September 21, 2012
And Yet More Phishing

Most of you are aware of phishing attempts by now. We've been seeing a few new ones the last week or so and this one in particular, I know went out to quite a few of you:

Your Iowa State Email account has been reported for numerous spams Activities from a foreign ip recently. As a result you may not be able to receive or send new mail.
However, you might not be the one promoting this Spam, as your e-mail account might have been compromised. To protect your account from sending spam mails, You are to confirm your true ownership of this account, Kindly CLICK HERE fill the form and login again.

Failure to do this will violate the ITS Policy.This will render your account inactive.
NOTE!!: You will be sent a password reset message in next seven (7) working days after undergoing this process for Security reasons.
The office of Information Security will keep this updated if information should change, but we encourage all users to run their updates after the expected release of this patch.
Authorised by: Jim Davis,
Vice Provost for Information Technology and Chief Information Officer.

A few things to notice here:

  1. They've gone to the trouble to gather an ISU logo, made it appear that the email is from the Solutions Center, and used Jim Davis's name (CIO for ISU)
  2. However, it's also badly formatted and sends you to a link that isn't at Iowa State (the link for most of you has been removed)
  3. Also, password resets do not work this way on the ISU network
  4. No one should ever store your password except you and the system itself

If you ever have questions about emails like this, don't hesitate to ask the hotline (515.294.1725 or eithotline@iastate.edu).

Posted by dcoates at September 21, 2012 11:16 AM