[:en] Phishing scams disguised as an e-mail from The IT Admin Desk, asking you to upgrade your e-mail, are nothing new. This week two more of these e-mails, from the same source, have been sent to SU staff’s mailboxes. One is from the ADMIN TEAM and another from IT SERVICE DESK.

Both e-mails ask you to “log in” to update or verify your account, using the link included. Both are sent from compromised e-mail accounts from Minnesota and Iowa educational institutions. One diverts to a server controlled by scammers in Brazil and the other California. However, both use a forged “login page” and the same details.

Do not respond to these e-mails or go to the site given in the e-mail. Do not fill in your username, password or other details on any site. Stellenbosch University Information Technology has no need for users to provide user names and passwords on any site other than www.sun.ac.za/useradm, where you can manage your network account. We are also able to upgrade or migrate your e-mail account without asking you to assist.

Our e-mails will always be branded and in Afrikaans and English. If you are unsure about an e-mail you received, speak to your local computer expert or ask the IT Service Desk (021-8084367 or helpinfo@sun.ac.za).

Here is an example of the phishing mail: 

From: I, Amscammer

Sent: Thursday, July 14, 2016 5:56 AM

To: 1,Amscammer

Subject: ADMIN TEAM/IT SERVICE DESK/IT HELPDESK/IT SUPPORT/WEBMAIL ADMIN (and all variations you could think of) 

Dear E-mail User:- 

Take note of this important update that our new webmail has been improved with a new messaging system from Owa/outlook which also include faster usage on e-mail, shared calendar,web-documents and the New 2016 Anti-Spam Version. 

Please use the link below to complete your update for our new Owa/outlook improved webmail.

Log on to Outlook Web Access<http://iam.aspammer.com> to update your mailbox.

ITS Help Desk
ADMIN TEAM
©Copyright 2016 Microsoft Outlook
All Right Reserved.

[INFORMATION SUPPLIED BY DAVID WILES]

[:af] IT se “Admin Desk” het verlede week talle e-posse uitgestuur om personeel en studente te versoek om rekeninge te heraktiveer. Of het ons? Gelukkig word ons gebruikers nie meer met `n slap riem gevang nie. Of is julle?

Phishing e-posse, wat vra dat jy jou e-posrekening heraktiveer, is uitgestuur vanaf die rekening “The IT Admin Desk”. Twee ander e-posse is gestuur deur “ADMIN TEAM” en “IT SERVICE DESK” vanaf dieselfde bron, gekaapte e-posse by opvoedkundige instellings in Minnesota en Iowa. 

Al die e-posse versoek dat jy, deur middel van `n skakel, aanteken om jou rekening te verifieer of opdateer. Een is herlei na `n bediener in Brasilië, die ander Kalifornië. 

Moenie reageer op hierdie e-posse nie en moet ook nie na die verskafte webwerfadres gaan nie. Moenie jou gebruikersnaam, wagwoord, of enige ander inligting op die webwerf invul nie.

Universiteit Stellenbosch se Informasietegnologie-afdeling hoef nie jou gebruikersnaam en wagwoord te vra nie. Die enigste plek waar dit nodig is om in te vul is op www.sun.ac.za/useradm, waar jy jou eie rekening bestuur. IT kan jou e-posrekening skuif of opgradeer sonder dat jy enigiets hoef te doen. 

Ons e-posse sal altyd herkenbaar wees, in dieselfde formaat en in Afrikaans en Engels. 

Indien jy onseker is oor ‘n e-pos, vra vir jou plaaslike rekenaarkundige of kontak die IT Dienstoonbank (021-8084367 of helpinfo@sun.ac.za).

Hier is `n voorbeeld van die phishing e-pos: 

From: I, Amscammer

Sent: Thursday, July 14, 2016 5:56 AM

To: 1,Amscammer

Subject: ADMIN TEAM/IT SERVICE DESK/IT HELPDESK/IT SUPPORT/WEBMAIL ADMIN (and all variations you could think of) 

Dear E-mail User:- 

Take note of this important update that our new webmail has been improved with a new messaging system from Owa/outlook which also include faster usage on e-mail, shared calendar,web-documents and the New 2016 Anti-Spam Version. 

Please use the link below to complete your update for our new Owa/outlook improved webmail.

Log on to Outlook Web Access<http://iam.aspammer.com> to update your mailbox.

ITS Help Desk
ADMIN TEAM
©Copyright 2016 Microsoft Outlook
All Right Reserved.

[INLIGTING VERSKAF DEUR DAVID WILES]

Tags: phishing

This entry was posted on Friday, July 15th, 2016 at 10:17 am and is filed under E-mail, Security. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.