Go to the U of M home page

Friday, June 9, 2017

Example 200: All Faculty and Staff Must Read

Notes: From a non-UMN address, tinyurl resolves to a site with a fake UMN login page.
 
Text of message:

From: Health Care Center <xxxxxx@students.towson.edu>
Date: Fri, Jun 9, 2017 at 9:41 AM
Subject: All Faculty and Staff Must Read
To:
Dear Faculty and Staff
You have an important Health message from University Of Minnesota Faculty and Staff Health Center. Please Click [hxxp://tinyurl.com/y8ng5sxf] Here to read it
[Real UMN Professor Name]
612-xxx-xxxx
xxx Morrill Hall
100 Church St. S.E.
Minneapolis MN 55455
Web Form:
Fake UMN.EDU login, hosted at a .com site
Fake UMN.EDU login, hosted at a .com site
Things to Note:
  • Close, but not exact, copy of the UMN login page
  • Webform linked using tinyurl.com link to hide true location
  • Email comes from a different EDU, not umn.edu

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.