E-mail phishing is a significant and growing problem for CU-Boulder. Recently, the CU-Boulder campus has seen an increase in the number of accounts compromised by phishing attempts. In addition, the reaction times of e-mail service providers have become much faster for blocking e-mail from institutions with compromised e-mail accounts. A compromised account often sends in excess of 100,000 e-mail messages which quickly hurts the e-mail reputation of the @Colorado.EDU domain and adds the domain to various e-mail block lists.
Often technology is improved by an upgrade, but sometimes a simpler solution is needed. To optimize the lists.colorado.edu service, OIT is applying good old fashioned elbow grease by working to clean up old, outdated and unused lists.
Over 13,000 people have moved their CULink account to CU-Boulder’s Gmail service since spring break. The following people were prize winners in our random drawing from everyone who has migrated to Gmail or liked the OIT Facebook or Twitter pages.
Winners of $25 Google Play Cards: Laura Mitchell & Michael Braverman
The Office of Information Technology (OIT) has received reports that several public e-mail services, such as Yahoo and AOL, are currently blocking the receipt of university e-mail containing @colorado.edu in the address.
This is an action often taken by public e-mail providers when they receive spam due to a phishing outbreak, such as the one that occurred over Labor Day weekend with university e-mail.
Over the Labor Day weekend, the campus has been targeted by malicious phishing e-mails that appear to be attempts to gain user information by sending an email stating:
" Your Mailbox Has Exceeded The Storage Limit Set By The Administrator please CLICK HERE and fill in the bellow informatons [note incorrect spelling] To enable us to Re-validate Your E-mail Account. Note: Account owner who refuse to Re-validate His/Her account will loose [note incorrect spelling] account within 24 hours. System Administrator."
In the past week the campus spam filters have begun blocking a growing number of e-mail messages from Yahoo.com accounts as the number of spam messages from Yahoo servers has increased significantly. The campus’s filtering of e-mail from a specific server is based on reputation and the Yahoo reputation score has decreased to a point that many reputation-based filtering services, including ours, have begun applying a higher level of filtering.