Another phishing attempt just started circulating on the Stanford campus. It’s cleverly constructed with Stanford-tailored information; it even claims to be from a specific, real, Stanford library staff member.
Warning signs, indicating something suspicious about the email (aside from the fact that your Stanford library account probably has never expired before), include: the exclamation point in the subject line (not very professional for an official Stanford email), the strangeness of the salutation “Hi Dear Member,” and the overall threatening nature of the email’s tone, which is meant to cause you to click without thinking.
AND, the main giveaway: the scammers still can’t hide the fact that the link they want you to click doesn’t lead to a real Stanford page. The URL is revealed as beginning with ez1.ir, not /www.stanford.edu/. Always, always check before you click. And when in doubt, don’t.
Subject: Your library account has expired!
Date: Mon, 25 Nov 2013 17:56:32 +0330
From: “Stanford University Library” <[email address removed]>
Hi Dear Member,
Your library account has expired, therefore you must renew it immediately or it will be closed.
If you intend to use this service in the future, you must take action at once!
To continue visit this page* and login to your library account and then renew it.
[*mousing over the original link reveals a page whose URL begins with "ez1.ir", not stanford.edu]
Stanford University Library