Skip Navigation
Security

IT Security Frequently Asked Questions

NOTE:  This site relates to Information Technical (IT) Security.  For physical security issues, please refer to Johns Hopkins Medicine Corporate Security or Johns Hopkins University Campus Safety and Security.

I received a suspicious email message but didn't reply to it.  Should I report it?

Yes.  We want to know about fraudulent email circulating within our environment.  It is common for email attackers/hackers to send messages, masquerading as a trustworthy entity, attempting to acquire information such as usernames, passwords, credit card details, and other personal information.  These type of messages are known as "Phishing" and should not be responded to in any way.  If you receive a phishing email, or any email you're unsure is legitimate, please forward that email as an attachment to: spam@jhu.edu or spam@jhmi.edu.

I responded to a phishing or other fraudulent email.  What do I do now?

  1. Don't panic!
  2. Change your password immediately, using a different computer from the one used to respond to the fraudulent email.
  3. Notify your LAN Administrator or the Help Desk either by placing a self-service ticket through the portal or by phone at 410-955-HELP (4357).
  4. If possible provide a copy of the email message you responded to or the URL of the web page that you went to.
  5. View our phishing site for more information.
  6. Find more information and help to educate others at the Anti-phishing Working Group.

I think my computer is infected.  What should I do?

  1. Notify your LAN administrator.  If you don't have a LAN administrator or don't know who it is, contact the Help Desk either by placing a self-service ticket through the portal or by phone at 410-955-HELP (4357).
  2. View our malware site for more information.

More Computer Security Information