Phishing e-mail appears to come from help@oit
Over the past few days, some Duke users have reported a new phishing attempt that warns about a "Scheduled Service Maintenance" and requests the user's NetID, password and server. The e-mail appeared to be from "help@oit.duke.edu" with a Reply-To address of "oithelp@live.com."
This particular e-mail could easily be mistaken as a legitimate request from university IT staff. If you've responded to this message, please contact the OIT Service Desk immediately.
Our standard warning bears repeating: Duke IT personnel will never ask you for your passwords, and you should never give your password to anyone. Even IT personnel who come to your desk to help you with your system will ask you to enter your own passwords, and will pointedly not watch you as you input them.
If you receive a suspicious e-mail in the future, display the message's full header using these instructions and then forward the message to help@duke.edu.