Phishing Attack - "Portal update notice" (Nov 12, 2013)

Reports of a new phishing attack are circulating across campus. Messages with the subject: "Portal update notice" are claiming that recipients are required to login to confirm membership. If you receive a message similar to the screenshot below, please discard immediately:

 

 

Mousing over the "login to update your account" URL points to a bit.ly shortened URL. The non-Duke target address resides on the Brazil (.br) domain space. Clicking the link will redirect you to the following form:

 

 

Again, this site is not affiliated with Duke and is an attack to harvest NetID credentials. If you've visited the site and attempted to login, please notify the OIT Service Desk immediately at 919.684.2200