URGENT: Recent phishing campaigns are targeting Syracuse University community members with convincing fake warnings.
Cybercriminals are sending emails that appear to come from Syracuse University or a representative of the University, claiming your email account will be shut down unless you take immediate action. These messages are NOT from the University and are designed to steal your personal information and passwords.
Red Flags
Personal Email Addresses: These fake warnings come from individual email accounts; many of them from student accounts (e.g., “studentname123@syr.edu”). The University does not send official account security notices from personal accounts. Legitimate communications come from official service accounts or ITS directly.
Suspicious Links
These emails contain:
- Shortened URLs (like shorturl.at/xyz123) that hide the real destination
- Links to Google Forms, Microsoft Forms, or WIX sites asking for personal information
- Requests for passwords, Social Security numbers, or banking information
What to Do
-
Report phishing emails using the Report Phishing feature in Outlook
-
Never click links or provide information related to suspected emails
- When in doubt, verify independently by contacting the ITS Service Center
Get Help
- ITS Service Center: 443-2677 or help@syr.edu
- Your local IT Administrator
Stay vigilant and protect your digital identity. When something seems urgent or threatening, take a moment to verify before acting.