The following email message was sent to Rutgers students, faculty, and staff on November 24, 2025.
Members of the Rutgers Community:
Universities are prime targets for hackers—and that means you are, too.
To get access to university systems, hackers want your information, including passwords, account credentials, and banking details. They’re using phone calls, emails, and texts to trick people into sharing sensitive info, making awareness and caution more important than ever.
We are reaching out to you today because recent phishing incidents at other universities have caused dayslong outages, exposed alumni information, and compromised fundraising data. We want to avoid that at Rutgers.
Here’s what you can do to protect yourself—and Rutgers.
Question unusual, unexpected, or urgent requests
Cyber attackers impersonate people you trust—deans, department heads, professors, business managers. Don’t fall for it.
Think before you act
Not sure if a link is legit? Then don’t click. The same goes for unexpected phone calls or texts, especially those requesting immediate action. Hackers exploit impulsive actions. Take a pause to thwart them.
Verify suspicious communications
If a message seems suspicious, it probably is. Verify the request with a known authority or channel (such as the Office of Information Technology Help Desk) to ensure it’s real. The Help Desk can be reached at 833-OIT-HELP or help@oit.rutgers.edu.
Protect your login credentials
Hackers have lots of ways to steal your credentials, including fake login webpages or just asking you directly for your password. Remember, Rutgers staff will never ask you for your password. Always check the website address (URL) before logging in.
Know how to report suspicious activity
Report suspicious messages to abuse@rutgers.edu.
For more information and guidance, please see the tips and videos at our Phish Bowl webpage. And thank you for helping Rutgers stay secure.
Michele Norin
Senior Vice President and Chief Information Officer