As a rule, you should beware of links in emails that are from people or organizations that you are not expecting to hear from.
If your organization is currently using a self-service password reset solution, it is critical that the helpdesk staff who manage the system, and assist users, consistently follow best practices.
This is a commonly used tactic to hide a malicious destination.
We recommend that you View the attached Pdf document ' to update your account immediately. If you have already updated your webmail account in the last 24 hours, you can safely disregard this email.
Thanks, IT Services | The University of Chicago A better than average effort!
Below is a collection of real-life phishing examples that IT Security has acted upon and notes on what gives them away as email scams.
In most of the examples, the hosting service providers have removed the malicious components from their sites. The sender is a gmail address, and Stephan Visser is not a real person who works for IT Services.
IMPORTANT - FURTHER ACTION IS REQUIRED TO UPDATE YOUR ACCOUNT IMMEDIATELY !!! ABOUT THIS MESSAGE: This message is sent to you in order to keep you posted of important updates about your UChicago Webmail Mailbox.