Published: Jan. 5, 2017

The campus has recently been targeted by malicious emails that appear to be attempts to steal usernames and passwords. One such phishing email asked for further account verification which when followed, led people to a login page. These emails are not authentic. If you receive one, do not click on the link in the email. Individuals who received this email should simply delete the message.

If you did click on the link or are otherwise concerned that you did something to expose your account, IdentiKey, or other personal information, please reset your IdentiKey preferably on a different computing device. If you need assistance in changing your password please visit .

If you prefer our assistance please call the IT Service Center at 303-735-4357 during our normal business hours. For more information on the IT Service Center, including hours, visit . Please be aware that our call center is closed today due to winter weather conditions, but you can reach us at help@colorado.edu.

Following is a sample phishing message:

___________________________

From: [Sender removed]

Sent: Wednesday, January 4, 2016

To: [Recipient removed]

Subject: You Have (1) Unread Notification

Dear [your email address]

As part of our security measures we regularly screen activity.

Our system requires further account verification. Please follow

homepage to proceed.

[malicious website link]

Sincerely,

University ÃÛÌÇÖ±²¥ IT Service.

phishing