KIT-CERT

Warning about fraudulent emails (phishing emails)

Update [10/20/2009]: Members of KIT are experiencing at this time a new phishing attack. Details from this attack are listed below.

At present, fraudulent emails are sent to members of KIT trying users to re-confirm data for accounts of the University of Karlsruhe. The sender of the email, webmasterVyr7∂uni-karlsruhe de is faked. The email contains a link which, however, directs to the webmail portal of the University.

The user is asked for completing the following questionnaire and filling in personal information such as username, password, date of birth and nationality. You should take no further action and delete this email immediately.

In case your spam filter did not catch this email, it is easily recognizable. An example of this email is attached.

Please note: Please ignore all email messages in which you are asked for personal data such das username and password. If so, stop immediately, take no further action and delete the email message.

-- phising email --

There will be a general upgrade in our system between October 15 to December15 
2009.Due to the anonymous registration of uni-karlsruhe.de accounts and the
numbers of dormant accounts,we will be running this upgrade to determine the
exact number of subscribers we have at present.

You are instructed to login to your uni-karlsruhe.de and verify if your account
is still valid and send immediately the following:

Userame:................................(Compulsory)

Password:...................................(Compulsory)

Date of Birth:..............................(Optional)

State:........................................(Optional)

...

Note that if your account do Login, send us the details or otherwise it means
it has been deleted.Sorry for the inconveniences this might cause you,we are
only trying to make sure you dont loose informations in your accounts.

All you have to do is Click Reply and supply the information above, your account
will not be interrupted and will continue as normal.

Thanks for your attention to this request.Once again We apologize for any
inconveniences. Warning!!! Account users that refuse to update their account
after 5 Days of receiving this warning,user will loose his/her account
permanently.

-- phising email --

Note

Security warnings issued by the KIT-CERT are published on this page. These warnings are composed and published for students and members of KIT. Re-publishing on a different site is allowed only if the contents remain unmodified and this disclaimer is attached. Also the following copyright statement must be published with the security warning.

Copyright © 2009 KIT-CERT, Karlsruhe Institute of Technology, http://www.kit.edu/cert