Phishing Alert: Multiple Email Message Scams | Information Technology | University of Pittsburgh

Phishing Alert: Multiple Email Message Scams

Tuesday, October 25, 2016 - 15:28


Computing Services and Systems Development (CSSD) is responding to a series of new email phishing scams that claim to be messages requiring immediate action. These messages contain a link to a malicious webpage. These email scams appear to originate from the University or the IT Help Desk.

The following are samples of the recent fraudulent emails. If you receive one of these messages (or any message similar to it), please report it as phishing a scam by forwarding the email message as an attachment to Detailed instructions on reporting scams are available at


Phish 1 - Subject: Meeting Notification

Phish 1 Text:


Dear User,

You have a meeting notification.

Click here for details. (link removed)

University of Pittsburgh



Phish 2 - Subject: To All Faculty\Staff

Phish 2 Text:


To All Faculty\Staff

Take note of this important update that our new web mail has been improved with a new messaging system from Outlook Web Access which also include faster usage on email, shared calendar, web-documents and the new 2016 anti-spam version.

Please use the link below to complete your upgrade for our new Outlook Web Access improved web mail.



IT Service Desk Support.



Disclaimer For Henry County Schools "The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this message in error, please contact the sender and delete the material from all computers."



Phish 3 – Subject: IT-Service Help Desk : VALIDATE MAIL ACCOUNT

Phish 3 Text:


Your password will soon expire in 24HRS. Please Click HELPDESK/VALIDATE (link removed) to Validate your account.

Thank you,


IT-Service Help Desk


The link in these phishing emails directs readers to a malicious webpage (shown below) that either mimics an Outlook Web App login page or a Pitt Passport login page and attempts to collect your username and password.

Fake Outlook Web app page

Fake Pitt Passport page

CSSD strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. Avoid clicking on links contained in such emails, as these may lead to sites that contain harmful software. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, CSSD recommends that all users install Symantec Endpoint Protection software and use the LiveUpdate feature to get the latest virus definitions. As a complement to Symantec Endpoint Protection, CSSD offers Malwarebytes Premium for individuals and departments at no cost. Students, faculty, and staff can download Malwarebytes and Symantec Endpoint Protection at no cost through the Software Download Service at My Pitt. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Please contact the 24/7 Help Desk at 412-624-HELP [4357] if you have any questions regarding this announcement.