Login   |   Secure Purdue > News

Advisory: Phishing Email Alert: "New Message" - 7/8/2013

STEAM-ADVISORY NO. 2013070801
PURDUE UNIVERSITY SECURITY TEAM CIRT
Monday, July 08 15:55:00 EDT 2013


==OVERVIEW==

Phishing Email Alert: Phishing Email Alert: "New Message" - 7/8/2013

==SYSTEMS AFFECTED==

Targeted at Purdue users

==DETAILS==

There was recently a spear-phishing attempt that was sent out to
Purdue users that attempted to trick them into logging into a
fake CAS login page. The message itself appears legitimate
with a spoofed sender of account@purdue.edu and copy of the CAS login
page.

Please be advised that the email is not legitimate and should be
deleted or ignored. If you or anyone you know has clicked on the link
and entered your account info, then you will need to change your
password, challenge questions, and run malware scans on the computer
used. At this time the link has been blocked at Purdue's border.
This block will not protect users that click the link outside of
Purdue's network.

==SOLUTIONS==

Delete the email. If credentials were entered already, change your
password and challenge questions. Also run malware scans on the
computer that was used.

==FURTHER INFORMATION AND RESOURCES==

w w w
.purdue.edu/securePurdue/news/2013/phishing-email-alert--new-message---07082013.cfm
(remove the spaces)

==STEAM-CIRT CONTACT INFORMATION==

For questions concerning this advisory, please send email to:
itap-securityhelp@purdue.edu.

Report computer-related abuse to steam-cirt:
http://w w w .purdue.edu/securePurdue/incidentReportForm.cfm
<http://purdue.edu/securePurdue/incidentReportForm.cfm>

http://w w w .purdue.edu/securepurdue/steam
<http://purdue.edu/securepurdue/steam>

(remove spaces from links)

Posted by ITSP - Security on July 08, 2013, in Advisory Alerts.