Cyber criminals are currently trying to trick university students with phishing messages sent in the name of the tax administration. The messages attempt to direct the user to read the incoming message on Suomi.fi. However, the link takes you to the scam website.
Do not click any links, open any attachments or reply to the message. Always check the sender of the email carefully. Especially on mobile devices, the sender information may only show the sender's name and the actual sender's address can easily be overlooked. Always report phishing messages in Outlook as phishing (Spam > Report as Phishing). Phishing reports submitted via Outlook also reach the University’s email admins and help prevent IT threats.
However, if you have replied to a message or suspect you have been scammed, please change your password and contact the IT Helpdesk immediately:
- Chat (weekdays 9–15, chatbot 24/7): helsinki.fi/helpdesk
- Call: 029 41 55555 (weekdays 9–15, local network charge / mobile call charge)
- E-mail: helpdesk@helsinki.fi
How to identify phishing messages:
- The sender is trying to disguise himself as someone you know and trust. In this case, the sender appears to be the Tax Administration.
- The message often includes an urgent request, for example, to change your password, check your personal data or help the sender in one way or another.
- You are asked to click a link or to open an attachment without delay, often with a warning that you are at risk of losing your information or your password expiring if you do not do as asked.
- The message usually contains logos and graphic elements that are familiar from Microsoft or university services with the purpose of convincing the user of the message’s authenticity.