Massive phishing targeting EPFL users
© 2018 pixabay.com
A large scale phishing campaign using stolen EPFL credentials has been launched against the School this morning.
More than 17'000 email addresses have been targeted. The attackers set up a lookalike EPFL webmail login page and sent the fraudulent link through valid email addresses, which misled a large number of unsuspecting users. We have thus taken additional security measures to contain this incident.
Most of the time, a phishing email can be spotted because of unusual sender addresses, or web links poorly imitating official institutions. The task becomes harder when you know the sender! Always keep in mind that you can never be sure of a sender's true identity.
If you are concerned about an email, we kindly advise you not to click on any attachment or web link, and send it to [email protected] for analysis.
