PHISH: Expiration Notifications / safecomputing.umich.edu

Phishing Alert: Expiration Notifications

Some U-M community members reported receiving this email. It is fraudulent or malicious. Do not respond, click any link in it, or provide personal information or money. See Phishing & Scams for more tips. If you need help, contact the ITS Service Center.

Date Sent:

Monday, December 7, 2020

Phishing Email Summary

This phishing email claims the recipient's password is expiring and they must take action in order to keep using their account and receiving messages. The phishing email points to a fake login page. Examing the links in the phish show the pages are not real U-M pages. The U-M login page is https://weblogin.umich.edu . U-M will never direct you to outside web pages for your U-M account.

Phishing Email Text

Microsoft account

Password Expiration Notifications

Your Password for [email protected] has expire.

Follow below to keep your current password and avoid Data loss.

To help keep you safe, Please keep current password and we'll help you return messages to your account.

Keep Current Password

Thanks,

The Microsoft account team

Phishing Email or Site Screenshot:

Screenshot: A fake Microsoft login page is presented by the link in the phishing email.