This typically involves a scammer sending you an email, urging you to access a link, and provide information (such as your sign in details) to prevent something bad happening, such as getting locked out of your account. The link will normally take you to a fake website set up by the scammers to look like a company web page, such as ucas.com.
It’s not hard for scammers to work out what your email address is likely to be, and create a web page that looks official. You should, therefore, always be cautious when you are asked to provide information by a third party email. Remember, we will never ask you to give us your sign in details by email or by accessing a website.
If you’ve received an email from UCAS, or anyone else asking for your sign in details, please contact the HEP Team on 0344 984 1111, or at hep_team@ucas.ac.uk.
If you want to find out more about ‘phishing’ and how to protect yourself and your applicants, the Student Loans Company has produced some useful guidance.