Article sourced from BleepingComputer. To read full article, click here.
A phishing campaign is underway where the attackers state that your password will expire and be changed unless you login and confirm that you want to keep it the same.
As people get better at spotting the phishing scams pretending to be shipping information, receipts, and voicemails, scammers need to come with new methods to get people to click the links in their emails.
Such is the case with a new phishing email that states you need click on the “Keep same password” button or your password will expire.
Once you click on the link they provide in the email and enter your credentials, the attackers will have your login credentials and be able to access your email account. They can even access other accounts you use under the same email address.
Please remember, if you receive questionable or suspicious emails, contact IT Customer Care and allow the University Information Security Office (UISO) to validate the legitimacy of these emails.