This is a reminder for not to open any suspicious messages/attachments, or click the links within them. Even messages from colleagues cannot always be trusted since the sender information may be faked or account may have been breached.
There have been several occasions where also Jamk staff/student accounts have been used to send spam and to collect new accounts/passwords. Many emails have had a link to external site outside of Jamk’s network, which then asks users to log in. If username/password has been entered, they ends up to wrong hands. If the message itself does not include any viruses as attachment, it is very difficult to protect users from these kind of messages via automatic scanning.
There have also been spam campaigns that trying to blackmail email recipients with claims that they will release some info about user’s personal net browsing behaviour. These are all scam emails and user should not react to them.
If you have opened a link in the suspicious message and entered your login details, change your password immediately! Remember to update the changed password to all devices you use, so that your account won’t get locked because of logins with old password.