Multiple phishing scams: Various subject lines, including “Update your Office 365 now to Avoid Fraudulent Act”


Published: 31Aug2018

At this time of year, McGill faces an increased level of phishing attacks targeting our community. It is important to be vigilant of hacking attempts.

Presently, there are multiple phishing scams targeting the McGill community. One email’s subject line is “Update your Office 365 now to Avoid Fraudulent Act” and its body contains a link to open a message. View a screenshot of the message to the left, or view the text version below.

McGill's information security team has prevented the attack from reaching most McGill inboxes, and the fraudulent link has been blocked from the McGill network; however, it is still active from outside our network.

Please DO NOT click on the link or reply to the message. Delete this email immediately! It does NOT come from a McGill source.

This email is a fraudulent attempt to gain access to your personal information. If you have already clicked on the link in this email and submitted any personal information, you should change your McGill Password as soon as possible. See the McGill Password Reset Checklist for instructions.

If you have received a phishing email or suspect that you have, please itsupport [at] (contact the IT Service Desk) immediately to report the phishing attempt.

NOTE: Due to the high volume of phishing attempts, the IT Services Desk regular telephone support hours will be extended during Labor Day weekend: 

  • Saturday, September 1: 9:00 am - 5:00 pm
  • Sunday, September 2: 9:00 - 5:00 pm

Quick links:

Example of this phishing message:

Unable to display this message

<Click here to open this message>

SMTP message delayed: IqjJ - Date: 08/31/2018 2:52:40 (mcgill)