Information Security Blog

To receive notification about new blog entries, follow SoM_ISO on Twitter

Phishing Scam Targets Stanford

Posted 10:51 AM, January 14, 2011, by eamsel

There's a new phishing scam being mailed to Stanford users - and if you don't read it carefully, you'll think it's legitimate! It looks like it's from HelpSU, you know, the tool we all use... But look carefully: the Mailto: is not a Stanford address, the Subject line is misspelled. If you continue reading the email, you'll notice lots of other mistakes as well.

But most of all -- STANFORD WILL NEVER ASK YOU TO PROVIDE YOUR SUNETID AND PASSWORD -- NOT EVER!

Any email that asks you for your userID/SUnetID and password is a phishing scam. The objective is always to get you to provide your login credentials so that someone else can access your account, whatever that account might be - work email, personal email, or even a bank account. Just remember: NEVER GIVE OUT YOUR PASSWORD, EVER. Regardless of what someone might tell you, particularly in an email, there is no valid reason ever why you should ever give out your password.

If you are still unsure when you receive a request for your password, please check with IRT Information Security Services (irt-security@lists.stanford.edu) before you do anything. They will gladly respond to your question and help you.

A good rule of thumb is: When in doubt, don't!
If it doesn't sound legitimate, don't do it!

Below is the phishing scan email that is currently circulating:

===================================================

-----Original Message-----
From: HelpSU [mailto:helpdesk001@w.cn]
Sent: Friday, January 14, 2011 2:39 AM
To: undisclosed-recipients:
Subject: Stanford Universitya Notice/News

This notice is to inform you that an ERROR have been
detected in your SU WebMail account, this ERROR was caused
by congestion and SPAM emails. You have been contacted in
order for you to confirm your account and avoid losing it.
Kindly confirm your account by sending the requested
information below.

ITS Help Form

* SUNet ID:-
* Password:-
* Phone Number:-

This notice is from US Information Technology services.

Sign,

Information Technology services
Stanford University
450 Serra Mall
Stanford, CA 94305
Stanford University. All Rights Reserved.

Stanford Medicine Resources:

Footer Links: