Phishing Attack Entitled "Confidential - to ALL Employees" (December 5, 2012)


This morning an attacker launched a phishing attack targeting Duke users. The message is entitled "Confidential - to ALL Employees" and requested the user to download and open a zipped file called "Employment" 


If you download and open the file, it will attempt to install malware on your machine.  Please DO NOT open this file.


If you downloaded and opened the file, please contact the OIT Service Desk or the Duke IT Security Office IMMEDIATELY.


OIT Service Desk:

(919) 684-2200


Duke IT Security Office


The message looks like the following: