SUMMARY

PHISHING Attack Targeting the College of Charleston.

DATE & SEQUENCE

Monday, January 30, 2012 | Alert2012-2

SEVERITY

“HIGH”

AFFECTED PERSONS AND PLATFORMS

• Email users

DETAILS

College Community there is a current PHISHING attack that is targeting College of Charleston email users. The Phishing email appears to come from the College of Charleston, but is not.

An example of the Phishing email that was sent to students, faculty, and staff is shown below. If you have received this email just delete it. If you have already responded to it, please contact the helpdesk immediately.

Example of the Phishing email:

—–Original Message—–

From: College of Charleston <bridget.xxxson.xx9@my.csun.edu>

Date: January 28, 2012 3:54:03 PM EST

To: undisclosed-recipients:;

Subject: Emergency Verification

Dear   College of Charleston  Webmail subscriber,

We hereby announce to you that your email account has exceeded its

storage limit. You will be unable to send and receive mails and your

email account will be deleted from our server. To avoid this problem,

you are advised to verify your email account by clicking on the link

below.

http://checkverifymyemail.tk/webmail-verify/

Thank you.

The College of Charleston Management Team.

 

If you clicked on the URLhttp://checkverifymyemail.tk/webmail-verify/it may have taken you to a page, similar to the one below. If you provided the information requested, you should immediately change your password.

HOW YOU CAN HELP

• Install updated anti-virus. Visit go.cofc.edu/antivirus
• Do not click on suspicious files or attachments
• Contact the Helpdesk 953-3375 with any questions.

LEARN MORE

• Avoiding Phishing Attacks
• Phishing Videos
• FTC on Phishing