Email phishing scam
The University is currently receiving many emails which claim to have been sent from the Webmaster and include an attachment called security_letter.html
This attachment requests users to log into webmail.leeds.ac.uk to obtain an updated profile. The web form is branded with the University logo but is fake, and designed to trick you into sharing your logon details.
Outgoing access to the website was blocked as soon as we became aware of this at 09:15 hours this morning. If you responded before that time and entered logon details, your account will have been compromised and you must change your password as soon as possible.
These 'phishing' scam attacks are becoming increasingly sophisticated and ever more convincing. Always be suspicious of emails of this nature and please check campusweb for confirmation that any account update request is authentic before responding. If in any doubt ask the ISS Help Desk.
Posted in: University news