Office of Information Technology

Phishing Alert | Email Subject: "Read"

Overview

OIT has been receiving notices of a phishing email making it's way into people inboxes.  The email includes a PDF informing the recepient they are over quota, and to submit the form at the link provided.

Reporting

If you have received this message in your Google Apps @ UA email account, you can report the message as a phishing attempt using Google's Report Phishing tool.

If you received this message in any other email account, please delete the message.

Additionally, you can report the Google Docs Form as Phishing using the "Report Abuse" link in the lower left of the page.

Email Content

The email message is:

Email Attachment (PDF) Content

The PDF contained:

Your email has reached its maximum quota of 50MB storage; you might not receive further emails. Visit the URL below or copy and paste into your browser login and follow the instruction to up-grade for more storage space.

http://www.thehandyrandy.com/forms/use/science/form1.html

Ensure to click log out if using a public computer.

University of Alaska

Phishing Form

The PDF asks the recipient to go a form and provide their UserID, Email, and Password.

DO NOT reply to this email.  If you did, you should immediately change your password using ELMO.

Phishing Indications

Here are a few of the things to look for when identifying this message as phishing:

  • The "From" showed helpdesk@alaska.edu, but was really rep.csc01@gmail.com
  • The "important message" was in an attached PDF, but not in the email body.
  • The PDF sites "50MB storage" for email; you can see your storage limit at the bottom of your Google Apps Mail page.
  • The form URL is not a University of Alaska address:
    http://www.thehandyrandy.com/forms/use/science/form1.html
  • The form is not a University of Alaska login page.
     
Back to Top