March 12, 2008

E-mail scam filling Purdue inboxes

The IT Networks & Security Incident Response group is continuing to warn the Purdue community about reports of an e-mail scam targeting campus e-mail users.  The e-mail appears to come from the "Purdue Team" and asks e-mail owners to submit their e-mail usernames and passwords or risk their account being closed.

The current version of the message includes specific information about Purdue computing services, including the address of the webmail system and the dial-in modem pool.

This is a targeted e-mail scam, or phishing e-mail, that attempts to fraudulently acquire sensitive information by pretending to represent an authoritative entity such as the Purdue Webmail Team.

Please remember that Purdue IT teams should never ask for your password.

Users who receive such a message should immediately delete the e-mail and do not reply. If you have already responded to the e-mail it is highly recommended that you immediately reset your password and run anti-virus and anti-malware scans of your system.

For more information, or to change your password, go to www.purdue.edu/securePurdue