If you receive an email claiming to be from the SU IT department (see example below), do not open it or click on any of the links or reply to the e-mail. The e-mail attempts to gain access to the university accounts using the sun.ac.za details that looks initially genuine.
This is a phishing email attempting to acquire your passwords and other information. Immediately delete the email and do not reply to it.
There are just a few of the obvious signs that this is a phishing e-mail designed to steal personal information from you. You should never respond to mail like this both at work and at home, and you should never reveal any personal details especially your username and password in an e-mail form or on a webpage that you access via an e-mail link.
IT will never request your username, password or other personal information by means of an e-mail.
- If it were a genuine message from Information Technology, there would be branding, and it would be in English and Afrikaans. This one has nothing like that in this e-mail.
- The grammar is particularly bad. (what is a “strong virus”?)
- We are university personnel and students or “users” we are not “subscribers”.
- Why would you have to enter your password in readable form in an insecure e-mail?
- There is no support@sun.ac.za e-mail address.
- If you do reply, you’ll see the default reply address is an unknown one and not a sun address.
- The links and the actual sender/server originate in Korea.
EXAMPLE OF “PHISHING” E-MAIL:
|
Dear sun.ac.za subscriber, We are currently carrying out an upgrade on our system due to the fact that it has come to our notice that one or more of our subscribers are introducing a very strong virus into our system and it is affecting our network.We are trying to find out the specific person. For this reason all subscribers are to provide their USER NAME AND PASSWORD for us to verify and have them cleared against this virus. Failure to comply will lead to the termination of your Account in the next 48 hours. Information Required: http://webmail.sun.ac.za/owa/auth/logon.aspx Hoping to serve you better.
|
Indien u `n e-pos ontvang met onderstaande inhoud wat lyk of dit deur die US IT-afdeling gestuur is, moet onder geen omstandighede op die skakels kliek of daarop antwoord nie.
Hierdie is `n “phishing” e-pos wat poog om u wagwoord en ander inligting te oes. Verwyder dadelik die e-pos en moenie daarop reageer nie.
IT sal nooit gebruikers vra om hulle gebruikersname, wagwoorde of persoonlike inligting te verskaf deur middel van `n e-pos boodskap nie. Daar is ook `n paar ander tekens dat dit `n “phishing” e-pos is.
- As dit `n boodskap van IT was, sou dit sekere identifiseerbare kenmerke gehad het en dit sou in Engels en Afrikaans gewees het.
- Die grammatika is buitengewoon sleg.
- Universiteitspersoneel is “users”, nie “subscribers” nie.
- Dis e-pos is `n leesbare, onsekure, maklik toeganklike formaat – hoekom sou IT vra dat jy jou wagwoord op so `n onsekure wyse verskaf?
- Daar bestaan geen support@sun.ac.za e-pos adres nie.
- As jy wel op die “default reply” adres kliek, sal jy dadelik sien dis eintlik `n vreemde adres.
- Die skakels en die versender/bediener se oorsprong is in Korea.
Meer inligting oor “phishing”.
VOORBEELD VAN “PHISHING” E-POS:
|
Dear sun.ac.za subscriber, We are currently carrying out an upgrade on our system due to the fact that it has come to our notice that one or more of our subscribers are introducing a very strong virus into our system and it is affecting our network.We are trying to find out the specific person. For this reason all subscribers are to provide their USER NAME AND PASSWORD for us to verify and have them cleared against this virus. Failure to comply will lead to the termination of your Account in the next 48 hours. Information Required: http://webmail.sun.ac.za/owa/auth/logon.aspx Hoping to serve you better.
|
