Login   |   Secure Purdue > News

Advisory: Annual Form - Authorization to Use Privately Owned Vehicle on State Business

STEAM-ADVISORY NO. 2013100802
PURDUE UNIVERSITY SECURITY STEAM-CIRT
Tuesday, October 08, 2013 17:00:00 EDT

==OVERVIEW==

Phishing email with an attached form is asking Purdue users to fill out if using a personal vehicle while on state business.

==SYSTEMS AFFECTED==

Purdue users

==DETAILS==

A phishing email is circulating amongst Purdue users, asking them to
fill out a form that is attached to the email in order to be
compensated for using personal vehicles while on state business. The
email is spoofing @purdue.edu email addresses. The attached form was
flagged for containing malware and was meant to phish for information.

The subject of the email is: Annual Form - Authorization to Use
Privately Owned Vehicle on State Business

The sender is spoofing various different Purdue addresses.

If you have received this email, please ignore and delete. If any user
has taken any action to reply or attempt to fill out the attached
form, it is recommended that malware scans are performed and password
and challenge questions are reset.

==SOLUTIONS==

Ignore and delete the email. If any user has taken any action to reply or attempt to fill out the attached form, it is recommended that malware scans are performed and password and challenge questions are reset.

==FURTHER INFORMATION AND RESOURCES==

w w w.purdue.edu/securePurdue/news/2013/phishing-email-alert--annual-form---authorization-to-use-privately-owned-vehicle-on-state-business.cfm
(remove spaces from links)

==STEAM-CIRT CONTACT INFORMATION==

For questions concerning this advisory, please send email to:
itap-securityhelp@purdue.edu.

Report computer-related abuse to STEAM-CIRT:
w w w.purdue.edu/securePurdue/incidentReportForm.cfm
w w w.purdue.edu/securepurdue/steam
(remove spaces from links)

Posted by ITSP on October 08, 2013, in Advisory Alerts.