To all SCS Faculty and Staff,
A personally targeted phishing scam was recently sent to SCS faculty. The reply address was firstname.lastname@example.org. There was an attachment that they hoped the end user would click on. Fortunately, our faculty member thought it was suspicious and asked before clicking on the attachment. See the email below.
A few things to remember*:
- Public advisories for the University of Illinois are posted on and can be validated from the Technology Services Security page: https://security.illinois.edu
- Sometimes popular phishing attacks and hoaxes can be verified on Snopes.
- Legitimate email will never ask you to disclose your password or other sensitive information
- If in doubt do not click any enclosed link, but instead call or independently go to the official website of the purported sender's company so that you can check the authenticity of the email or submit a compliant.
- Always report suspected phishing by forwarding the email with headers in question to email@example.com
Director, Computer Services
School of Chemical Sciences
University of Illinois, Urbana-Champaign