• Phishing11
  • Phishing222
  • Phishing333
  • Phishing41
 Phishing attempts this week             All recent phishing attempts


Is it phishing ?

Scammers and spammers know that people are busy and, most likely, will read their mail quickly with out spending much time looking at the message itself.  It is this characteristic that they are relying on when they send out these messages.  Identifying a phishing attempt can be easy, as long as you know what to look for and take your time to look at the message for the clues indicating it may be a phishing message. 

what is phishing and is there more than one type?

tips and identifying phishing


I replied to a phishing message - now what ?

It happens, you are busy, you just got back from a 2 week vacation and now have to catch up on all of that email in your Inbox.  Then it occurs to you, but a little too late, that last email ... something about it did not look quite right!  You may have just responded to a phishing attempt.  All is not lost, but time can be important so take action quickly to lessen any possible harm. 

more information on what to do (remediation)


Most recent phishing attempts

Phishing on CSU cell phones and CSU office phones

For CSU cell phones: if you receive any messages or calls from 611 and prompts you to enter personal information, do not respond. The phone is owned by the University and no personal information is tied to the phone service. No changes can be made by users; only Telecommunications Office is authorized to make any changes to the account.

For CSU office phones: if you receive calls from outside callers claiming that you have placed a call to them without your knowledge (i.e.. your direct number is appearing as caller ID instead of 216-687-2000), than your telephone number may have been “spoofed”.  Please alert Telecommunications if this becomes a recurring issue. We will work with you on an individual basis on how to address the situation.

If you receive any of the messages similar to those described below, or any of those listed in the archives:

- Do not reply, select any link or open any attachments
Mark the item as phishing (this will send the item to Microsoft for review and flag the item as "junk" in your mailbox) or delete the item. 

If the email you received is not listed below or in the archives, presume the email is a phishing attempt and forward the email to

Listed below are the more recent phishing attempts detected on CSU accounts.  They are listed by the wording listed in the subject line, followed by a brief description of the item.  To view an example of the email, select the subject listed.

New this week

  • Account confirmation - email that appears to have originated from CSU or Microsoft indicating that incoming mail is being held until user confirms identity by signing in via a link.  Note, email does not originate from CSU nor Microsoft, and neither organization will require an individual to sign in via their credentials to receive email.  (5/29)
  • Email concerning a deceased relative - email from an attorney concerning a deceased relative that recently passed away or was killed in a terror attack.  The individual is attempting to obtain personal information concerning yourself, never respond to any email of this type. (5/29).
  • Fax Delivery Failure - email that appears to contain a fax sent to you.  An attachment is included that you must download.  Do not download as it is most likely a virus.  Never open or download attachments unless you are confident that the sender is legitimate and you were expecting the item. (5/31)
  • Confirm your Email - email that appears to have been sent from CSU indicating your account is, or will be, disabled and you must download the information in the attachment.  CSU never sends out email with attachments such as this, nor do we request you provide us with your sign in credentials in order to re-enable your account. (5/31)
  • Message delivery failure - email that appears to be a delivery failure message, it includes a link that redirects you to a 3rd party site in order to obtain sign in credentials and / or other personal information.  Delivery failure notices do not contain links, they are normally informative type messages related to emails you recently sent to an individual at the site. (5/31)
  • Bursary Update - email that contains a line that will redirect your to a questionable site.  Email requests you view the secure notice and implies importance.  (6/5)
  • Vault is updated and coffee - email contains numerous links, all of which will redirect you to a questionable site or will download material without your knowledge.  The email refers to links concerning entertainment and one refers to a possibility of free coffee.  (6/5)
  • Help us Protect you - email appears to have been sent from Microsoft and makes a reference to apps on your machine.  Microsoft never send out emails of this nature.  Also note that the "from" address is not that of Microsoft (6/5)
  • Attention required - an email that contains a link and implies that the information is in the secure dropbox link listed.  If you hover over the link you will note that it is not dropbox.  Only select these links if it arrives from an address you are familiar with and you were expecting it and / or you confirmed the owner of the account sent it.  Never presume it is safe simply because it arrived from an address you recognize, the account may have been hacked.  (6/5)

To view a list of these and other Phishing notices that we have received in the past, based upon content type, visit the archives.