More information found here:
Barracuda.com | Blog
Department of Homeland Security–CISA
Email phishing schemes continue to catch several Andrews University email users each week. Those creating these emails are using increasingly clever methods to fool people into giving out their usernames and passwords. One of these methods is to create messages that are very similar to actual emails sent by the University. [In the last couple of days,] messages with a subject line of “Re-confirm Pay-Roll For October” were attempted to be sent to Andrews University emails. Most were captured in the University’s spam filtering system and would be visible only in the [Google] Quarantine message unless the email user released them to their email.
This spam filtering system only processes email from servers not in the Andrews system–email from Andrews addresses would not be in the Quarantine email unless they are sent from off campus servers. If you do see messages that appear to be from Andrews in the Quarantine email, they are very likely to be coming from someone impersonating an Andrew’s user and would most likely be malicious.
The following are important guidelines to help avoid falling for these schemes:
Thank you very much for being alert in avoiding these schemes. This will reduce problems for you, save many hours of work for ITS staff in removing spam email generated by those misusing Andrew’s usernames and passwords and help prevent University emails being blocked by other sites.
Chief Information Officer
When Internet criminals impersonate a business to trick you into giving out your personal information, it’s called phishing. Do not reply to email, text or pop-up messages that ask for your personal or financial information. Don’t click on links within them either—even if the message seems to be from an organization you trust, like Andrews University—It is not! Legitimate businesses don’t ask you to send sensitive information through insecure channels.
Malicious email typically uses urgent language, asks for passwords, bank account numbers, user names, credit card numbers or other personal information; and may have grammatical, typographical or other obvious errors.
What happens if I am scammed?
If you think you gave personal information in response to a phishing email or on a suspicious webpage, your account may be compromised.
Report Possible Phishing Scams and IT Security Incidents
If you have received an email that you believe is a potential phishing scam, it is important that you report the incident(s) as soon as possible so that work can begin to investigate and resolve them. Forward the suspected phishing email to the ITS Helpdesk at firstname.lastname@example.org. IT security incidents include but are not limited to items listed in 1:762:10 General Guidelines of the Andrews University Computers & Networks Policy.
Still Not Sure?
The following links are well-known services to check domains for reports of phishing, scams and spam email. They let you search for websites and domains that have been reported by others as being good or bad.