Information Services are receiving reports of email phishing attempts which pertain to be from credible senders.

Stay aware – below are some examples of recent phishing emails you may have received:

Friday 31 July

A new phishing attempt from a non-University address has been received by some people at the University. This mail, with the subject “IT SERVICES” contains green-highlighted scare text pertaining to account closure. The link goes to a convincing copy of the Outlook Web Access portal. Please delete this mail if you receive it and if you have entered your credentials in the fake email portal please reset your password immediately.

Tuesday 4 August

An email which contains a .doc attachment pertaining to be a statement to your invoice is currently being sent to multiple users from multiple senders. The subject starts: NEED YOUR ATTENTION: followed by random letters and numbers. This email should be deleted and the attachment should not be opened. If you have opened the document please contact your local IT support and do a full anti-virus scan on your machine.

Tuesday 18 August

An email with the subject line Email alert: from University of Nottingham Admin has been received by a number of university email users. This advises the recipient to confirm their account details by clicking on a link. The website to which the link relates has now been blocked and this email should be deleted. If you provided your university account details, please contact the IT Service Desk as a matter of urgency.

More information

Phishing emails usually include a link to a website asking for personal credentials. By hovering over the link you will usually see that it will attempt to direct you to an unrelated website. Some emails will include an attachment which might include a virus or malware.We are asking users to be aware of these scams and to be vigilant against them by not opening the attachment if you are not expecting an email from the sender and also not to open any suspicious websites and submit personal details.

Information about phishing attacks and how to avoid them can be found on the IT Services website. You can also check the IT Status webpages for information about any issues that may affect the IT services you use.