Phishing message of February 17th, 2014
Update: A similar phishing message was sent to SEAS users on March 4, 2014.
The morning of February 17th, 2014, a "phishing" email message was sent to many SEAS email accounts. A phishing message appears to be from a trustworthy person but is actually an attempt to acquire private information such as passwords.
The email that was sent appeared to be from "Wayne Squire" (firstname.lastname@example.org) and had the subject "Incoming mails from Services (CETS) email@example.com". It contained the link "http://webmail-seasupenn-edu.webs.com/".
Upon learning of the phishing attempt, we blocked this email at our gateway. We also blocked SEAS computers from accessing the malicious website (via a change to our DNS server).
In general you should be very hesitant to click on links that are sent to you in an email. While you might recognize this particular message as fraudulent by its poor grammar and punctuation or by the non-Penn email address it was sent from, attackers are getting more sophisticated all the time. For example, this attacker clearly did some research and put "CETS" in their message.
If you did click on the link, please contact CETS (firstname.lastname@example.org) so we can help make sure your information is secure.
Levine Hall, Room 164