Please keep an eye out for an e-mail from a sun email address with the subject line of FYI_Order/Approval.
It is a phishing scam with a link to a website that is designed to compromise security and steal details such as banking details, login names and passwords.
The owner of the affected account has already put an Out-of-office notification on her account telling people to ignore the mail sent from her account, but the account is probably still compromised and under the control of the scammers.
Once in the university domain the scammers will continue to attack the university network to steal more information or to obtain bank account details, etc.
Here is an example of one of the mails:
Please report this phishing mail if you receive it from the above mentioned address or any other sun address. Here is how you report it:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Go to https://servicedesk.sun.ac.za/jira/servicedesk/customer/portal/6/create/115.
Fill in your information and add the email as an attachment. Your request will automatically be logged on the system. Please add the suspicious email as an attachment to the request.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
If you have accidentally clicked on the link and already given any personal details to the phishers it is vitally important that you immediately go to the USERADM page (either http://www.sun.ac.za/password or www.sun.ac.za/useradm and change your password immediately.) Make sure the new password is completely different and is a strong password that will not be easily guessed, as well as changing the passwords on your social media and private e-mail accounts, especially if you use the same passwords on these accounts. Contact the IT Service Desk if you are still unsure.
[ARTICLE BY DAVID WILES]
