Issue Overview
Phishing scams use fraudulent emails to get users to reveal confidential information. Such emails usually look like they come from a legitimate organization such as Blackboard but contain links to illegitimate sites.
Blackboard has become aware of a mass phishing scam targeting customers using Blackboard Learn. To be clear, Blackboard Learn has not been hacked -- these are emails sent directly from a spammer to emails it may have harvested by spidering the institution's websites for email addresses.
Examples of Phishing Attempts
It is important to realize that the messages will vary.
EXAMPLE 1: "RECEIVED NEW MAIL"
Purported Sender | Blackboard ITS |
Email Subject | Received New Mail[School Board] |
Content |
EXAMPLE 2: "NEW COURSE INFORMATION"
Purported Sender | Blackboard Learn <notifications@blackboard.com> |
Email Subject | New Course Information |
Content | Good Morning, |
EXAMPLE 3: "BLACKBOARD LEARN: IMPORTANT NEW COURSE"
Purported Sender | Blackboard Learn <email@blackboard.com> |
Email Subject | Blackboard Learn : Important new course |
Content | Dear Staffs/Students Access to e-mail is about to expire, Please click on the link below to re-activate your account, please sign in to Blackboard system immediately. |
EXAMPLE 4: "NOTICE: IMPORTANT NEW COURSES ALERT."
Purported Sender | Blackboard Learn <email@blackboard.com> |
Email Subject | Blackboard Learn : Important new course |
Content | Dear Member Access to e-mail is about to expire, Please click on the link below to re-activate your account, please sign in to Blackboard system immediately. |
Solution
- Notify your end users that these emails are phishing emails and to delete and disregard the emails.
- Do NOT go to the link in the email. Delete the email immediately.
Please continue to send questionable messages to spam@jhu.edu. For immediate response, please call the Help Desk (410-516-HELP).
More Information