I have received a phishing email from an email address using the Northeastern Illinois University. I cannot find and address to which to send an email regarding this and get no response on Twitter.<p>What is the best way to report this?
I would send emails to abuse@neiu.edu and phishing@neiu.edu.
In addition, you could perform a whois lookup on the domain to get the Technical Contact: <a href="https://who.is/whois/neiu.edu" rel="nofollow">https://who.is/whois/neiu.edu</a>
and send an email to admin@neiu.edu<p>If you wanted to take it another step forward, here are the folks you could probably contact: <a href="https://ssb.neiu.edu/mercury_neiuprod/GZKDIRL.P_DISPLAY_DEPT_DETAILS?alpha_in=Technology+Services" rel="nofollow">https://ssb.neiu.edu/mercury_neiuprod/GZKDIRL.P_DISPLAY_DEPT...</a><p>Hope this helps.
If nothing else, send a report to soc@ren-isac.net. If NEIU is a member, the folks at the watch desk will have te ability to immediately get in touch with someone in security there.<p>I'm no longer at an .edu (and so no longer a member of REN-ISAC) but this was a great, quick way to get ahold of someone at another institution quickly.<p>(n.b.: This goes for pretty much any .edu.)
It's also entirely possible that the email isn't being sent by them or anyone affiliated with them. FROM headers on email are miserably easy to spoof.<p>I've had thousands of spam emails sent with senders listed as nonexistent addresses from one of my domains. They were sent from third-party servers (my servers were not compromised and I had no open relays), and I only found out because of all the bouncebacks from naive receiving servers.<p>The only thing the domain holder can do at that point is to set up DomainKeys and similar measures - which still won't prevent spammers from using the domain, it'll just cause more of the mail to bounce back as spam.
First check the domain registration record. Many domain registrations include an abuse or technical contact, or at least an administrative contact.<p>If not, try abuse, postmaster, webmaster, et al like suggested by others already.
Additionally, I send phishing emails to reportphishing@apwg.org which alerts the Anti-Phishing working group... Not sure what happens once they get my forwarded emails...