If you see spam/phishing in your inbox:
Select the message you'd like to report.
Click the spam button Report spam icon in the toolbar above your message list.
(If you have the message open, you can also report it as spam by using the same button.)
To know more about how a spam email looks, how to identify and prevent them please refer to our spam email page.
On 11/27/17 UITS was alerted to a Phishing page mimicking our OneCSU login page
In the image below the highlighted URL is not linked to CSU
UITS asks students, faculty, and staff when connecting to MyCSU
to make sure the page is secure by checking for a secure URL
Always make sure your page is secure when visiting CSU websites. This ensures that you're in the right place and your information is safe
There has been a "Phishing" attempt directly targeting Columbus State University email accounts. Please delete this email and notify UITS if you have clicked the link in the email. Below is a image of the Email:
From: IT Desk <email@example.com>
Date: Tue, Nov 21, 2017 at 9:09 AM
Subject: New Courses
Here is a link to course registration need to register today.
Sign up today in Eduphoria.
Instructional Technology Specialist
North East Independent School District
There has been a "Spear Phishing" attempt directly targeting Columbus State University Employee's Please delete this email and notify UITS if you have clicked the link in the email. Below is a image of the Phishing Email
We have learned there may be a "Spear Phishing" email campaign targeting post-secondary institutions and high schools in Georgia. As indicated below, the emails in question appear to be coming from Trex@gsfc.org but the FROM line includes a different email address (1), the SUBJECT line references some sort of invoicing (2), and the BODY of the email contains an embedded URL to a non-GSFC website (3).
If this email is received please delete it immediately.
The following spam email appearing to come from a Ricoh-usa billing specialist has been observed in MyCSU emails. Please delete immediately when you receive it.
IMPORTANT NOTICE from ITS: As a reminder, the IRS does not routinely send email to taxpayers. Please check your postal mail if you expect communication from the IRS. If emails appear to be from USG Human Resources or other organizations from which financial information is expected, please verify the message is legitimate prior to clicking any links.
From: USG Human Resources
Sent: Monday, January 16, 2017 03:00
Subject: Your W2
Your W2 is now prepared and available from the self-service portal. Please click the link below to access your W2.
Please click here to Logon.
USG Human Resources
As a reminder, the IRS does not routinely send email to taxpayers. Please check your postal mail if you expect communication from the IRS. If emails appear to be from USG Human Resources or other organizations from which financial information is expected, please verify the message is legitimate prior to clicking any links.
CSU Office of Information Security has alerted USG Shared Service Center see response:
Thank you for reporting this incident. I do believe this to be a Fraudulent email. I have reported this to ADP's Trust Center at firstname.lastname@example.org.
ADP's Trust Center had the following statement concerning the emails:
"There have been reports regarding fraudulent emails that appear to be sent from ADP which may have various subject lines including "Your ADP account will be suspended soon." These emails include a link or a file attachment and instruct the recipient to open it. The link leads to a phishing page entitled "ADP Account Update" which asks the recipient to enter their User ID, password, Email ID and email password. Once the above details have been submitted, the user is redirected to the ADP website to make him/her believe that their information is not submitted to spammers."
The following spam email has been observed in MyCSU emails. Do not try to open the email and delete immediately when you observe it.