Tuesday, June 20, 2017

Phishing Attempt - Don’t be Fooled….

Another round of “phishing” attacks have been detected and reported to ITS.  Some users on campus have reported receiving an email message crafted to look like it came from the Provost.  The suspect message includes a PDF attachment that forwards the user to a fake login page to provide their Username and Password to open the file.  While the attacker took the time to identify the Provost as a trusted sender and craft the message to appear to come from the Provost’s account, it is clear from the message “from” address that it did not originate from the Provost, but rather an off-campus email address with the name changed to match.

Screen Shot 2017-06-20 at 3.03.10 PM.png

If you happened to click the message, a “locked” PDF file would appear and forward you to a fake login site to “unlock” the message.  There are several indicators on the fake login site that confirm that the site is not legitimate.  

First, all JasperNet users should only provide their password at the “green” login page of secure.manhattan.edu that indicates a secure connection to Manhattan College.
Screen Shot 2017-06-20 at 3.06.38 PM.png

Second, the fake login page indicates that the connection is “Not Secure” and uses a non-Google URL (biosyncpharma-dot-com).

Screen Shot 2017-06-20 at 2.55.11 PM.png

If you encounter this or similar messages, please forward to ITS@manhattan.edu to be validated.

NEVER click on a suspicious attachment and NEVER provide your username or password at a suspicious login page. Beware of unsolicited messages.