From: Didier Benza <didier.benza@inria.fr>
To: Didier Benza <didier.benza@inria.fr>
Subject: [Caml-list] Phishing ciblé vers Inria / Phishing campaign targeting Inria
Date: Tue, 1 Apr 2014 11:18:19 +0200 [thread overview]
Message-ID: <7592F3AF-AE97-4E56-B45B-F6F430B98981@inria.fr> (raw)
[-- Attachment #1.1: Type: text/plain, Size: 2391 bytes --]
English version below.
Bonjour,
nous venons de repérer une campagne de phishing en cours ciblant spécifiquement des utilisateurs d'Inria. Nous avons recherché sur nos passerelles de messagerie quels sont les utilisateurs qui ont reçu le message véhiculant ce phishing afin de les alerter et de vérifier qu'ils n'ont pas saisi leur login ou leur mot de passe sur le site des escrocs.
Vous recevez ce message de ma part car vous avez reçu ce message de phishing entre hier soir (21h30) et ce matin (4h30).
Le message portait le texte suivant :
Attention:
An Attempt has been made to Your Account from a new computer. For the security of
your account, we are poised to open a query or update your account. Kindly Click
http://update-pux.my3gb.com/Central%20Authentication%20Service.htm
for secure security and instant online account upgrade.
� Inria.net Telecom Webmail IT Help Desk.
Si vous avez reçu ce message et avez saisi vos identifants sur le site Web indiqué, merci de prendre contact le plus rapidement possible avec votre service informatique afin qu'il vous assiste dans le changement de mot de passe et puisse rechercher si quelqu'un s'est connecté frauduleusement sur votre compte.
Bien cordialement,
Hello,
we just found a phishing campaign being specifically targeting Inria users. We searched in our email gateways in order to find which users have received the mail message conveying this phishing campaign and to check that they have not entered their login or password on the site of scammers.
You are receiving this message from me since you have received this phishing message between yesterday evening (9:30 p.m.) and this morning (4:30am).
The message was the text above (in english, indented in the french section).
If you have received this message and have entered your id and password on the specified website, thank you to contact as soon as possible with your IT department so that they help you change your password and if someone fraudulently logged into your account.
Regards,
Didier Benza Didier.Benza@inria.fr
Fonctionnaire de Sécurité et de Défense
Responsable de la Sécurité des Systèmes d'Information
Mob : +33 677 630 790 / Tel : +33 492 387 167 / Fax : +33 492 387 602
Inria, 2004 route des Lucioles, BP 93, 06902 Sophia-Antipolis Cedex
[-- Attachment #1.2.1: Type: text/html, Size: 7458 bytes --]
[-- Attachment #1.2.2: inria-logo-mail-1.jpg --]
[-- Type: image/jpeg, Size: 16101 bytes --]
[-- Attachment #2: smime.p7s --]
[-- Type: application/pkcs7-signature, Size: 4372 bytes --]
next reply other threads:[~2014-04-01 9:18 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-04-01 9:18 Didier Benza [this message]
2014-04-01 12:16 Didier Benza
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=7592F3AF-AE97-4E56-B45B-F6F430B98981@inria.fr \
--to=didier.benza@inria.fr \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).