Latest Email Scams

Below is a collection of real-life phishing examples that IT Security has acted upon and notes on what gives them away as email scams.

  Subscribe to the Email Scams RSS feed

  Follow us on Twitter for the latest Email Scams

From: "Eko, Hokpoma (Student)" <ekoha@aston.ac.uk>
To: Fitbit <messages-noreply@fitbit.com>
Subject: Account Update

Body:

Dear Customer/User,

You will not be able to send/receive more emails until you visit the below helpdesk portal link to restore/confirm your email access.

CLICK HERE <http://jrrmv.lv/ORE2TORE0T/>

From: Robert J. Zimmer <:redacted@uchicago.edu>
To: FacultySupport
Date: Friday, November 25, 2016 2:24 PM
Subject: Message from President Robert J. Zimmer

Body:

Hello facultysupport@law.uchicago.edu,

You have recieved a message from President Zimmer, Click here <http://prakashgupta.com/shibboleth2.uchicago.edu.html> to view the message.

I look forward to your feedback.

Robert J. Zimmer,

Office of the President.

President and Chancellor University of Chicago.

From: Blackboard-Admin <ass@wsp.com>
To: "humanities-computing@uchicago.edu" <humanities-computing@uchicago.edu>
Date: Wednesday, November 23, 2016 at 7:21 AM
Subject: 1 Important message

Body:

Dear humanities-computing@uchicago.edu , You have received a new message from your University Technology Admin posted to you through the Blackboard Learning System. Please find below attached information. Regards, MY UNIVERSITY. Admin Management

How you know this is a Phishing Scam:

The sender's email was obviously not from a UChicago domain, and the language in the email is wrong and should catch the attention of anyone who is familiar with our Blackboard systems and our IT groups on campus.

This email contained a downloadable malicious file that once clicked upon, it would open up a browsing session that would take you to a compromised site that asked for your credentials.

From: Na Li <na.li@einstein.yu.edu>
To: info@einstein.yu.edu
Date: November 18, 2016 at 8:32:34 PM GMT+1
Subject: All Staff/Password Update

Body:

Dear Staff

 
Your password will soon expire in 3 days. To keep your password active. Click Here <http://sde3dv.tripod.com/> to update
 
Sincerely,

ICT Service

From: Math Uchicago Webmail <web@math.uchicago.edu>
Date: 14 November 2016 09:52
Subject: Email Maintenance Notification

Body:

Dear Webmail User,

Please be advised that we will be performing a scheduled email maintenance
within the next 24hrs, during this maintenance you will be require to
revalidate your mailbox. Note: you are to follow the instructions on this
website { http://primeup.ic.cz/ } to confirm your mailbox details.

This maintenance is necessary to perform upgrades on our email. During
this maintenance we will be moving switches onto a higher capacity email.

Department of Mathematics,
The University of Chicago.

How you know this is a Phishing Scam:

The body of the message contains a web address that has a domain that is untrustworthy, so no further action should be taken.