Doshisha University
  • Home
  • Contact
  • Access & Campus Map
News & Information
  1. Home
  2.  > News Archives AY2014
  3.  > [Renotification] Regarding Spoofing and Phishing Emails

[Renotification] Regarding Spoofing and Phishing Emails

Updated Jun. 2, 2014
October 2, 2013
To All Users:
IT Support Office
[Renotification] Regarding Spoofing and Phishing Emails

The number of spoofing and phishing attacks, in which a malicious individual attempts to acquire a user ID and password through emails and website by masquerading as the university’s system name or administrator, is rapidly increasing.
Web users are warned to beware of a new trick that tries to direct users to enter details (password, etc.) at a fake website-especially services such as Active!mail or online storage websites, under the pretense of it being a necessary procedure to use or activate them. Please note that you are never asked to enter a password at external websites in order to use the university’s Active!mail or any other websites.

If you receive a suspicious email asking for personal information, delete it immediately. Under no circumstances should you access such a website and enter a password. If you have already clicked on the link and entered any personal information including your password, change the password as soon as possible in a manner prescribed by the university to prevent unauthorized access, and contact the IT Support Office immediately.

The websites for which you need to enter a password to receive services include the university’s domain name, for example, ‘https://(server name). doshisha.ac.jp/…’.
Always confirm the URL shown in your web browser.

For further information, please contact the university’s IT Support Office.
Imadegawa Campus: Ryoshinkan BF
Kyotanabe Campus: IT Media Center 1F
TEL: 075-251-4567
Email: Inquiry by Email

[Phishing Email Examples]

Example 1:

Your mailbox quota has exceeded the storage limit which is 20GB set by your administrator.
You are currently running on 23GB due to hidden files and folders on your mailbox.
Please validate your mailbox and click the following link to increase the quota.

Click here: (Phishing site URL)

Caution! Account owner of Active!mail that refuses to update his or her account within seven days of receiving this warning will lose his or her account permanently.

Thank you.
Active!Mail
C1998-2013 TransWare Co. All Rights Reserved.

Example 2:

Attention : Active!mail user
Your mailbox quota has exceeded the storage limit set by Active!mail.
To re-validate your email account, please click on the link below:
(Phishing site URL)

Please note that failure to provide your login details correctly will result in immediate closure of your email account from our database.

UCOM Web Mail
$(D”m1998-2010 TransWARE Co. All Rights Reserved.

Example 3:

WEBMAIL UPGRADE TEAM

Your mailbox is almost full.
230MB Current size
240MB Maximum size

You are receiving this warning that your mailbox has reached 180000 KB. You may not be able to send or receive new mail until you upgrade your mailbox size. To make more space available CLICK here: [a:http://activemail****,****.com/] and fill in your data to upgrade and also delete any items that you are no longer using or move them to your personal folder file (PST.).
Please note: Your mailbox will close down if you fail to upgrade and respond to this mail, upgrade your mailbox size. Delete any items you don’t need from your mailbox and empty your Deleted Items folder.

Example 4:

From: Doshisha University Webmaster *******@******doshisha. ac.jp
To Email Users

This message is from Doshisha University Webmaster administrator.
Our database security system has detected some viruss on your email account. To protect your account, we have to install the new 2013 anti-spam and anti-virus software and increase storage in mailbox space. Also, we shall be deleting all old and unused email accounts which are no more active to enable create space for new account users. To verify your account active, you need to confirm your account active by clicking the link below and fill your details correctly as appear on the page.

To confirm your account active, you are required to update and re-confirm your email account details by clicking this link (http://doshisha-ac-jp.******.****) and fill your details correctly and press Send Message. Failure to participate in this upgrade exercise will render your account inactive.
Thank you.
Copyright ©Doshisha University All Rights Reserved.

Example 5:

From: Doshisha University <*******@*****.***.***>

Attention: doshisha.ac.jp User,
You have exceeded your doshisha.ac.jp e-mail account limit quota of 250MB
and you are requested to expand it within 48 hours or else your doshisha.ac.jp
e-mail account will be disable from our database. Simply
CLICK HERE <http://www.***.***/form-***/Doshishaacjp> with the complete
information requested to expand your doshisha.ac.jp e-mail account quota to 450MB.

Thank you for using doshisha.ac.jp e-mail services.
Copyright ©2013 Doshisha University Information Center.

Example 6:

Account User Alert doshisha.ac.jp

This mail is to inform all our web mail users that we will be maintaining and
upgrading our website in a couple of days from now. As a Subscriber you are
required to send us your Email account details to enable us know if you are
still making use of your mailbox in order not to deactivate your mail box.
Be informed that we will be deleting all mail accounts that is not functioning
to enable us create more space for new subscribers, Kindly click on the link
below for upgrade:http://***************.com/***/*****/amlogin.htm

Failure to do this will immediately render your email address deactivated from our database.

WEBMAIL UPGRADE TEAM
<Announcement issued on August 7, 2009>
To All Users
IT Support Office

Attention: Spoofing and Phishing Emails

Doshisha University’s IT Support Office has been receiving an increasing number of reports related to phishing attacks, in which a malicious individual attempts to acquire a user ID and password through emails by masquerading as the university’s system administrator.
Please note that the university’s IT Support Office, like all other organizations, will never ask you to send your user ID or password via email.

When you receive a suspicious email, simply delete it. Under no circumstances should you contact an email address in a suspicious online correspondence.

* What are Spoofing and Phishing Emails?
Spoofing and phishing emails are emails usually disguised as a public agency, financial institution or a system administrator. They attempt to infect a computer with a virus, lure a user to a phishing site, or extract personal information such as a user ID and password.

If you have already responded to such a suspicious email or opened an attached file, we advise you to take the following measures:
・Change your password immediately.
・Conduct a virus check using anti-virus software.
・Contact a system administrator. (Doshisha University IT Support Office)