[WARNING] Incoming targeted attack e-mail claiming to be from support@*.keio.ac.jp (March 4)
From the evening of Wednesday, March 2 to the present, we have confirmed the receipt of targeted attack e-mails with support@adst.keio.ac.jp, support@itc.keio.ac.jp, support@sfc.keio.ac.jp, etc. as the display name of the source address.
None of these e-mails were sent from any department of Keio University.
The characteristics of the targeted attack e-mails confirmed so far are as follows
- The subject line states "Notification to recover pending messages" or "Account Alert: Due date for incoming mail.
- The body of the message contains a URL link after the following body description
Due to a recent webmail upgrade, there are pending messages that could not be delivered to your mailbox at this time. Incoming mail is being blocked due to maintenance issues.
- Clicking on the URL link in the body of the message brings up a page that asks you to enter your e-mail address and password.
These e-mails are most likely phishing e-mails that aim to steal your e-mail account credentials.
If you have accessed the URL link and entered your account information, please contact us at csirt-core@adst.keio.ac.jp.
Last-Modified: March 4, 2022
The content ends at this position.