your files to an external hard drive or cloud-based storage.
• Use security software and update it regularly.
• Report phishing emails and texts.

Q: What is Rasmussen University doing to keep my private data safe?

A: Rasmussen University takes the security of its students’ data seriously and understands these are concerning situations, especially for those who may have provided their personal information. The University’s Personal Support Center has been monitoring and investigating these incidents and is working to prevent their spread. Rasmussen University will continue to utilize as many safeguards as possible to ensure these systems are secure and safe to use.

Student and employee information is secure. The phishing scams are spread via email systems; scammers are looking or “phishing” for individuals who are willing to click on a link in the fraudulent email and are then tricked into providing financial information on a one-off basis.

Q: Should something have been done to prevent this?

A: Fraudulent email messages and other false communications continue to proliferate across the internet, and scammers have learned to adapt their tactics to maximize their effectiveness. The best weapon against these threats is education and awareness. Knowing the difference between a legitimate email or job posting and one that is phishing for personal information is key. If something seems too good to be true in a pitch from an unknown company, then it probably is.

Q: How are job postings communicated with students?

A: The original fraudulent messages contained an offer of employment that appeared to have come from Rasmussen University. Because of the latest tactics scammers use, it’s important to investigate whether job postings are legitimate. In addition to the tips above for spotting malicious messages, you can look for employment opportunities through:

• Your Career Services advisor
• The Dean of your school of study
• Your instructors
• Official Rasmussen University social media accounts (verified status)
• Rasmussen University Student Portal

If you are seeking employment within one of 0ur campuses as a work study, openings and all other information can be found at: guides.rasmussen.edu/workstudy.

More resources:

• What is Phishing? 6 Common Cyber Security Exploits Explained
• What You Need to Know About Phishing Scams (And How to Avoid Getting Hooked)
• 8 Ways to Avoid Falling Victim to Student Loan Scams
• FBI Public Service Announcement on scams targeting college students
• Federal Trade Commission article on phishing
• Report suspected identity theft to the Federal Trade Commission
• FTC - Job Scams