Avenue to Learn phishing attacks
There have been a large number of reports of Avenue to Learn related phishing attacks today. The malicious email message warns recipients that Avenue to Learn access will expire unless they reactivate their account.
The malicious emails has the subject line “Expiration Notice”, and contains a link to a web page that looks similar to an Avenue to Learn URL. Hovering your mouse over the link reveals that it is in a “.cf” domain. The email also contains contact information for a fictitious Service Desk analyst – Please do not call this number!
After clicking the link, the recipient is taken to a web site that very closely resembles a McMaster University website, and prompted for their credentials.
This message is very convincing. If you receive this message please delete it immediately. If you clicked the link and/or provided your credentials, please contact the Service Desk immediately.