This very deceptive message was hosted at a URL that was NOT at a umn.edu address, but included text in their URL which resembles umn.edu URLs used for logins.
The URL address was at
university-of-minnesota.system-info.info
(note: this site has been taken down) Because the last part of the URL included what looked like a umn.edu address it may have seemed legitimate.
BE VERY CAREFUL when visiting any page that requests your UMN credentials - the address for logins should only be hosted at a website that BEGINS with
https://*something*.umn.edu/
Message text:
From:
Date: Mon, Sep 29, 2014 at 11:46 AM
Subject: IMPORTANT****** System Admin Team
To:
The Technology Team will be performing a Data Center-wide infrastructure
upgrade to protect against phishing. Please Click here
<hxxp://xxxxxxxxxx.xxx.xx.info/idp2.shib.umn.edu/idp/umn/login.html>
to complete the upgrade. If in rare case you are unable to click the
link, then you can copy and paste the below link on your browser.
hxxp://xxxxxxxxxx.xxx.xx.info/idp2.shib.umn.edu/idp/umn/login.html
Some remaining maintenance may still be undergoing for large improvement
updates that will increase our security. To avoid any complication, it
is mandatory you follow the instruction.
*Thanks,*
*UMN System Admin Team*
THE login page MAY have been like this - similar, but NOT like the UMN login page:
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.