Skip to Navigation | Skip to Content

"Notification" phishing scam

« Connect-Direct: March 2014 | Main | "NYU WARNING!!!" phishing scam »

There are new reports about a phishing message that purports to come from "nyuadminform" The phishing message claims " you may not send or receive new mail until to re-validate your mailbox," and instructs the recipient to click on a web link. An adjacent URL takes victims to a malicious website that requests, amongst other things, the NetID and password. This message is a forgery and should be deleted immediately.

NYU community members should NEVER REPLY TO OR CLICK ANY URL in an email that requests the recipient's e-mail login name and password.

As a reminder of better security practices, always remember that:

  • No NYU community member will ever ask for your account password, especially not over e-mail.
  • Do not reply back to e-mails from unidentified, untrusted sources.
  • Messages that request personal information over plaintext email should be regarded as being suspicious. If you are unsure about the legitimacy of a message, contact the IT Service Desk at or 212-998-3333.
  • Forward all phishing messages to This helps train our e-mail filters to block such messages in the future.
  • If a message informs you of an impending "account closure" unless you comply with its demands, it is often a sign that the message is a phishing scam. Do not comply with its requests.

The following sites also provide several useful tips on defending against these types of phishing attacks:

Example of phishing email

From: nyuadminform (
Date: Fri, Mar 21, 2014 at 7:35 PM
Subject: Notification

This is to inform you that your mailbox storage limit which is 30GB as set by your administrator helpdesk, which is currently running on 30.9GB, you may not send or receive new mail until to re-validate your mailbox. To re-validate your mailbox please click this:

Warning! All students and staff represent owners who refuse to update their account within two or three days of receipt of this email will lose your account permanently.

Administration system Help Desk.
New York University.