Tag Archives: Phishing

Spotting a phishing email

Earlier this afternoon some staff received an email that at first glance, appeared to have come from the Vice-Chancellor, Professor Cheryl de la Rey.

This email was a sophisticated phishing scam, and was identified through words or phrasing not usually associated with the VC, including ‘commuter trains’, ‘hockey sticks’ and the spelling of ‘corona-virus’.

Please do not engage with this email, or open any attachments associated with it. IT have completed a search and destroy of this email, however if you see it in your inbox please ignore it.

UPDATE – 5pm Friday 28 August 

There was a widespread phishing campaign on Friday, 28 August where a spammer pretended to be sending email from Cheryl de la Rey (cheryl.delarey@canterbury.ac.nz) with the subject: “Corona-virus (COVID-19) information for the University of Canterbury.” The attachment when opened took users to a webpage that requested authentication to open the document. If you put any information in this webpage, then you will need to change your password immediately. To change your password, go to the University of Canterbury website, click on “Logins” in the banner, then “Password Reset.”

Most University of Canterbury users would have had the email blocked from arriving in their inbox by our spam filter PreciseMail. Users who had the email delivered to their inbox received it either due to an allow rule set in their profile: *@canterbury.ac.nz or because they OPTED OUT of using PreciseMail.

The *@canterbury.ac.nz allow rule should not be used as it is not required and will only allow SPAM to arrive in your inbox.

To remove this allow rule please follow these steps:

  • Log in to https://spam.canterbury.ac.nz
  • Click on  Create, Update, or Review Your Allow List
  • Find the rule in the list then click Delete and then click Save Changes

If you wish to OPT BACK IN to using our spam filter, please do the following:

  • Login to https://spam.canterbury.ac.nz
  • Click on Set your Preferences
  • Click on Opt in and then Save Preferences
  • We don’t recommend that you have any allow rules for a whole domain e.g.:  *@gmail.com as that will cause any email sent from those domains to bypass the spam filter