Friday, February 22, 2008

Phishing Attack against CMU

Well, this was bound to happen sooner or later, but there was a recent phishing attack targeting members of the CMU community. And, no, this wasn't an experiment from our research team.


SCS Computing Facilities has received the following announcement from campus
Computing Services.

*** To verify the authenticity of this message, see Security News &
Events at ***

WHO: Everyone
WHAT: Phishing Emails Sent to Carnegie Mellon Accounts
WHEN: Feb 21, 2008

HOW: Fraudulent emails have recently been sent to Carnegie Mellon
email accounts claiming to be from the "CMU SUPPORT TEAM
" asking people to reply with their "CMU Webmail
account" passwords.

...

1 comment:

Turadg said...

FYI, this was the content of the messages. I thought it might be an experiment when I received it. One technique it used that I hadn't seen before is it did give a link to a real CMU site (which didn't do anything), but also provided the option to reply by e-mail (to a Yahoo account).

---

From: CMU SUPPORT TEAM <support@cmu.edu>
Date: Fri, 22 Feb 2008 05:30:05 +1100
Subject: Confirm Your E-mail Address

Dear CMU Webmail Subscriber,

To complete your CMU Webmail account, you must reply to this email
immediately and enter your password here (*********)
Failure to do this will immediately render your email address
deactivated from our database.

You can also confirm your email address by logging into your
CMU Webmail account at https://qatar.webiso.andrew.cmu.edu/login.cgi

Thank you for using CMU.EDU !

THE CMU.EDU TEAM