Yes! This form is a real, live Nigerian-spam-scam phisher's form!
IT-Discuss, I failed to make that clear. If you put your credentials into this form, then you should update your credentials.
As I think rather highly of this community, I doubt anyone has actually done this - but it still needs to be said.
On Apr 3, 2012, at 10:37 AM, Jim Lawson wrote:
> It was not obvious to me that this form was not of UVM origin! You
> don't say it in the message and since the subject is "A Phishing
> Experiment" I assumed the form was experimental as well. Is there some
> context I'm missing?
> On 04/02/2012 09:09 AM, Benjamin Coddington wrote:
>> Hey IT-Discuss, some phishers have been using google docs to try to gain UVM netids. Every google docs doc has a "Report Abuse" link in the footer.
>> I'd like to perform an experiment to find out if google will quickly pull the doc if enough unique browsers report abuse. Would you take a 15 seconds, follow the link and report abuse? Then reply to me directly telling me you did so. I'll keep a tally and report back on this thread throughout the day with the number of complainers and the form's state.
>> If google does pull the doc, then we can mount a reasonable defense against this kind of phish, and SAA will have more time to build bigger INBOXes.
> Jim Lawson
> Systems Architecture & Administration
> Enterprise Technology Services
> University of Vermont
> Burlington, VT USA