Some University of Toronto users have received a message purportedly from the Library, indicating that the user's borrowing privileges are about to expire. This message was a phishing scam sent from a fake account. An example of the message is copied below.
If you received this phishing message, please disregard and delete it, or use the Report Message feature in Outlook to report it as phishing. Receiving this message does not indicate that your account has been compromised.
If you responded to the message, please reset your password immediately. You can reset your UTORid password online, or by contacting the Information Commons Help Desk:
https://www.utorid.utoronto.ca/
help.desk@utoronto.ca
416.978.4357
For more information on this type of scam, see here:
https://securitymatters.utoronto.ca/category/phish-bowl/
Thank you for your vigilance, and please contact us if you have any questions.
Example of this phishing message:
This is an automatically generated email from IT Services, The University of Toronto.
IT Standard for Computer Passwords and System Access Controls state that an appropriate library access renewal process is implemented at the University of Toronto. Our records indicate that your library enrollment is set to expire on Feb 15, 2020 12:00. For security reasons, please click the URL link below to update your library enrollment:Activate Your Account
If you have not renewed your library enrollment by the date mentioned above, your access to the library and its associated services will expire. If you have any questions arising from this message, please contact the Library Helpdesk. For a list of the current library online services, please visit:
https://onesearch.library.utoronto.ca/
Yours sincerely,
University of Toronto Libraries
130 St. George St.,Toronto, ON, M5S 1A5
libraries@umass.edu