“Phishers” ask for student usernames, passwords
A malicious e-mail has reportedly been sent out to several CULink e-mails, asking for usernames and passwords.
The e-mail, which started circulating at approximately 8:20 a.m. on Wednesday, is from a Yahoo e-mail account that is disguised as “webmaster@colorado.edu.”
Greg Stauffer, communications representative for ITS, said ITS did not send out the e-mail. He described the e-mail as “phishing.”
“Think of ‘phishing’ as someone that is fishing for personal information,” Stauffer said.
The e-mail states that all colorado.edu email accounts are transferring to “upgraded central e-mail services” and that account users need to confirm their username, password, birth date and location. The e-mail also states that those who do not provide such information are risking having their e-mail account deleted.
Representatives for ITS said no financial institution or IT service will ever ask for personal information and that it is not advisable to ever send out password or other personal account information through e-mail.
ITS is advising students who did respond to the e-mail to change their passwords through CU Connect.
Questions or suspicions regarding any e-mails should be directed to ITS at (303) 735-HELP.
Contact Campus Press Staff Writer Sara Fossum at Sara.fossum@colorado.edu.