by Christine Sherry
Currently a large number of phishing emails are being sent to members of Imperial College.
‘Phishing’ is a common way for criminals to obtain user account information and passwords. It works by sending you a fake security notice email that appears to be from your bank or maybe even from ICT. The email may ask you to verify your details on a website or reply with your username and password.
The email may look legitimate and the link within it may lead to a website set up to look identical to a real site. The criminals hope to trick you into providing them with your details. Emails from legitimate sources, such as your bank or ICT, will never ask you to provide your details in this way.
What should you do if you have replied to a Phishing email?
Firstly, change your password to something new as soon as you possibly can.
Next, contact the Service Desk on 0207 594 9000, they will pass you through to ICT Security who can advise you on protecting your credentials and accounts further.
Finally, NEVER give your password to anyone.
Here are examples of the most recent spate of Phishing emails:
From: Webmail Support HelpDesk [mailto:email@example.com]
Sent: 16 January 2012 06:47
Subject: Warning Notice E-mail User
Dear Account User
You have reached the limit of your email quota, You will not be able tosend or receive new mail until you boost your mailbox size. To completeyour Account Verification process, you are to reply this message & enteryour ID and PASSWORD in the space provided below to avoid accountDe-activated and erased from our database.
Webmail User ID:
Date of Birth:
Warning!!! Account owners that refuses to update his or her account within Four days ofreceiving this warning will lose his or her account permanently.
Sent: 18 January 2012 14:56
Subject: Upgrade Your Auckland Account
Dear : Auckland University of Technology,
You have exceeded the limit of your mailbox set by your Web service, and you will be having problems in sending and receiving mails, you may loose all your information’s when your account is disabled.To prevent this Click Here to upgrade your web account so that your web account can be activated.
Auckland University of Technology Service.
Copyright ©2012Auckland University of Technology All right reserved
For more information about IT Security please visit: http://www3.imperial.ac.uk/ict/secureaware