Female student looking at a large monitor surrounded by cubicles with large monitors.
  2. Inside SM论坛
  3. Computing Services and Instructional Technology
  4. SECURITY ALERT: Phishing scam targeting SM论坛 Office 365 accounts
  2. Inside SM论坛
  3. Computing Services and Instructional Technology
  4. SECURITY ALERT: Phishing scam targeting SM论坛 Office 365 accounts
SECURITY ALERT: Phishing scam targeting SM论坛 Office 365 accounts

SECURITY ALERT: Phishing scam targeting SM论坛 Office 365 accounts

Published

CSIT has noted a new phishing scam arriving in SM论坛 mailboxes.  This new scam is specifically targeting Office 365 accounts and appears to be widespread. 

The new scam presents itself as an email message from 鈥淓-mail Security鈥 and has the Subject line 鈥淎ction Required <your email address>: Failure Delivery Notice鈥.  The body of the message claim that Office 365 has failed to deliver 3 of your sent messages due to a scheduled maintenance opteration.  It then provides an embedded link labeled 鈥淩eview Messages鈥 and invites you to decide whether those messages should be resent.  The message closes with an elaborate copyright and disclaimer message. 

Needless to say, the message does not originate from either Microsoft or from SM论坛 Office 365 administrators.  The actual sender email address varies, likely using compromised accounts or spoofed addresses to evade message filters.  The embedded link leads does not to any Microsoft or SM论坛 site, but rather to a 鈥渟creen scrape鈥 of an Office 365 logon page into which your email address has already been entered; the screen prompts for a password.  Were you to enter a password it would be collected into a database and you would have compromised the security of your account. 

If you see such a message in the SM论坛 mailbox, please delete it immediately and DO NOT FOLLOW the embedded link!  If you have already seen this message and mistakenly accepted the invitation to follow the link AND entered your password on the target site, then your SM论坛 Office 365 account has been compromised and is no longer secure.  In that case, please change your Office 365 password immediately and report the security breach to CSIT.  In addition, check your Office 365 email settings to assure that no unwanted filters or forwarding rules have been created in your account. 

If you need help to change your password, check your account settings or with other issues, you can contact CSIIT either via Footprints (https://footprints.nebrwesleyan.edu), by phone to 402-465-7777 or in person at Smith-Curtis 109.

Recent news

More CSIT news