We have received reports of a phishing attempt involving the SMU Library Catalog. A realistic looking email warns you that your library account is about to expire, and instructs you to log in to reactive it. But the URL in the email does NOT go to the real Library Catalog and once you have logged in, your credentials have been compromised. If you clicked on the link of this phishing email and logged in, please use the SMU password reset tool to change your password as soon as possible.
If you receive this email, please delete it. Remember, you can always access your real library account via http://libcat.smu.edu.
You can join SMU’s effort to prevent phish by reporting suspected phishing attempts.
Sample Phishing Email
Subject: Library Account Access
Sender: Jane Sippell <firstname.lastname@example.org>
Your access to your library account is expiring soon and it won’t be accessible for you. You must reactivate your account in order to continue to have access to this service. For this purpose, click the web address below or copy and paste it into your web browser. After logging in, your access is reactivated and you will be redirected to your library profile.
Note – this link appears in the email:
The actual destination does not point to the SMU library catalog but to a web address at http://libcat.smu.edu.cvre.tk
If you are not able to login, please contact Access Services Manager at email@example.com.
Access Services Manager
Access & Delivery Services
Central University Libraries
Southern Methodist University