Dear faculty, students, and staff,

The following email contains a malicious attachment that aims to steal your username and password.

The steps are elaborate:

  • The PDF attachment shows a “Secure Pdf Document” graphic/text and contains an embedded link that you need to click
  • The link will take you to a page that looks like a (confused) Microsoft Office website. There is a “Download File” button for you to press
  • If you press the button, it asks for a username and password (see below)

2

Please delete any similar email. If you clicked through it all and entered your username and password, then please contact us immediately to start corrective measures.

Khalid Sarwar Warraich | Chief Information Officer

From: Subra Suresh <ssuresh@andrew.cmu.edu> [mailto:pat.engen@dcsdak.org]

Sent: Tuesday, January 24, 2017 4:39 PM

Subject: Exclusive Important Announcement from President Subra Suresh

Dear Members of the CMU Community,

Please read attached for an important announcement on exclusive updates

from President Subra Suresh

Sincerely,

Subra Suresh
President
Henry L. Hillman President’s Chair

Phishing attack: attempt to steal username and password