Latest Email Scams

Below is a collection of real-life phishing examples that IT Security has acted upon and notes on what gives them away as email scams.

  Subscribe to the Email Scams RSS feed

  Follow us on Twitter for the latest Email Scams

Date: November 17, 2015 9:36:55 AM CST
Subject: ITS Project Services Library


Dear User,

Your library account has expired, therefore you must reactivate it immediately or it will be closed automatically. If you intend to use this service in the future, you must take action at once! To reactivate your account, simply visit the following page and login with your library account.

Login Page:

redirects to:


uchicago University


ITS Project Services

Phone: 2-5700 (773-702-5700)



Date: Tuesday, November 17, 2015 at 6:44 AM
Subject: RE: IT Dept




Final notice from Help Desk, we're updating all staff and student mailboxes to new Outlook Web App/Owa Page. kindly click on Faculty/Help Desk and follow as instructed in this message.


Thank you

IT Dept.


From: UCHI HR <>
Date: November 12, 2015 at 3:30:41 PM CST
Subject: About your November 2015 Paycheck



After assessing the 2015 salary structure under the UCHI terms of employment, it was discovered that you are due for a salary raise effective November 2015 Paycheck.

All documents are enclosed hereunder

Access them here


Human Resources

The University of Chicago

How you know this is a Phishing Scam:

The website address does not point to a UChicago domain and in general you should not expect to receive such information in an email from the University's Human Resources team.

From: "Carpenter, Robert" <>
To: "Carpenter, Robert" &lt;;
Date: November 6, 2015
Subject: RE: Attn


Dear Email User :

Attention Due to our recent routine IP & ISP sever checkup, We noticed that your account has been violated and accessed from a different location by a third party and has been use for suspicious activities.You are to immediately secure your account to present future third party access CLICK HERE Note: You are to fill correctly the information required to secure your account. If the provided information those not match what is not our database your account will be temporarily blocked.


System Administrator
Staff and Faculty Mailbox Portal.
Copyright© 2015 ITS Service Desk

From: Mail System
To: User <>
Date: Wednesday, November 4, 2015 6:17 PM
Subject: Suspicious Activity Alert


Good Afternoon, 

Due to suspicious activities detected on this account, we have temporarily blocked your account access. 

Click here to unblock your account 

Best Regards, 

Mail System.