12
Feb
2018

Phishing Email: library account

Please be aware of a phishing email sent to ANU usersĀ asking them to reactivate their account by logging into a third party malicious website.
This message is attempting to steal ANU users credentials.

This email was sent from a compromised ANU Student account.

Sample message

======================================================

Sample Compromised Email Image

Please be careful and check all emails before responding, clicking on the links, or opening attachments.

If you have entered your ANU credentials on this third party website, please change your password immediately and contact the ANU Service Desk on 02 6125 4321 for further advice.

ANU IT will never:

  • Ask you to link your accounts to third party services;
  • Require that you “validate” your credentials through links in emails;
  • Send notification to “Terminate your account”;
  • Block your email account if you did not login on a particular site;
  • Send you a “Mailbox is full” email and suggest that your email will be blocked if you do not take some action.

Some things that ANU IT will always do:

  • Address you or your group by name;
  • In the Signature block we will always provide a name and number of the person sending the email;
  • Send emails in ANU User notification format providing:
    – Date / time and system affected;
    – Reason for the notification;
    – Incident or change numbers that can be referenced in ANU systems;
    – Precise description of tasks being performed;
    – A contact point for the incident/change and a phone number in case you have questions;
  • All links will take you to ANU systems or ANU sites unlike the links in malicious emails;
  • Give you enough warning through newsletters / email updates for any new changes coming into effect at ANU.

 

Filed under: Advice, Alerts

Leave a reply

Updated:  12 February 2018/ Responsible Officer:  Chief Information Officer/ Page Contact:  IT Security