Please be aware that there is an illegitimate email circulating amongst Purdue users claiming that there is a notification for your account. The phishing email spoofs an @purdue.edu address and instructs users to click on a disguised link to view the fake notification. The page that comes up is a copy of the CAS authentication page.
This email is a phishing attempt to obtain your personal information and the link provided SHOULD NOT be visited. Currently the link is blocked on campus, but does not protect anyone that clicks the link outside of Purdue's network. In the event that you have clicked the link, it is highly advised that you change your Purdue career account password, password challenge questions, and perform malware scans on any of your personal computers used to access the link(s).
Also, please note that Purdue will never ask for personal information via email.
Posted by ITSP - Security on July 08, 2013, in Secure Purdue News.