Another Slippery Phish: (Email Alert) ITservice Desk
- By Dean Jay Williams
Email with a Subject of "(Email Alert) ITservice Desk" is a scam. This message, like others that tell you to "upgrade," "verify," "validate," or "re-validate" your mailbox or your email account, or increase your quota, is a phishing scam -- an attempt to steal your UVM credentials (your Net-ID and password). Please do not click on the link in the message, and don't reply to it; simply delete the email.
Do not open attachments you were not expecting to receive, even if the message appears to come from someone you know and trust. Attachments can infect your computer with viruses and other malicious software.
Any email that asks you to to enter your UVM password on a non-UVM web site is a phishing scam. Do not click links in such messages and do not reply. Hover your cursor over links to see where they would take you; if it's not going to "http://www.uvm.edu/" or "http://uvm.edu/", don't click. If you go to a site and the address bar in your web browser doesn't show it's a uvm.edu site, quit or exit your browser. UVM will never ask you to enter your UVM Net-ID and password on a non-UVM web page -- even if it looks like a UVM page, and even if it's on a reputable site, such as Google Docs, 123contactform.com or contactme.com, or if it contains UVM graphics and you've been directed there by an email that appears to come from a UVM email address.
What to do if you've clicked on the link
If you've followed the link in the message, or replied to this email or one like it, you should change your password immediately at www.uvm.edu/account. Contact the UVM Computing Helpline if you need assistance changing your password.
For more information about phishing scams, view our Web page on protecting your NetID and password.
If you are ever uncertain about the legitimacy of an email message concerning your uvm.edu account, please contact the Computing Help Line at 656-2604, or submit a help request online.
If you would like to report phishing, please forward the phishing email, as an attachment, to firstname.lastname@example.org and to email@example.com. (To forward a message as an attachment using Thunderbird, go to the Message menu and select Forward As > Attachment.)
The "(Email Alert) ITservice Desk" Phishing Scam
The link in this message would take you to a malicious non-UVM site where a form would capture your Net-ID and password.