SECURITY ALERT: Phishing Email: “Your[email@example.com] Account is on Restriction”
(US Eastern Time)
DATE: November 8, 2011
The Computing Services Information Security Office (ISO) received numerous reports from Andrew users today of a phishing email with the subject, “Your [firstname.lastname@example.org] Account is on Restriction” from a sender address of Administrator <email@example.com>. In response, the ISO blocked the response Web address and further relaying of the phishing messages. Administrators at the originating site have been notified.
What should you (or the individuals you support) do if you received this message? Delete it. Do not click on the link, AND DO NOT ENTER YOUR USERNAME AND PASSWORD.
What You Should Do
What if you already clicked on the link and entered your username and password?
Please direct any questions or comments to the Computing Services Help Center at 412-268-HELP (4357) or firstname.lastname@example.org, or to your departmental administrator or DSP consultant.
A sample of the message follows:
From: Administrator <email@example.com
Date: Tue, 8 Nov 2011 08:42:52 -0800
To: <firstname.lastname@example.org <mailto:email@example.com>>
Subject: Your [firstname.lastname@example.org <mailto:email@example.com>]
>Account is on Restrcition.
Carnegie Mellon University
We detected irregular action on your e-mail system on November 08, 2011.
As the Primary owner, you must verify your account activity before
you can continue using your account, and upon verification, we will
remove any restrictions placed on your account.
click on the link below: