Please be advised a series of phishing emails have been sent to some users. The message appears come from a firstname.lastname@example.org and has the subject line “FW:[ACTION REQUIRED] Fordham University Policy Guidelines For All Employees”. The text of the message reads:
LETTER FROM THE PRESIDENT Joe McShane
Due to our continued commitment to fostering an environment that is safe and secure, inclusive, and conducive to academic inquiry, student engagement and student success. Whether its improving safety and reliability, delivering better service for our students, or earning back their trust and confidence, all of us at this institution are working hard to ensure that our organization is on a solid foundation for the future.
All employees, including all individuals on full-time or part-time employment with the Institution are required to go through the guidelines attached in this email. It is important that we all adhere to these guidelines so you will be helping to ensure a future success of this great institution. Thank you for your ongoing commitment to delivering a better and reliable service.
Joseph M. McShane, S.J
An attentive observer will note that the sender address is not in any way related to the president’s office or any service that the University uses. The message has an attachment that links to a fraudulent page. At the time of this writing, that link appears dead. However, we strongly advise against downloading the attachment, clicking any links, or responding to the message.
Please note: Fordham IT will NEVER ask you for your username and password or ask you to click any links to validate, maintain, or verify your account or password. If you receive questionable or suspicious emails, contact IT Customer Care and allow the University Information Security Office (UISO) to validate the legitimacy of these emails.
If you believe you have received this phishing message, please do the following:
- Do not respond to the message.
- Do not click any links.
- Do not provide any information such as username and password.
- Do not open any attachments.
- If you did respond to the email, provided confidential information, or opened an attachment, please contact Fordham IT Customer Care ASAP at (718) 817-3999 for instructions on how to manually reset your password.
- Delete the message.
Further information about phishing scams and other IT security topics are available on our IT Security website at: www.fordham.edu/SecureIT or from our blog at secureit.fordham.edu.
If you have any questions or concerns, please contact IT Customer Care at (718) 817-3999 or via email to: HelpIT@fordham.edu.