In an attempt to require sensitive and confidential information, University of York email accounts are receiving a message with the subject line “Your York email account will expire within the next 12 hours” from an external source that asks them to follow a link to enter their york.ac.uk account details.
The email reads: “Your York email account will expire within the next 12 hours. Order to remain active, Use the following link to update your account. Thank you our York Email Service.”
Students are being encouraged not to follow any links in the email and to mark the email as “phishing” in Gmail.
Students who have opened the link and entered their information are advised to change their password immediately and follow these steps:
It is currently unclear where the email has come from or how the hackers have contacted the University email database en masse. IT co-coordinators have described the attack as major.
Students are encouraged to familiarize themselves with the risks of phishing on this information page on the Unviersity’s website (http://www.york.ac.uk/it-services/security/spam/.) and to contact firstname.lastname@example.org with any concerns.