The first email was sent from a number of generated accounts at umassmed.edu (University of Massachusetts Chan School of Medicine) and was presented to look like a quarantine message.
The email message received on Thursday came from a hijacked account at Uppsala University and stated that the recipient had to log in to prevent the account from being deleted.
Both these messages are known as phishing emails and lead to various hacked pages where an exact copy of LU’s login page has been installed.
We understand that many employees have visited the pages and therefore issue the following recommendations:
- ALWAYS double-check the sender’s address.
- ALWAYS double-check links before you click on them.
- ALWAYS double-check the webpage address before you fill in any details.
If you have received a suspicious email and clicked on a link, report this to LU Servicedesk: servicedesk [at] lu [dot] se (servicedesk[at]lu[dot]se)
If you have encountered a similar case, contact LU Servicedesk immediately: servicedesk [at] lu [dot] se (servicedesk[at]lu[dot]se)