What is a phishing attack?

Phishing is a form of social engineering. Phishing attacks use email or malicious websites to solicit personal information by posing as a trustworthy organization. For example, an attacker may send an email seemingly from a reputable credit card company or financial institution that requests account information, often suggesting that there is a problem. When users respond with the requested information, attackers can use it to gain access to the accounts.

Phishing attacks may also appear to come from other types of organizations, such as charities. Attackers often take advantage of current events and certain times of the year, such as

  • Natural disasters (e.g., Hurricane Katrina, Indonesian tsunami)
  • Epidemics and health scares (e.g., H1N1, COVID-19)
  • Economic concerns (e.g., IRS scams)
  • Major political elections
  • Holidays

How do phishing emails work?

How does phishing hurt Chapman?

How to spot a phishing email?

What do you do when you receive a phishing message?

Learn more about how Chapman deals with phishing. Visit us at  Chapman’s Online Training and Awareness Program. 

If unsure about an email you received, send an email with your questions to abuse@chapman.edu.

For any questions regarding Phishing Simulations/training, please contact infosec@chapman.edu.


Thank you,

Chapman University IS&T

Follow IS&T on Instagram and Twitter: chapmanu_ist


For each of the four weeks of Cybersecurity Awareness month, we will be having a weekly “challenge” to earn cool prizes! Anyone who completes the weekly challenge will be entered into the raffle for that week’s prize. To finish with a BANG, at the end of the month, all submissions will be pooled together for a grand prize. To increase your chances of winning the grand prize, complete the challenge for each of the four weeks to earn a total of 4 entries!


  • The winner of each week’s prize will be randomly selected from all entries for that challenge.
  • The winner must be a Chapman staff/faculty/student, and submissions will only be accepted coming from their Chapman email address.
  • Winners will be selected and notified in early November. Winners have 1 week to “claim” their prize, or another winner will be selected.

How to win:

Complete this week’s challenge – Cybersecurity Challenge. (Directions below)

We hope to hear from all of you, and good luck!


Week 3 Challenge – Security Awareness Trivia Game! 

Prize: AKASO 4k Underwater Camera + Infosec Tee Shirt*

Staff/Faculty Directions:

  1. Login to our platform used for Online Training and Awareness at training.knowbe4.com.
    1. All Chapman Staff & Faculty have an account already created for them
    2. If you have not logged into the platform before, you will need to click “Forgot Password”. This will send your Chapman Email a link to set your password.
    3. Those who have logged in before; use your existing credentials to login
  2. Navigate to the bottom of the page after logging in there will be an assignment titled “2022 Danger Zone”
  3. Complete this assignment, and you will be automatically entered into that week’s giveaway.

Student Directions:

  1. Visit https://securityawareness.usalearning.gov/cdse/multimedia/games/TomorrowsInternet/story.html and complete the challenge.
  2. Take a screenshot of the badges that you earned that also includes the computer’s date and time you completed the challenge.
  3. Email infosec@chapman.edu confirmation of completion with the subject “CSAM – Week 3
  4. Only screenshots showing the date/time will be considered.

*Limited to available sizes