[Mail_treas] ALERT: follow-up on malicious email
Thor Sage
sage at mveca.org
Wed May 3 17:10:39 EDT 2017
The current wave of malicious phishing messages appear to come from known senders and include a link to a forged Google site. The subject line states that the known sender "has shared a document on Google Docs with you."
Users that click on the link are prompted for their credentials, which allows the attackers to hijack additional mailboxes.
At MVECA our spam filters automatically began filtering these messages within a few minutes, so most users only received one to two of the messages, if any. Unfortunately, users at schools using Google mail may have received dozens or more.
It is critical that end users understand that they must scrutinize all email, especially when messages contain links or attachments. Users that have clicked on the link and provided their credentials should contact their local support resources immediately and should change their passwords if possible.
We would welcome additional information and observations from your technology support staff. If you have any additional information on this incident, please email me directly at sage at mveca.org<mailto:sage at mveca.org>.
Thank you,
Thor
Thor Sage
Executive Director
Miami Valley Educational Computer Association
937-767-1468 x3101
[http://www.mveca.org/images/logo.gif]<http://www.mveca.org/>
Not-for-profit Technology Services for Education and Local Governments
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listserv.mveca.org/pipermail/mail_treas/attachments/20170503/dc9ffa98/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 3184 bytes
Desc: image001.jpg
URL: <http://listserv.mveca.org/pipermail/mail_treas/attachments/20170503/dc9ffa98/attachment.jpg>
More information about the Mail_treas
mailing list