Use cases
Software Products E-commerce MSPs Schools Development & Marketing DevOps Agencies Help Desk
Company
Internet Status Blog Pricing Log in Get started free

Outage in Cardiff University

Email: Malicious eml file attachment

Resolved Minor
June 10, 2025 - Started 10 months ago - Lasted 13 days
Official incident page

Incident Report

We have identified a series of emails being sent to members of the University which contain a malicious eml file attached. The subject of the email and the name of the attached file can vary, but the attached file ends in .eml If the malicious eml file is opened it can affect your email and also trigger a mutated version of the email to be sent on to your contacts. Steps have been taken to mitigate and intercept delivery of these emails, but if anyone receives an unexpected email particularly with an eml file attached they should not open the attachment and should report the email using the Report button. If anyone opened the eml file attachment they should contact the IT Service Desk by telephone without delay. More information on scam messages, how to spot them, and what action to take, is available by searching on the Intranet for "scam messages"

Trusted by 1,000+ teams

The Status Page Aggregator with Early Outage Detection

Stop finding out about outages from your users. Monitor 6,320+ cloud services and get alerted the second something breaks.

Start Free Trial
  • No credit card
  • 14-day trial
  • 2-minute setup
IsDown status aggregator dashboard
Latest Updates ( sorted recent to last )
RESOLVED 10 months ago - at 06/23/2025 09:05AM

Various different forms of scam email will continue to be received by members of the University, including ones with malicious eml files attached.
You are encouraged to familiarise yourself with good practise on scrutinising emails to make an informed judgement on the trustworthiness of incoming emails. For more information, search the Intranet for scam emails

MONITORING 10 months ago - at 06/10/2025 09:33AM

We have identified a series of emails being sent to members of the University which contain a malicious eml file attached.
The subject of the email and the name of the attached file can vary, but the attached file ends in .eml
If the malicious eml file is opened it can affect your email and also trigger a mutated version of the email to be sent on to your contacts.

Steps have been taken to mitigate and intercept delivery of these emails, but if anyone receives an unexpected email particularly with an eml file attached they should not open the attachment and should report the email using the Report button.

If anyone opened the eml file attachment they should contact the IT Service Desk by telephone without delay.

More information on scam messages, how to spot them, and what action to take, is available by searching on the Intranet for "scam messages"

Latest Cardiff University outages

Service Desk Ticketing System (ASM): Performance and Login issues - 9 days ago
myPrint - Payment system fixed - 15 days ago
Published Applications and Desktops (Horizon) - 29 days ago
Published Applications and Desktops (Horizon) - Access issues - about 1 month ago
ORCA - Research output download statistics - about 1 month ago

The Status Page Aggregator with Early Outage Detection

With IsDown, you can monitor all your critical services' official status pages from one centralized dashboard and receive instant alerts the moment an outage is detected. Say goodbye to constantly checking multiple sites for updates and stay ahead of outages with IsDown.

Start free trial

No credit card required · Cancel anytime · 6320 services available

Integrations with Slack Microsoft Teams Google Chat Datadog PagerDuty Zapier Discord Webhook