Tuesday, 27 May 2014

Phishing Attacks on Students' Domains

Dear Students,

It had been brought to our attention that there is a phishing email propagating among the students' email accounts. When students opened up the link embedded in the email, the login session will be hijacked and the account might even be taken over.

Students, and staff, are reminded to be mindful when opening emails that they did not expect and not click on any links with destinations they are not sure of - even if the email came from someone they know.

One such example of the phishing email is as follow
From: xxxx@s2014.sst.edu.sg
Date: 22 May, 2014 10:00:24 am GMT+8
To: xxxx@s2014.sst.edu.sg
Subject: wealth development file

Kindly download and view the wealth management document i uploaded for you below


NOTE: This is a message to enlighten friends and family on wealth management, so feel free to login and view document for your financial enlightenment.

In the meantime, affected students may seek help from the ICT Helpdesk to have your account passwords reset. Students are also advised to activate Google's 2FA to help secure their accounts against unauthorised logins.


Best regard,