Fake support message leading to deceptive login page to steal name and password.
Message text:
From: Help Desk Support [mailto: non-UMN.EDU address]Login form:
Sent: Monday, August 14, 2017 10:09 AM
To: undisclosed-recipients:
Subject: ITS Support/Help desk
Dear Faculty and Staff,
Important information from Web Access Security Service.
An upgrade was made to the university’s authentication structure. The upgrade was required to prepare systems for compliance with State Security Standards, and the implementation of multi-factor authentication. Now, when you lo-gin. You will be required to enter your Network Username and password into the link that will be provided below.
Due to the upgrade that was made. Your lo-gin page will be changing. However, to avoid loss of your email address and password LOGIN your account now.
Thank you for your cooperation and patience as we take steps to further protect university data.
Thank you,
Division of Information Technology.
 |
| fake login page aimed at stealing account credentials |
- No UMN branding in message or webform
- Email not from umn.edu address
- Web form not hosted at a umn.edu site
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.