IT Security Notice: Microsoft 365 phishing alert

The IT Security team has received reports about malicious attachments being shared via Microsoft 365 applications. As a result, there has been an increase in compromised McMaster accounts.

To protect your account, be on the lookout for unexpected and unsolicited messages with the following attributes:

Subject line similar to “<Name of Colleague> shared a file with you”
Include a link to a OneNote notebook named “Review Document” store on the sender’s OneDrive.

The objective of this message is to steal your MacID credentials. Opening the attachment will prompt you to enter your MacID and password, which are then collected by the attackers.

Receive a malicious message? Here’s what to do:

If you receive an email such as the one described above, please forward to is-spam@mcmaster.ca immediately, preferably as an attachment.
Immediately delete the message.

Please note: The IT Security team has enabled measures that will protect members of the McMaster community from these malicious email messages when they are on the network, however the same measures are not available to those that receive the message when they are away from campus.

Republish this Article for Free

Republish this Article

We believe in the free flow of information. This work is licensed under a Creative Commons Attribution-No Derivs 2.5 Canada (CC BY-ND 2.5 CA), so you can republish our articles for free, online or in print.

All republished articles must be attributed in the following way and contain links to both the site and original article: “This article was first published on Daily News. Read the original article.”

<p class="p1">The IT Security team has received reports about malicious attachments being shared via Microsoft 365 applications. As a result, there has been an increase in compromised McMaster accounts.</p>
<p class="p1"><b>To protect your account, be on the lookout for unexpected and unsolicited messages with the following attributes: </b></p>

<ul class="ul1">
 	<li class="li2"><span class="s2">Subject line similar to “&lt;Name of Colleague&gt; shared a file with you” </span></li>
 	<li class="li2"><span class="s2">Include a link to a OneNote notebook named “Review Document” store on the sender’s OneDrive.</span></li>
</ul>
<p class="p1">The objective of this message is to steal your MacID credentials.<span class="Apple-converted-space"> </span>Opening the attachment will prompt you to enter your MacID and password, which are then collected by the attackers.</p>
<p class="p1"><b>Receive a malicious message? Here’s what to do:</b></p>

<ul class="ul1">
 	<li class="li2"><span class="s2">If you receive an email such as the one described above, please forward to <a href="mailto:is-spam@mcmaster.ca"><span class="s3">is-spam@mcmaster.ca</span></a> immediately, preferably as an attachment.</span></li>
 	<li class="li2"><span class="s2">Immediately delete the message.</span></li>
</ul>
<p class="p1"><i>Please note: The IT Security team has enabled measures that will protect members of the McMaster community from these malicious email messages when they are on the network, however the same measures are not available to those that receive the message when they are away from campus.</i></p>

Media Enquiries

Phone: (905) 525-9140 ext. 24073
Email: comms@mcmaster.ca

The Communications and Public Affairs Office is staffed from 8:30 a.m. to 4:30 p.m. Monday to Friday.

The University has a broadcast quality television studio to facilitate live and pre-recorded interviews with media. Learn more about our experts.