Phishing Example 2
This is a more convincing phishing email sent on the 30th March 2007.
The message is asking you to provide your account details or else your account will be suspended - CiCS is not in the business of threatening University members!
This message contains several tell-tale signs of online fraud:
- The message is from a seemingly valid email address: customercare@sheffield.ac.uk, however, the Reply-to address is not a University of Sheffield address:
ccare20@gmail.com - The message says that failure to reply to the message will result in your email address being deactivated. This is a typical online fraud threat, we do not casually deactivate people's accounts.
- It gives a web address to follow, but clicking the link reveals a warning message for an invalid security certificate.
- The message says 'Thank you for using SHEFFIELD.AC.UK !' You don't really have a choice - CiCS offer a free service we do not try to attract new customers.
Nobody in CiCS knows your password! Passwords are encrypted on secure machines. We will never ask you to confirm your password for verification, as we do not know what it should be.