[All_jlau] JLab Cybersecurity Alert: JLab Receiving Spam/Phishing Emails

[Kandice Carter]

Sent on behalf of the JLab Cybersecurity Team

A very effective phishing email made it into a large number of JLab email account holder inboxes this morning. The email came from a legitimate JLab email address via JLab mail servers. We have suspended that account and required a password change for all users who clicked on the link contained within the email. While access to the linked webpage has been blocked from JLab, there are ways that someone could have reached the webpage. If you did enter information in response to that email, please let the Helpdesk (x7155 or helpdesk at jlab.org) know and then change your password via the following link: https://cc.jlab.org/passwordutility

Reminder: Never click on a link purporting to be from JLab which doesn't have a clear JLab address in that link. If an email does not appear to be legitimate or requests that you input your user information into an unfamiliar webpage, always forward the email to the Helpdesk and await a response before taking action. On a related note, Jefferson Lab IT staffers will never call you on the phone to ask for your username/password.




-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://mailman.jlab.org/pipermail/all_jlau/attachments/20111005/817bf049/attachment.html