Phishing Attempt - Dear: Webmail subscriber

Threat Level: Medium

Threat Type: Phishing

Advisory Date: 07/13/2023

Description

Emails claiming to be from IT Service Desk have been recieved by some University of Regina staff and faculty email accounts.

These inbound messages originate from hotmail and googlemail/gmail addresses and appear as follows:

-------------------------------

Subject: Dear: Webmail subscriber

Dear: Webmail subscriber

Hereby we inform you that your email account has exceeded its

storage limit. You will not be able to send and receive mails and yours the e-mail account will be deleted from our server. To avoid this problem, we recommend checking your email account by clicking on the link under.

CLICK HERE: [PHISHING LINK]

Thank you.

The Webmail management team.

------------------------------

These messages are not legitimate, and attempt to send users to an external webpage to harvest credentials.

Resolution

If you received this message, please delete it immediately.

If you inadvertently clicked a link and entered your credentials on the website, please change your password.

Go to the Information Services homepage at http://www.uregina.ca/is
Click on "Change Password" in the Quicklinks on the right sidebar
Follow the instructions on the form to complete a self service password change

Resources

More phishing related information such as "How can I tell if the message is real?" and "What should I do if I suspect email phisihing?" can be found at the Phishing Infomormation resources page.

If your receive a message that you are unable to determine the legitimatacy of, please contact the IT Support Centre:

In person at ED 137 or Archer Library Main Floor Commons

Phone 306-585-4685

Email IT.Support@uregina.ca
Webform http://www.uregina.ca/is/forms/ticket.html

In person at ED 137 or Archer Library Main Floor Commons