Skip to main content

Don't believe it. The Wisc! Helpdesk

December 20, 2013 by Sue Weier

Don't believe it. The Wisc! Helpdesk

Don't ruin your holiday season by falling victim to this new phishing scheme.  An email with the subject "The Wisc! Helpdesk" is making the rounds on the UW campus.  The text of the email is:

Your Incident ID is: 130329-018715

This is an automated message to notify you that we detected a login attempt
with a valid password to your Wisc! account from an unrecognized device on
Thursday, December 19th, 2013 10:20 PM BST.

Location: Czech Republic IP=89.187.142.93

Was this you? If so, you can disregard the rest of this email. If this
wasn't you kindly follow this link

http://universityofwisconsinsystem.yolasite.com/ to review your Wisc account

Sincerely,
The Wisc! Helpdesk

What gives this phishing email away? 

  1. First, the terminology "Wisc!" in the subject line of the email. Typically we don't see an exclamation in the title of our email or NetID accounts. 
  2. Second, the From address.  The From name is one word, meganoco, instead of a first and last name.  When you roll over the name, the email address is meganoco@buffalo.edu, not wisc.edu. 
  3. Third,  the URL of the destination website.  The domain is not a wisc.edu domain, or even a .edu domain.  It seems unlikely that an official email about a UW-Madison account would come from universityofwisconsinsystem.yolasite.com. 
  4. Fourth, the grammar mistake.  The grammar and spelling of this email is pretty good.  However, the phrase "If this wasn't you kindly follow this link", needs a comma after the word 'you'.

Never click in haste when it comes to your personal or professional information.  If you read carefully and with a critical eye, you can avoid phishing emails.

Premium Drupal Themes by Adaptivethemes