Phishing Alert | Email Subject: "Your E-mail Account Suspension Notification"
OIT has been receiving notices of a phishing email making it's way into people inboxes. The email reports the recipient's email has sent too much spam, and has been suspended. The email tells the recipient that they will need to "re-confirm" ther email account, directing them to a link.
If you have received this message in your Google Apps @ UA email account, you can report the message as a phishing attempt using Google's Report Phishing tool.
If you received this message in any other email account, please delete the message.
The email message is:
The email asks the recipient to go a web form the looks like the Google Apps @ UA login page and provide their UA Username and Password. DO NOT LOGIN with the link provided in the email.
If you did, you should immediately change your password using ELMO.
Here are a few of the things to look for when identifying this message as phishing:
- The "From" showed email@example.com, but was really firstname.lastname@example.org
- The email asks you to "re-confirm" your email account.
- The provided link looks like a Univers of Alaska address, but really goes somewhere else:
Looks like: http://mail.google.com/a/alaska.edu
Realy goes: http://www.redstar.com.br/components/alaska.html
- The form URL is not a University of Alaska address:
This is a very sophisticated phishing attempt. Please be aware of the addresses for your login pages.