Recent Phishing Message (NYU Student Health Center)

Leila Sharma

Please be advised of the following phishing message, purporting to come from the NYU Student Health Center. With respect to suspicious email, we recommend the following:

  • Refrain from replying to the message.
  • Do not click on any embedded links (e.g., CLICK HERE), elements, or open any attachments.
  • If in doubt of the legitimacy of a message, you can always contact the sender independently using contact information in your possession or use website provided contact information.
  • Forward suspect messages to phishing@nyu.edu.

Additionally, when you hover over a clickable link, a URL may display. For more information on identifying suspicious URLs, please see: Security Education: Recognizing phishing scams and protecting yourself online.

 

Screenshot showing phising message dated 5/31/16 stating "You have an important secure message from the Student Health Center. Please CLICK HERE to view the message." Signed "New York University".

The following is the login prompt that will appear if a user clicks on the CLICK HERE link embedded in the e-mail message.  The screenshot  that follows shows the URL that appears in the address bar when the forged login prompt displays:

Screenshot showing spoofed NYU login prompt

Screenshot showing the text in the browser address bar when the spoofed login prompt displays "tinyurl.com/gmdydke"

Please be reminded that the way to determine that the above login prompt is legitimate, is to view the text in the address bar, which should go to https://shibboleth.nyu.edu with the green lock symbol as shown.

Screenshot showing a locked green padlock followed by "https://shibboleth.nyu.edu/"

If you entered your credentials at the prompt:

  • Immediately reset your password. Please see Changing your NetID / NYUHome password for  instructions.
  • For NYU employees, please confirm your Direct Deposit information in PeopleSync (Workday).