Starting at 9:00 a.m. this morning, an email with the subject “ACTION REQUIRED Drake University Revised and Updated Business Integrity Program For All Employees” appearing to come from President Martin was sent to a large number of faculty and staff. This was a widespread, malicious phishing email directly targeting Drake. The link in the email directed the recipient to an external website spoofing a Microsoft Office page in order to collect Drake email addresses and passwords.
ITS is working to block this malicious link, however if you already opened the link, your account is at risk. If you think you may have clicked the link, please change your password right away by visiting password.drake.edu. Instructions on changing your password are located in the ITS knowledge Base at https://drake.teamdynamix.com/TDClient/KB/ArticleDet?ID=21338, or you can contact the Support Center at ext. 3001 for assistance.
Please don’t hesitate to contact me directly with any additional questions or concerns.
—Peter Lundstedt, Director, Information Security & Compliance, ITS