Phishing Alert: March 12, 2019
The following phishing message was sent to members of Duquesne University early today. The message body contains the text "Open before Wednesday" followed by a button labeled "Display email." If you received this message, please forward it to email@example.com and then delete it.
Phishing/Compromised Accounts Alert: February 26, 2019
Duquesne University is experiencing an outbreak of compromised email accounts as the result of a well-crafted phishing message that tricks the recipient by asking them to click on a link in the message and enter their username and password. This causes their email account to be compromised. If you believe your email account has been compromised, immediately reset your MultiPass password and alert Computing and Technology Services (CTS) via an email to firstname.lastname@example.org.
CTS has blocked one of the URLs from this phishing message and is disabling email accounts once they have been identified as compromised. If you receive a message you're not expecting and it looks suspicious, it may be a phishing message. In these instances, please forward the message to email@example.com.
Recent phishing messages are being sent from legitimate Duquesne University email accounts that have been compromised and contain subject lines that begin with "important (RE:)." Some examples include:
- "important (re: FW Fall Internship Opportunity for Language Students)"
- "important (re: Presidential Scholarship Meeting)"
- "important (RE: President Gormley's Letter to the Faculty and Staff)."
These phishing messages also ask you to click a link in the message. The link directs you to a page that appears to be a Duquesne University web page; however, it is an illegitimate site that can direct you to other pages that could contain malware. While the appearance of this website may slightly change, it will be looking to obtain your password. Below is an image of this particular website:
Again, if you receive a message like the ones described above, report it immediately to firstname.lastname@example.org so that CTS can address the incident and block the email address from communicating to campus in the future.