We've recently seen some emails sent to ISU Extension staff that look like:
From: [actual person's email]
Sent: Friday, August 12, 2011 1:14 AM
Subject: YOUR MAILBOX IS ALMOST FULL
Click the Link below to re-validate your mailbox.
CLICK HERE: [where this is actually a link]
For Futher Explanation.
[non-legitimate person's name]
There are two things that might make this look like a legitimate email.
However, there are more things that tell you this is NOT a legitimate email
Some phishing scams are more clever than others. If someone is emailing you telling you to change your password and you can't tell if it's legitimate (remember neither ISU Extension or university IT Services will ask for your password via email), you can always contact the Computer Support Hotline at 515-294-1725 or via email at firstname.lastname@example.org.
If you believe you've responded to a phishing scam, change your password immediately. You can do this by going to https://asw.iastate.edu, logging in, and select 'Change Password'. Or, on a Windows machine connected to the IASTATE domain, press Ctrl-Alt-Del and select 'Change a Password'.