There is currently a phishing scam targeting the McGill community, with the title "Expiration Notice". The message says "your access to myCourses Learn will soon expire" and it contains a link that goes to a fake login page that looks identical to the myCourses login page. The signature and FROM address appear to come from an "IT Services" representative. View an example of the message on the left, and below.
Please DO NOT click on the link or reply to the message. Delete this email immediately! It does NOT come from a McGill source.
This email is a fraudulent attempt to gain access to your personal information. If you have already clicked on the link in this email and submitted any personal information, you should change your McGill Password as soon as possible. See the McGill Password Reset Checklist for instructions.
If you have received a phishing email or suspect that you have, please itsupport [at] mcgill.ca (contact the IT Service Desk) immediately to report the phishing attempt.
- How to report suspicious emails to the IT Service Desk
- IT Security Awareness Online Course - Focus on Phishing
- Phishing scams and how to protect yourself
- Stay Safe Online
- Stay safe when using your mobile device
Sender name & address: <looks like a representative from IT Services>
Subject: Expiration Notice
This message is to inform you that your access to myCourses Learn will soon expire. You will have to login to your account to continue to have access to this service.
You can reactivate it by logging in through the following URL. A successful login will activate your account and you will be redirected to your page.
FRAUDULENT LINK GOES TO FAKE LOGIN PAGE
If you are not able to login, please contact Rebecca Jones at <email address> for immediate assistance.