University of Michigan - Flint

University of Michigan-Flint

Awareness Campaign - Computer Security 101

Question 1:

After receiving the following e-mail, what should you do?

From: UM-Flint E-Mail Support Team <updateaccount@umflint.edu>
To: undisclosed-recipients:
Subject: Confirm Your UMFLINT.EDU E-Mail Account Immediately!!!

Attn: Subscriber (UMFLINT.EDU):

This mail is to inform all our UMFLINT.EDU users that we will be upgrading our site in a couple of days. As a subscriber of our site you are required to send us your e-mail account details to notify us that you are still using your mail box. Furthermore, we will delete all mail accounts that are not currently being used to create more space/room for new users. Please send us the following e-mail account details:

     User name
     Password

Failure to do this will immediately deactivate your e-mail address/account from our database.

Thank you for using your UMFLINT.EDU e-mail account!

Sincerely,
The UMFLINT.EDU E-Mail Support Team/Webmail Admin Service.

Answer:

 A.Do what it asks and send my password, even though no legitimate organization will ever ask someone to do that.
B.Reply to the e-mail to ask "is this for real"?
C.
Forward it to a friend, asking if they got the e-mail, too.

D.

Report it to the ITS HelpDesk at 810-766-6804 or itshelpdesk@umflint.edu or Information Technology Services' Security Services team at security@umflint.edu.

 

The e-mail is fraudulent. Never, ever send your password, username, or other private, personal information via e-mail.

Scam artists use social engineering techniques to trick users into opening an attachment that installs malware, or to misdirect users to malicious web sites. Others will pose as legitimate businesses or services you may use (such as eBay, PayPal, or even your bank), asking for private, personal information. A legitimate organization will never ask for private, personal information in this manner. If you are unsure, it is always best to check safecomputing.umich.edu or www.Snopes.com websites and compare the validity of the e-mail you received against reported phishing attempts.  If you know the e-mail is fraudulent and it hasn't been listed yet, please report it to the ITS HelpDesk.

If you would like more information follow this link: www.itd.umich.edu/itua/phishing

ITS Home