UA Information Security received a report of a new version of a spear phishing email that originally hit campus on December 17, 2013. If you have received this email, please delete it. If you responded or clicked on any links in the email, please contact your local IT support or the 24/7 IT Support Center as soon as possible.
Following is the text of the spear phishing email, with email addresses and URLs redacted.
Date: January 11, 2014 at 8:41:07 AM MST
To: UITS <EMAIL REDACTED>
Subject: Illegal Sign-in Alert
Security Sign-in Alert
We noticed series of login attempts to your email account from an unrecognized device today Sat, Jan 11, 2014 01:35 CEST from Iran.
Was this you? If so, you need to pass UITS second sign-in verification thereof. However, if this wasn't you, please follow the link below please sign in and verify your account information by clicking the link below:
We shall continually notify you whenever there’s any security compromise on your account.
Thank you for your business and continued support.