Spam and phishing
As a general guideline regarding spam emails and phishing, you should not open any suspicious messages/attachments or click on links in them.
The concept of a suspicious message is vague, but usually the number of typos in them says a lot. Even messages from colleagues are not always trustworthy, because the sender information may be forged or the IDs may have ended up in the wrong hands.
Jamk’s credentials have also been used to send spam and collect new recipient addresses. Many of the messages have included a link pointing outside the Jamk’s systems, which will take you to a page that asks you to log in and also confirm strong authentication. If you enter the ID on that page, the account will end up in the wrong hands. If the message itself does not include some clearly identifiable factors, it may be difficult to detect messages automatically and therefore some messages may get through the scanner. In some spam bursts, the automation learns to classify messages with a slight delay, so some recipients may receive the message and some may not.
In recent spam bursts, users have been sent fake blackmail letters or notifications that look like incoming secure emails. If someone happens to open such a message and is startled by the message, fear not, the messages are pure spam with fake addresses. There is also older news coverage of the topic in the media.
If you have opened the link in the suspicious message and entered your username in the service, change your password immediately! Also report the incident immediately to ICT services via Helpdesk.
After changing the password, remember to update it on all the terminals you use, so that the account does not get locked after login attempts with the old password.