Information Security Services has been alerted about a malicious phishing campaign that is being sent to the Purdue University community on 2/27/19. The information below describes the malicious communications.
What does the phishing message look like?
The message has been reported to be a scam that acts as if it is from President Mitch Daniels. The email includes a PDF document that is malicious.
Do not open or follow links located in the document.
The body of the email message looks like this:
To the Purdue community,
Our aims is to provide guidance and align our behaviors as we make great decisions that impact our daily operations. we rely on our values and this code as guidelines, as a breach of the Policy may result in disciplinary action against the Employee concerned.
All employees, including all individuals on full-time or part-time employment with the Institution are required to go through the guidelines attached in this email. It is important that we all adhere to these guidelines so you will be helping to ensure a future success of this great institution
Thank you for your ongoing commitment to delivering a better and reliable service.
Mitchell E. Daniels, Jr.
What should you do if you receive this message?
- Forward the message to firstname.lastname@example.org.
- Do not open the attached document or follow links within it. Delete the message after forwarding it to Information Services.
- If you have opened the attached PDF or clicked on the links within the document:
- Change your password immediately from a different machine than the one you opened the document from.
- If you need assistance, please contact the IS Customer Service Center at 219-989-2888
If at any point you are not sure if an email is legitimate, please send a request to review the suspicious email to email@example.com. Information Security Services will review the submission and get back to you to take appropriate action(s) to protect PNW from future emails from the malicious source.
We strive for security awareness on this topic and have sent previous communications, raising the awareness on phishing attacks: November 14, 2018 Security Tip on phishing
It takes a village to fight against SPAM and Phishing attacks. Please stay vigilant and keep an eye out for these types of phishing emails and report them to firstname.lastname@example.org.