!

Phishing Alert: Xfinity Security Notification

Monday, August 7, 2017 - 10:41

Computing Services and Systems Development (CSSD) is responding to a new email phishing scam that claims you must enroll in a new Xfinity security feature or your service will be discontinued. The email contains a link to a harmful web page that mimics an Xfinity login page and attempts to collect an individual's username and password. The email appears to originate from a University email address. 

The following is a sample of the recent fraudulent email. If you receive this message (or any message similar to it), please report it as a phishing scam by forwarding the email message as an attachment to phish@pitt.edu. Detailed instructions on reporting scams are available at http://technology.pitt.edu/phishingscams.

*************************************************************************************

Subject: Important Notice To All Xfinity Customers

Xfinity User,
    We have embarked on a new security enhancement on all accounts with us. And as such, you
 are required to enroll for this security feature. Please note that on failure to comply your 
 service will be discontinued. to enroll, visit  Our security enhancement portal <link removed>.

This is a service-related email. Xfinity will occasionally send you service-related emails 
to inform you of service upgrades or new benefits.
Please do not reply to this email, it is not monitored.
Standard data charges apply to app download and usage. Check with your carrier.
Xfinity respects your privacy.
 2017 Xfinity. All rights reserved. All trademarks are the property of their respective owners.
Comcast Cable, One Comcast Center, 1701 JFK Boulevard, Philadelphia, PA 19103

 *************************************************************************************

CSSD strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. Avoid clicking on links contained in such emails, as these may lead to sites that contain harmful software. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, CSSD recommends that all users install Symantec Endpoint Protection software and use the LiveUpdate feature to get the latest virus definitions. As a complement to Symantec Endpoint Protection, CSSD offers Malwarebytes Premium for individuals and departments at no cost. Students, faculty, and staff can download Malwarebytes and Symantec Endpoint Protection at no cost through the Software Download Service at My Pitt. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Please contact the Technology Help Desk at 412-624-HELP [4357] if you have any questions regarding this announcement.