University of Southern California

New Phishing Warning (April 26)

Posted on by beltzer

USC account holders have reported receiving phishes similar to the one listed below.

From: user@usc.edu [this will be a spoofed USC email address]
Sent: Thursday, April 26, 2017

Subject: [USC Canvas]: Student loan paperwork – SLC and SAAS

You Have 1 Unread Important Message From The Faculty Sent Though Blackboard Admin Office.

Blackboard 2018 April New Course Form BC56191.

[image removed]

[link removed]

Please be aware that this is a fraudulent message.

  • The message was sent from a non-USC account.
  • The URL in the link sends you to a non-USC domain.

If you have received this phish, do not respond or click any of the embedded links. If you have responded or clicked the links, change your USC NetID password immediately by going to the Popular Topics menu bar on the ITS website and clicking the link labelled change your password.

As phishing campaigns become increasingly sophisticated and harder to detect, we urge you to use extreme caution when clicking links in messages or attachments you receive from unknown senders. While antivirus programs may automatically scan messages for embedded malware, they do not automatically scan for malicious links in attachments.

ITS encourages you to consider the following tips when handling suspicious email:

  • If you are unable to see or do not recognize a link’s destination URL, do not click the link.
  • Never provide personal information, such as your passwords, social security number, or bank information, on a website you access by following a link in an unsolicited email or attachment.
  • If you must open an email attachment, first scan it using your antivirus software. To scan an attachment on a PC or Mac running USC’s free Sophos Antivirus, save the attachment to your desktop, right-click the file, and choose Scan with Sophos Antivirus.

Comments are closed.