coe-staff: Current Phishing attack aimed at COE users
Dianna Carrizales-Engelmann
dcarriza at uoregon.edu
Sat Jul 29 18:21:49 PDT 2017
Dear All,
A few of us have received an email that is an apparent phishing attempt.
Please don't follow the directions in that email.
This particular email is entitled "Important Update" and is from someone using the title Director of Administration in "the Dean's office".
When in doubt please contact IT or follow the guidance outlined in previous alerts from IT (posted below).
IT will update you if we learn of any new information.
Thank you.
Dianna Carrizales-Engelmann
On Jan 10, 2017, at 9:23 AM, Jeff A Woodbury <jeffreyw at uoregon.edu<mailto:jeffreyw at uoregon.edu>> wrote:
All,
COE users are currently receiving emails (1/10/17) containing malicious links designed to steal user information and use your UO email address to compromise other accounts. Please be extra vigilant when receiving emails with links to external websites or that contain file attachments.
If your "uoregon.edu<http://uoregon.edu>" email account has received or been affected by malware, please contact coeit at uoregon.edu<mailto:coeit at uoregon.edu>, you can also copy: security at uoregon.edu<mailto:security at uoregon.edu>.
Here are a few quick tips to help recognize phishing emails:
* Check the name and email address of the sender: Often the identity thief uses an email that has nothing to do with the company, unit or group that oversees account management. Please note that some targeted phishing attempts, called "spear phishing," are directed at specific individuals or companies. Attackers often gather personal or organizational information about their target(s) to increase their probability of success. This technique is, by far, the most successful on the internet today.
* Look for overly generic content: You may see email subjects such as "ITS Service Desk" or "Your account has been disabled." Phishing emails often come from a group or a user that you cannot track down.
* Look for misspellings or lapses in good grammar: Identity theft attempts often overlook proper spelling and grammar.
* There is usually a threat of losing access: Phishing emails mention that your account is in danger of losing access or has lost access. This is to coerce the user into clicking on a contained link or attachment.
* Check any links for their true web address: In most email clients you can move your pointer over the text of a link for a second and the program will reveal the full URL path of the link. By doing this you can tell if the text of the link is the same as the web address it is sending you to.
Jeffrey Woodbury
Director of Technology, College of Education
University of Oregon
Jeffreyw at uoregon.edu<mailto:Jeffreyw at uoregon.edu>
http://coehelp.uoregon.edu/
---------------------------------------------------------------
University of Oregon
College of Education
http://education.uoregon.edu
This mailing list is for for official UO College of Education faculty and
staff communications. See: https://it.uoregon.edu/acceptable-use-policy
For help in using the list please contact Kenneth Loge at
kloge at uoregon.edu<mailto:kloge at uoregon.edu>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists-prod.uoregon.edu/pipermail/coe-staff/attachments/20170730/aaba0768/attachment.html>
More information about the coe-staff
mailing list