Sept. 2, 2025

Some members of the URI community have recently received phishing emails attempting to steal sensitive personal information under the guise of financial aid or refund processing.

These messages often include:

• Subject lines intended to convey urgency, such as: “Urgent: Immediate Action Required – Complete Your Financial Aid Validation Form!”
• Requests for login credentials, eCampus passwords, bank account logins, or birthdates.
• Links to fake forms, often hosted on Google Forms or other unofficial platforms.

Important Reminder:
URI Information Technology Services (ITS) and legitimate University partners, such as BankMobile will never ask you to submit sensitive information via Google Forms or unverified websites.

While BankMobile may send legitimate emails encouraging students to set up or update refund preferences, always double-check the sender address and link destination. If you’re unsure, don’t click—contact the ITS Service Desk or visit the official refund information page from URI.

How to Report Phishing Emails

If you receive a phishing email: 

• Do not respond or provide any information. 
• Click the PhishAlarm button in your Gmail toolbar to report the email directly to IT Security Services. 
• Learn more about the PhishAlarm.

If you clicked on the link and entered personal information:

• Reset Your Password: Visit the ITS website and join the Service Desk Zoom session.
• Reject Unrecognized DUO Requests: Do not approve any unexpected DUO authentication prompts.

Additional Security Measures:

• For all password resets and sensitive requests, URI requires identity verification using a photo ID in person or via video. Password changes cannot be completed via email for security reasons.
• The IT Service Desk is open from 8 a.m. to 8 p.m. Monday through Thursday; 8 a.m. to 5 p.m. on Friday; and 10 a.m. to 4 p.m. on weekends. 

Stay vigilant, and if you have any questions, please get in touch with the IT Service Desk. Thank you for helping keep our community secure.