Subject line is: Re: cron: smtp-gateway1: /mimedefang/scripts/quarantine-check-sender
Do not reply to the message, do not click on the link within the body of the message and do not provide your email and/or account information. This is a phishing attempt and it should be deleted immediately.
If you have already clicked on the link or have already responded to this email, please change your Carleton password immediately.
The email looks in part like this:
Our University, has been subjected to so many phishing attacks in the past week and for this reason IT service has updated it’s spam filte= rs of all incoming mail servers. To enable the new spam filters > in your mail b= ox, logout of your account and re-login your account > to replace the old spam filters of your account.
How can you tell if an email is a phishing attempt?
• If the message asks you for your password or directs you to a web form asking for your password
• If the link within the body of the message points to a non-Carleton email address
• The subject line is in all caps
• There is a call for immediate action – “download this now” or “confirm you email identity now” or “click on the link below”
• There are spelling or grammatical errors in the email