September 16 - The Phish is Back
The SLU community has received another phishing email, this time with the subject line: "Emergency Alert." The email appears to come from a slu.edu account, but no such "AlertServices" account exists here. It asks you to follow a link to confirm your "SLU information." Clicking on that link would take you to an unsafe site and could compromise your account.
Hackers have become very skilled at imitating real emails, but there are ways to spot a phishing scam. In this case, lertServices@slu.edu is not a valid email address. Second, the email is written with poor grammar. A third, very important way to tell this email is fake is that it asks you to click on a strange link, embedded in the email. In this case, the link took you to a site and asked for your password. SLU will never try to confirm your information this way and will never ask for your password or personal information in an email.
Customers who received the email should select it, then select the "Report phishing" option under the drop-down menu in the right corner of the email in Google. Then click, "Report Phishing Message" to finish the process. Contact the Information Security Team with any questions.
A screenshot of the email is provided below. Notice the fake slu.edu sender address, incorrect grammar and strange link.