Phishing E-mail Alert to Members of Concordia University
Canada based Concordia University's IITS (Instructional and Information Technology Services) has advised everyone holding e-mail accounts with the Institution for remaining vigilant of phishing electronic mails, which are presently aiming at their mailboxes. Concordia.ca published this dated November 16, 2011.
Posing as a message from IITS, the fake e-mails addressing faculty and other staff say that the e-mail has been sent to all teachers as well as staff members from the IITS HelpDesk of The Concordia University in connection with accounts on Alcor Webmail that they hold.
It then says that IITS noticed campus members' accounts on Alcor Webmail that spammers compromised. The miscreants acquired admission into Webmail accounts followed with utilizing them to carry out illegitimate online operations.
Presently, IITS HelpDesk is upgrading and maintaining its database, while it aims to upgrade its E-mail Security Server to have improved online facilities. Therefore, IITS strongly advises all accountholders to send their account details instantly at the IITS office so that HelpDesk can change their accounts suitably. Further, it'll send one fresh alphanumerical password to the accountholders for making confirmations, the spam mail states.
Consequently, recipients of the e-mail are solicited for providing their username and password as well as any other e-mail id they have, security professionals of the University explain.
However, for reducing the above kinds of scams, the University's security officials outline certain striking clues that could help recognize the phishing e-mails. These are first, any reputable university say Concordia University won't ever send e-mail for soliciting recipients' username, password or any substitute e-mail id. Therefore, users must treat an e-mail with suspicion which directs them for providing sensitive details either via answering the e-mail alternatively via a website.
Furthermore, incase anyone thinks the e-mail he received is genuine then he should check by visiting the sender party's website like the Concordia University in the above instance, or phone up the party and check if its request is indeed real.
Eventually, once the user recognizes a phishing e-mail, he must inform about it to the relevant officials similar to IITS within the above instance before erasing it completely.
Related article: Phishing With A Redirector Code
» SPAMfighter News - 25-11-2011