!

Phishing Alert: Pitt Account Upgrade Scam

Thursday, May 26, 2016 - 15:50

 

Computing Services and Systems Development (CSSD) is responding to a new email phishing scam that claims to be from the "IT Service Desk Support" and appears to originate from a pitt.edu email address. The email typically uses the Subject "To All Faculty\Staff". It claims webmail has been improved with a new, faster messaging system from Outlook Web Access.

The following is a sample of the recent fraudulent email. If you receive this message (or any message similar to it), please report it as a phishing scam by forwarding the email message as an attachment to phish@pitt.edu. Detailed instructions on reporting scams are available at http://technology.pitt.edu/phishingscams.

******************************************************************************

Subject: To All Faculty\Staff

To All Faculty\Staff

Take note of this important update that our new web mail has been improved with a new messaging system from Outlook Web Access which also include faster usage on email, shared calendar, web-documents and the new 2016 anti-spam version.

Please use the link below to complete your upgrade for our new Outlook Web Access improved web mail. CLICK on STAFF AND STUDENT UPGRADE

Regards,

IT Service Desk Support.

 

=================
The information contained in this electronic message and any attachments are intended for specific individuals or entities, and may be confidential, proprietary or privileged. If you are not the intended recipient, please notify the sender immediately, delete this message and do not disclose, distribute or copy it to any third party or otherwise use this message. The content of this message does not necessarily reflect the official position of the International Organization for Migration (IOM) unless specifically stated. Electronic messages are not secure or error free and may contain viruses or may be delayed, and the sender is not liable for any of these occurrences.

******************************************************************************

The link in the phishing email directs readers to a malicious Web page that looks similar to the page shown below. The page attempts to collect your email address, username, password, and domain.

Phishing Scam Login Page

CSSD strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. Avoid clicking on links contained in such emails, as these may lead to sites that contain harmful software. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, CSSD recommends that all users install Symantec Endpoint Protection software and use the LiveUpdate feature to get the latest virus definitions. As a complement to Symantec Endpoint Protection, CSSD offers Malwarebytes Premium for individuals and departments at no cost. Students, faculty, and staff can download Malwarebytes and Symantec Endpoint Protection at no cost through the Software Download Service at My Pitt. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Please contact the Technology Help Desk at 412-624-HELP [4357] if you have any questions regarding this announcement.