More information found here:
Barracuda.com | Blog
Department of Homeland Security–CISA
Have you received an email similar to this about a job opportunity?
From: Christensen [Redacted] <[redacted]@gmail.com>
We got your contact through your school database and I’m happy to inform you that our reputable company [Legitimate Company] is currently running a student empowerment programme. This programme is to help loyal and hardworking students like you secure a part time work from home job which does not deter you from doing any other, you just need a few hours to do this weekly and with an attractive weekly salary.
KINDLY EMAIL BACK WITH YOUR MOBILE NUMBER IF INTERESTED IN THIS JOB POSITION.
[Legitimate Company] Inc.®
Unfortunately, the email above it is not a legitimate job offer, but a scam that could cost you money. Scammers are spoofing Andrews University email addresses to send job scam emails designed to trick students into applying for a job that requires them to provide personal information and potentially engage in criminal activity.
Please confirm all employers and representatives before corresponding via email or phone.
There are many ways to identify a job scam email:
If you receive an email that contains this type of information, delete it. There is no need to respond. If you ever have questions about whether or not an email is legitimate, forward it to: firstname.lastname@example.org.
When Internet criminals impersonate a business to trick you into giving out your personal information, it’s called phishing. Do not reply to email, text or pop-up messages that ask for your personal or financial information. Don’t click on links within them either—even if the message seems to be from an organization you trust, like Andrews University—It is not! Legitimate businesses don’t ask you to send sensitive information through insecure channels.
Malicious email typically uses urgent language, asks for passwords, bank account numbers, user names, credit card numbers or other personal information; and may have grammatical, typographical or other obvious errors.
What happens if I am scammed?
If you think you gave personal information in response to a phishing email or on a suspicious webpage, your account may be compromised.
Report Possible Phishing Scams and IT Security Incidents
If you have received an email that you believe is a potential phishing scam, it is important that you report the incident(s) as soon as possible so that work can begin to investigate and resolve them. Forward the suspected phishing email to the ITS Helpdesk at email@example.com. IT security incidents include but are not limited to items listed in 1:762:10 General Guidelines of the Andrews University Computers & Networks Policy.
Still Not Sure?
The following links are well-known services to check domains for reports of phishing, scams and spam email. They let you search for websites and domains that have been reported by others as being good or bad.