Phishing Alert: Fake Email Claiming to be from CSSD Help Desk Asks Users to Click Harmful Link to Fix Their Webmail Accounts

2:00 p.m., Sunday, July 21, 2013

Computing Services and Systems Development (CSSD) is responding to an email phishing scam being received by members of the University community. This email claims that your access to My Pitt services has been affected and you need to click a link contained in the email to verify your account and fix your Webmail access.

Do not click the link in this email. No legitimate organization - including Computing Services and Systems Development - will ever ask for your password over email or on the phone. If you receive this message (or any message similar to it), delete it without replying, opening any attachments, or clicking on any links within the emails.

The following is a sample of the recent fraudulent email:

* * * * * * * * * * * * * * * * SAMPLE * * * * * * * * * * * * * * *
From: University of Pittsburgh CSSD Admin
Date: 07/21/2013 7:12 AM (GMT-08:00)
Subject: **Confirmation Notification**

**** Confirmation Notification ****

Please Note: This is an automatically generated email.

We are very sorry to inform you that, Scheduled maintenance from 11 p.m. on 7/20 to 7 a.m. on 7/21 has temporarily affected your mypitt account some services you access through My Pitt, may be disabled. Kindly verify your account to enable the CSSD Department fix your webmail account.

CLICK HERE to verify your webmail account. Alternate Link Below (URL REMOVED).

Sincerely,

Technology Help Desk
University of Pittsburgh
Computing Services and Systems Development (CSSD)
technology.pitt.edu
412-624-HELP


* * * * * * * * * * * * * * END SAMPLE* * * * * * * * * * * * * *
CSSD strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. Avoid clicking on links contained in such emails, as these may lead to sites that contain harmful software. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, CSSD recommends that all users install Symantec Endpoint Protection software and use the LiveUpdate feature to get the latest virus definitions. Symantec Endpoint Protection can be downloaded at no cost through the Software Download Service at My Pitt (my.pitt.edu).

 


Get Help