In August 2013, SLU was targeted by a sophisticated phishing email scam. The subject line read: "SLU incident where your SLU Net ID may have been compromised" and it appeared to come from a SLU account. The landing page, once customers clicked on the spam link, attempted to replicate mySLU.
Even though it seemed to be real, the easiest and fastest way to tell that it was a scam was that it asked for customers to confirm their passwords. SLU will never ask for customers' passwords in an email. Any email that asks for such personal information should be considered a phishing scam and reported to InfoSecurityTeam@slu.edu, and then deleted.
ITS updates the news section of its.slu.edu to include any warnings about current phishing scams targeting SLU. If you are unsure of the validity of an email request, please contact the Information Security Team with any questions.