Wednesday, January 18, 2017 - 3:18pm

A recent article that has appeared in several trusted news sources warns about a Phishing email (one that attempts to steal your username and password or other sensitive information) being sent to Google users. Since the College uses Google for email users should be aware of this attempt and how to avoid or identify it and steps to take if you have experienced this.  

NOTE: This does not only affect Google but other online services as well.

Summary

The message will appear to come from a trusted contact. The email has an attachment, mostly PDF files, that when the user clicks on it brings up a page that looks just like the sign in page for Google.

What You Need to Know

  1. Emails sent by the college (accounts ending in @davidsonccc.edu) if they contain a link, when clicking on the link should NOT prompt you to log into Google.  Since you are already logged into your Google account there is no need to log in again.
  2. The URL that appears in the window or tab that opens has the following at the beginning rather than the standard http or https:
    data:text/html,
  3. If you receive an email from someone that appears to be a trusted contact (it does not have to be from an @davidsonccc.edu email account), but you are unsure, contact them directly via the phone or send a separate email, not a response to the message that you received, to verify they have contacted you.

Protect Yourself

If you have seen this message and acted on it, change your password immediately as it will only open doors for more messages. You can change your StormTrac password by visiting the College website > Current Students > StormTrac Password Management. Log in with your current StormTrac username and password and follow the prompts to change your password.

You should follow the steps available to you with your personal email and other online service sites if you have experienced this personally.