Educause Security Discussion mailing list archives

Re: attempts sending fake phishing messages to students and/or employees

From: Jesse Thompson <jesse.thompson () DOIT WISC EDU>
Date: Fri, 11 Jun 2010 08:41:09 -0500

On 06/09/2010 09:31 PM, Eric Case wrote:

What about something like:

This is a test of the Phish System.

Instead of sending out a mass email that is out of the context of thethreat, try this:

We add a warning to the beginning of the content of every message thatis rated as spam and also triggers anti-spam rules indicating that themessage is a scam.


See this page for more details:
http://kb.wisc.edu/wiscmail/page.php?id=13293

Users periodically look in their Junk Mail folders where they willeventually and inevitably see some scam messages. But with this set up,they will first see our warning. By seeing the warning in the contextof the threat, they should be better prepared to identify a scam thatslips past our spam scanners.


Jesse Thompson
UW-Madison

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Current thread:

Re: attempts sending fake phishing messages to students and/or employees Sam Hooker (Jun 09)
- Re: attempts sending fake phishing messages to students and/or employees Eric Case (Jun 09)
  - Re: attempts sending fake phishing messages to students and/or employees Jesse Thompson (Jun 11)
  - Re: attempts sending fake phishing messages to students and/or employees Andrew Daviel (Jun 25)
  - SSH password capture Andrew Daviel (Jun 25)
    - Re: SSH password capture Yonesy F. Nunez (Jun 28)
- Re: attempts sending fake phishing messages to students and/or employees Dave Kovarik (Jun 10)
  - Re: attempts sending fake phishing messages to students and/or employees Davis, Thomas R (Jun 11)
    - Re: attempts sending fake phishing messages to students and/or employees Ben Woelk (Jun 11)
    - Re: attempts sending fake phishing messages to students and/or employees Sam Hooker (Jun 14)