The University is being targeted by hackers trying to obtain login and password information regarding your email account so they can use your email to send millions of "spam" messages. Below is a sample of what some will look like and they are very convincing.
PLEASE DO NOT REPLY TO THESE REQUESTS OR CLICK ON ANY LINKS IN THE MESSAGE. The University, the police, banks will NEVER ask for your account password or personal information through email for any reason.
By responding to these, the university becomes "blacklisted" by other email providers such as Yahoo, Google, Microsoft and others. This means that they will not accept any email coming from CSU until the problem is resolved. This can sometimes take days. In addition, the volume of emails generated slows down or can even shut down the email system.
In order to try and mitigate the impact to the campus community, individuals who reply to phising emails will have their accounts disabled for one business day or longer. This is the amount of time it takes to investigate the damage, clean the user's machine of potential virus and clear the email system of the generated emails.
So please help us prevent email service interruptions for the campus and for yourself. Don't reply to any email asking for User ID, Passwords or personal information. Just delete it.
Sample "Phishing" Emails
From: "Morag Reid" <Morag.Reid@cdu.edu.au>
Date: 05/26/2011 01:17 PM
Subject: Mailman Security Alert
Our mail service will receive a major upgrade on Saturday, May 21th at 10:00 p.m. For security purposes, this request cannot be processed without this email address verification step.
Please visit the link below to verify your account.
We anticipate that the maintenance will last no longer than 4 hours, and will be completed by approximately 2 a.m. During the maintenance window, each email server will be unavailable for a significant period of time, meaning that when your server is down, you will not be able to download email from the servers.
Incoming email will be queued, and delivery will be resumed as soon as the work is complete, so no email will be lost.
CONFIDENTIALITY: This e-mail (including any attachments) may contain confidential, proprietary and privileged information, and unauthorized disclosure or use is prohibited. If you received this e-mail in error, please notify the sender and delete this e-mail from your system
From: Cleveland State University <email@example.com>
Date: September 4, 2011 12:33:19 PM EDT
To: undisclosed-recipients: ;
Subject: CONFIRM YOUR The Cleveland State University WEBMAIL EMAIL ACCOUNT TO AVOID CLOSURE
Reply-To: accountteam @ admin.in.th
Please Submit Your e-mail account information to this E-mail: (accountteam @ admin.in.th)
DEAR Cleveland State University webmail holders
This is a message from the Cleveland State University WEBMAIL ACCOUNT Message Center for Communication to all of our Cleveland State University Webmail owners.
We are currently working on our database e-mail In users.We are deleting all old unused Cleveland State University Webmail Account, for more space for new users.
To prevent your account not be deleted from our database you are advised to confirm your Cleveland State University webmail account immediately.
Submit your account information below
Login Website ....................
Date of Birth: ......................
Country or territory: ...............
Warning! E-mail owners who refuse to submit E-mail account details, within seven days from this date of receipt will loses his/her Webmail account permanently.
Cleveland State University Webmail Team.
Please Submit Your e-mail account information to this E-Mail: (accountteam @ admin.in.th)