Resolved: Phishing Attempt Targeting Penn State, ANGEL Users
There is a message being sent to Penn State email addresses with the subject line “ANGEL Allocation Management Policy Changed” and the From: address of “ITServiceDesk@psu.edu”. This message contains a link that, when clicked, leads to a fake WebAccess authentication page. Although ITS Security Operations and Services (SOS) has blocked the web address at Penn State’s border router and work is being done to have the site taken down, persons clicking the link from off-campus may still access the site.
Anyone who has followed the link and entered their userid and password should immediately visit www.work.psu.edu and change their password. If a similar userid and password is used elsewhere, those passwords should also be changed as soon as possible.