University of Vermont

Information Technology

"Announcement" Email Scam

Did you receive an email with a Subject of "Announcement"?  This message, like others that tell you to "upgrade," "verify," "validate," or "re-validate" your mailbox or your email account, or increase your quota, is a phishing scam -- an attempt to steal your UVM credentials (your Net-ID and password).   Please do not click on the link in the message, and don't reply to it; simply delete the email.  

And any email that asks you to to reply in order to complete a security process for your email account, or to reply with your UVM password, is a phishing scam

Any email that asks you to to enter your UVM password on a non-UVM web site is a phishing scam. Do  not click links in such messages and do not reply.  Hover your cursor over links to see where they would take you; if it's not going to "http://www.uvm.edu/" or "http://uvm.edu/", don't click.  UVM will never ask you to enter your UVM Net-ID and password on a non-UVM web page -- even if it looks like a UVM page, and even if it's on a reputable site, such as Google Docs, 123contactform.com or contactme.com, or if it contains UVM graphics and you've been directed there by an email that appears to come from a UVM email address.

What to do if you've clicked on the link

If you've followed the link in the message, or replied to this email or one like it, you should change your password immediately at www.uvm.edu/account. Contact the UVM Computing Helpline if you need assistance changing your password.

For more information about phishing scams, view our Web page on protecting your NetID and password

If you are ever uncertain about the legitimacy of an email message concerning your uvm.edu account, please contact the Computing Help Line at 656-2604, or submit a help request online.

If you would like to report phishing, please forward the phishing email, as an attachment, to is-spam@labs.sophos.com and to abuse@uvm.edu. (To forward a message as an attachment using Thunderbird, go to the Message menu and select Forward As > Attachment.)

The "Announcement" Phishing Scam

 

From: The University of Vermont
Subject: Announcement
Date: April 22, 2013 7:20:24 AM EDT
To: "Kapoole, Myron"
Reply-To: The University of Vermont

Dear subscriber,

We are currently performing database maintenance and upgrade on our webmail log for a better performance. We are very concerned about stopping the proliferation of spam. We have implemented Sender Address Verification (SAV) to
ensure that you do not receive unwanted emails and to give you the assurance that your messages to message center have no chance of being filtered into bulk email folder.

Also a DGTFX virus has been detected in your folders. Your email account has to be upgraded to our new and Secured DGTFX anti-virus 2013 version to prevent damages to our webmail log and your important files.

To help us confirm and protect your account, fill the columns below and send back to us to validate your email account or your email account will closed to avoid the spread of the virus.

Account Username:
Account Password:

We assure you of more quality services at the end of this maintenance. Note that your password will be encrypted with 1024-bit RSA keys for your password safety.

Regards

Webmail Development Team
File number: cw/8941/624

 

 

 

 

Contact UVM © 2014 The University of Vermont - Burlington, VT 05405 - (802) 656-3131