As a general guide to handling spam emails, you should never open suspicious messages/attachments or click on links in suspicious messages. It is not always clear how to categorize suspicious messages, but usually they contain lots of misspellings. Even messages from a colleague are not always reliable, because sender information may be forged.
Several Jamk accounts have been used over the years to send spam and collect new account id’s through them. Many messages contain subject like “Check invoice pdf” and the content has a link to somewhere outside Jamk’s known network that opens a page that will ask you to sign in. If the username/password is mistakenly entered on that page, the ID and passwords will end up to the wrong hands. If the message itself does not contain any specific virus or known patterns, it is hard for automatic spam scanner to deal with and therefore some messages may end up to user recipient mailbox. Jamk’s mail system uses a so-called Safelink feature for centralized handling of such situations, but that is not 100% proof.
In some spam waves, fake blackmail letters have been sent to users. If you happen to open such a message, then fear not, the messages are pure spam with fake addresses.
If you have opened the link in suspicious message and entered your account details, please change your password immediately! After changing your password, be sure to update it on all the devices you are using to prevent your account from locking up after incorrect login attempts with your old password. Also, inform Jamk ICT services through contact form on the Helpdesk main page.