Quite a few people have received a message (given below) about the need to reactivate an expiring WebLearn account. The link goes to a spoofed copy of the “WebAUTH” login page which looks quite convincing
I would like to assure you that this is NOT a legitimate message: users should NOT click or follow the link.
I have reported this to OxCERT but I would appreciate it if you could spread the word amongst staff and students that they should ignore this and any other similar messages.
That message again:
Subject: Expiration Notice
Dear User,
This message is to inform you that your access to the WebLearn will soon expire. You will have to login to your account to continue to have access to this service.
You need to reactivate it just by logging in through the following URL. A successful login will activate your account and you will be redirected to your WebLearn page.
http://weblearn.ox.ac.raae.cf/portal/login2RT2VuKZn[…….]/
If you are not able to login, please contact Fred Bloggs […] for immediate assistance.
Sincerely,
Fred Bloggs
IT Services
University of Oxford
For more information please visit: https://www.infosec.ox.ac.uk/current-alert/weblearn-phishing-e-mails
