Phishing attack hits Queen’s
On November 24, 2016, a new phishing attack hit campus. As the email was allegedly sent from Principal Daniel Woolf, more individuals than usual were affected. Note: the email message was not sent from Principal Woolf!
How to identify the phishing attack
- It is directed to an individual’s Queen’s email address (Janice.firstname.lastname@example.org) and Principal Daniel Woolf is a link in the message.
- If you click the link you will be taken to a web page displaying the Queen’s banner with instructions to log in to view the message.
- DO NOT CLICK THE LINK!
What you should do
- If you received this email, do not click the link. Delete the email immediately.
- If you received this email and you have already clicked the link, please contact the IT Support Centre immediately at 613-533-6666.
What Information Technology Services (ITS) is doing
- A Domain Name Service (DNS) block has now been put in place. A DNS block means that if anyone within Queen’s clicks on the link, they will not be re-directed to the page.
- The sender has now been blocked to prevent any further copies of this phishing attack from reaching Queen’s inboxes.
What departments should do
ITS would like to request that departments add the topic to their next departmental meeting. Verbalizing what phishing is with your colleagues may help to get the message across that Queen’s is targeted heavily and that the solution lies with the user. Hundreds of phishing attempts are blocked automatically by our mail system, but it is impossible to block all phishing attempts. It is crucial that users be aware that they will eventually receive a message of some nature that will look legitimate. It may direct them to confirm their credentials in a bogus website or by replying to the email directly.
Information and education on phishing
ITS has information available to help you present phishing to your department members.
- Visit the Phishing is Online Identity Theft webpage
- How do I tell if my connection to a website requesting my credentials is really a Queen’s secure website?
- Take the online course: Information Security Awareness Training (requires login)