{"id":698,"date":"2020-05-21T16:09:59","date_gmt":"2020-05-21T16:09:59","guid":{"rendered":"https:\/\/blog.bham.ac.uk\/itsecurity\/?p=698"},"modified":"2020-05-21T16:09:59","modified_gmt":"2020-05-21T16:09:59","slug":"increase-in-phishing-attacks","status":"publish","type":"post","link":"https:\/\/blog.bham.ac.uk\/itsecurity\/2020\/05\/21\/increase-in-phishing-attacks\/","title":{"rendered":"Increase in Phishing Attacks"},"content":{"rendered":"

We have had a lot of phishing attacks recently, many coming from University staff and student accounts that have given their username and password in response to an earlier attack.<\/p>\n

A lot of people are responding to these.\u00a0 The wording varies, but all follow a very traditional pattern for phishing messages.\u00a0 They include emails telling you that your account will expire, you have messages waiting, and your account needs to be validated.\u00a0 \u00a0The formatting and wording varies.\u00a0 Some have images in and some are just text.<\/p>\n

If you receive one, delete it.\u00a0 If you are aware that you have responded to a message, change your password immediately.<\/p>\n

All include a link to a website which asks for your login details and many look like an Outlook Web Access login page.<\/p>\n

The following is an example (names and email addresses have been changed)<\/p>\n

From:<\/strong> Campus__Helpdesk <i.b.phished@bham.ac.uk>
\nSent:<\/strong> 20 May 2020 14:56
\nTo:<\/strong> Richard Trevithick (Engineering) <r.trevithick@bham.ac.uk>
\nSubject:<\/strong> Action Required For: r.trevithick@bham.ac.uk<\/p>\n

You have (21) new Campus Schedule message
\nFollow link below to access this updates<\/p>\n

Review Scheduled Message Here<\/a><\/p>\n

HelpDesk-Services 2020
\nSecurity Message<\/p>\n

There are plenty of indications that this should make you suspicious<\/p>\n