There is a phishing email targeting the McGill community, with the subject "The McGill University Update!!". The message states that the recipient's anti-virus expires in 1hr 35mins and asks them to click on a fraudulent link to upgrade their anti-virus. See an example of this phishing message below.
Please DO NOT click on the link or reply to the message. Delete this email immediately! It does NOT come from a McGill source.
This email is a fraudulent attempt to gain access to your personal information. If you have already clicked on the link in this email and submitted any personal information, you should change your McGill Password as soon as possible. See the McGill Password Reset Checklist for instructions.
Sender name & address: <valid McGill person>
Subject: The McGill University Update!!
Your mcgill.ca e-ID Anti Virus expires in 1hr 35mins. You will not be able to access your account if the security is not upgraded. You are strongly encouraged to Authenticate the shield security immediately with your mcgill.ca name, email and password.
Click on mcgill.ca Upgrade [fraudulent link] and complete the requested details so as to keep your account active.
845 Sherbrooke Street West
Montreal, Quebec H3A 0G4
What to do when you receive a suspicious email
If you have received a phishing email or suspect that you have:
- Check the list of known IT Security Alerts
- If you don't see the one you received, itsupport [at] mcgill.ca (contact the IT Service Desk) immediately to report it. Be sure to attach the suspicious message so they can verify its content.