Metro State e-mail users are receiving e-mail messages (such as below) that claim to be from "firstname.lastname@example.org" or "email@example.com" telling people they must "confirm" their MSU Denver account information or their University email account will be closed.
DO NOT RESPOND to these messages!
These messages are fake. They are being sent by hackers trying to trick you into giving them your password so they can take over your e-mail or steal your identity and drain your bank account!
This technique is called Phishing. They are phishing (fishing) for victims.
If you receive one of these messages, or any message that asks you to provide private or confidential information (password, SSN, DOB, etc,) you should simply Delete the message.
- Do NOT reply to the message.
- Do NOT click on any links in the message.
- Do NOT open any file attachments in the message.
- Do NOT call any phone numbers in the message.
- DO Delete the message.
IMPORTANT: If you have already replied with your password, you should log into your ConnectU account and change your password immediately - do not delay!
Below is an example of the fake Phishing email currently circulating to campus users. This email is fake!
Dear MSCD Email MSCD Owner,
This message is from MSCD messaging center to all MSCD email account owners. We are currently upgrading our data base and e-mail account center. We are deleting all unused email account to create space for new accounts. To prevent your account from being deactivated you will have to update it.
CONFIRM YOUR EMAIL ACCOUNT
Email Username : ...............
Email Password : ..............
Date of Birth : ..................
Country or Territory : .........
Warning!!! Account owner that refuses to update his or her account within Seven days of receiving this email will lose his or her account permanently.
Thank you for using MSCD!
MSCD WEBMAIL Team
Fake Email messages from "firstname.lastname@example.org"
Metro State Email accounts continue to receive fraudulent Email that appear to be FROM: "email@example.com", "firstname.lastname@example.org", "email@example.com", "firstname.lastname@example.org", "email@example.com", or "firstname.lastname@example.org". These messages have been faked; they are being sent from computers infected with the "W32.MyTOB" computer worm. The infected computers are located OUTSIDE of the Metro State network. All computers deployed by IT at Metro State have the Symantec Anti-virus scanner installed on them.
These messages are NOT official college communications. Metro State will NOT notify you of problems with your account or ask you to "verify" or "update" your information in such a manner. You will always be directed to log into the MetroConnect portal to conduct such business. If you receive such a message, do NOT click on any links in the message or open any files attached to the message.
ALL USERS are reminded to:
- Keep your anti-virus running and up to date.
- Backup your important documents and data.
- Be very careful about opening Email file attachments. You should not open an Email attachment unless all of the following are true:
- You know the sender and have received legitimate Email from them in the past.
- The subject line makes sense to you.
- The text of the message makes sense to you.
- You were expecting the sender to send you a file attachment.
- You know what the file attachment contains.
- You know why the attachment was sent to you.
- You have a good quality, up to date, anti-virus scanner installed and running on your computer.
- Also see: Home Computer Security
Instant-messaging (IM) viruses and worms mutating at an alarming rate. Instant-messaging (IM) threats are mutating at an alarming rate, as virus writers attempt to bypass security-system updates that corporations use for protection. A record number of IM threat mutations have been recorded by IMlogic Inc., which has found that 88 percent of all worms tracked by its threat center also have mutations. The worst chameleon is the Kelvir worm, which has mutated 123 times during the last 11 months, the Waltham, Mass., vendor said. Art Gilliland, vice president of product for IMlogic, said, "IM threats are different than email threats. Updating virus signatures doesn't work well for IM, because the mutations are exceedingly fast and so is the speed with which these threats propagate." Source: http://www.techweb.com/wire/security