Spear phishing targeting university libraries

We have been notified of a recent spear phishing campaign specifically targeted at users of university libraries.

The hackers send phishing messages to people with access to the library of the targeted university. The attackers suggest your library account is about to expire and invite you to reactivate your account by following a spoofed link.

This spoofed link directs users to a fake login page, designed to steal user login credentials.

The Open University Library does not send emails to anyone about expired accounts or asking you to reactivate your library account.

If you have received an account expiration email that claims to be from the OU library please let us know by contacting the Library Helpdesk.