Phishing mails with requests to return your usercode and password are also sent to accounts at the TU/e, as you can read in the dutch article Phishing mail that appeared in number 2 of the dIChTerbij het Nieuws newsletter.
Sender addresses such as
TUE.NL UPGRADE TEAM
suggest that they are sent by TU/e system administrators.
Please note that we never ask you to return your account data.
If you receive suspect mail...
forward it to the helpdesk, see the Contact link on this page. Please include the Internet headers of the email.
Then we can block both incoming phishing mail and outgoing replies. Phishing mail often include website links that you are invited to click on - don't do that. Such links will also be blocked.
Phishing mail often pass spamfilters without raising flags, so your notification to us is important to intercept them.
Behind the From field
What appears in your Outlook inbox list is only the descriptive part of the sender's From field. For the address part, take a closer look at the From: Internet header, for example:
From: "TUE.NL UPGRADE TEAM" <email@example.com>
Either forged or not, the address part is firstname.lastname@example.org, obviously not at tue.nl .
Check the destination address
When replying, Outlook will propose a destination address, either taken from the sender's From: Internet header or, if also present, from the
address and present that in the To: field. Other mailprograms may let you choose from both addresses.
In general, you should check the proposed destination address if you use the reply-option to reply to a mail.