Library account access scam (10/30/14)

Note the following scam attempting to steal your VCU eID credentials. Note the non-VCU sender’s address, the non-VCU link, masked under the VCU link (login.vcu.edu.cavc.tk rather than login.vcu.edu), both are tell-tale signs of a scam. Please delete this email if you received it. For more information, please contact helpIT@vcu.edu or 828-2227.

_________________________________________________________

To:
From: Access Services Manager <univlibraryservices@gmail.com>
Date: 10/30/2014 11:54AM
Subject: Library Account Access

Dear User,

Your access to your library account is expiring soon and it won’t be accessible for you. You must reactivate your account in order to continue to have access to this service. For this purpose, click the web address below or copy and paste it into your web browser. After logging in, your access is reactivated and you will be redirected to your library account.

https://login.vcu.edu/cas/login_service=https3a2f2fvcu-alma-primo.hosted.exlibrisgroup.com2fcas2fpds_main3ffunc3dload-login26calling_system3dprimo26institute3d01VCU_INST26PDS_HANDLE3d26url3dhttp3a2f2f/search.library.vcu.edu3a802fprimo_library2flibweb2faction2flogin.do3ftargetURL3dhttp3a2f2fsearch.library.vcu.edu2fprimo_library2flibweb2faction2fdlBasketGet.do3fdscnt3d026dstmp3d141468311918226vid3dVCU26filler3d/ (Link redacted, actual link goes to login.vcu.edu.cavc.tk)

If you are not able to login, please contact Library Services Manager at kbonis@vcu.edu.

Sincerely,

Kerry Bonis
Library Services Manager
Access & Delivery Services
Main Library
Virginia Commonwealth University
(804) 827-3968
kbonis@vcu.edu 
NOTE: The information contained in this message may be privileged and confidential and protected from disclosure. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error, please notify us immediately by replying to the message and deleting it from your computer.

Leave a Comment

Google Incorporation Winner (10/27/2014)

Below is a semi-convincing phishing email sent out by a supposed “infosweeps” email from “Google.” The email will have an attachment asking for things such as bank account information and user names and passwords so that they can transfer your “winnings” directly to your account. This is a very obviously scam, and should be deleted immediately if received.

 

From:        Google <infosweeps@gmail.com> 
To:        user@vcu.edu
Date:        10/27/2014 11:01 AM 
Subject:        Google Incorporation™ 





Dear Google  User,

Congratulations, you have being selected as a winner in the 2014 Google E-mail Electronic Online Sweepstakes. Thanks for your active use of Google online services.  Kindly, find attached email (PDF File) with further instructions.

Sincerely,
The Google E-mail Electronic Online Sweepstakes Team 

G
ooglInc(UK)

Leave a Comment

Targeted child-predator phishing scam (10/21/2014)

The following scam is specifically crafted to target a victim or a group of victims. Note the unknown link and generic langauge, both of which are tell-tale signs of a scam. If you have received this email, please delete it. For more information on scams, please contact the VCU helpIT center at helpIT@vcu.edu or 828-2227.

__________________________________________________

From: “COMMUNITY ALERT MSG” <COMMUNITYALERTMSG@cbc-xxxxxxxxxxxxxxx.link>
To: 
 
Date: 
10/21/2014 12:51 PM
Subject: 
ALERT: A child-predator just moved into your neighborhood. Alert #123107756


- - - - - - - - - - -AUTOMATED COMMUNITY ALERT MESSAGE- - - - - - - - - - -

DT. 10.21.14.
======================================================
HR-7 LOCAL COMMUNITY ALERT MESSAGING SYSTEMS.

COMMUNITY ALERT No.1231077-06.
======================================================

xxxxxxx@vcu.edu,

THIS MESSAGE HAS BEEN AUTOMATICALLY GENERATED. This email has reached you today to inform you that as of just recently a
child-predator relocated to your neighborhood (based on your IP address/zip code). Sex-offender information  is publically
available as a public safety service.

Visit here right now to view the specific details about this : http://new.cbc-xxxxxxxxxxxxxxxxxx.link (link redacted)

Sincerely,
HR-7 LOCAL COMMUNITY ALERT MESSAGING SYSTEMS

======================================================
HR-7 LOCAL COMMUNITY ALERT MESSAGING SYSTEMS.
======================================================

- - - - - - - - - - -AUTOMATED COMMUNITY ALERT MESSAGE- - - - - - - - - - -

Comments Off

The following email is making the rounds on the VCU Health System campus and this is being posted as a precaution to all VCU Monroe Park and MCV campus users. This email is convincing, but not legitimate so please make sure that you do not click on the link provided by the message. It is looking to steal credentials so that they can be used for malicious activities.

 

From: “VCUHS” <portal@mcvh-vcu.edu>
Date:
 October 19, 2014 at 4:43:08 PM EDT
To:
 “undisclosed-recipients:” <redacted
>; 
Subject:
 Account Update Needed

Dear Portal User,

Due to high numbers of inactive portal accounts on the server, all users are advised to sign in to their portal account within 24 hrs of receiving this notice, using the link below, to confirm their portal account activity.

Use this link to login and confirm your portal account activity.

Failure to update might process your portal account as inactive. Please kindly comply.

Thanks,
UVCUHS 

Comments Off

Dear Account User Scam (10/2/2014)

The following scam attempts to steal your login credentials, notice the general sense of urgency, language using scare tactics and non-VCU link, all of which are tell tale signs of a phishing scam. Please discard and delete this scam if you received it. For more information on Phishing and email scams, please contact the VCU helpIT center at 828-2227 or helpIT@vcu.edu

 

Subject:
Dear Account User
Date:
Thu, 2 Oct 2014 11:07:05 -0500
From:
Last Name, First Name <Redacted@Redacted.com>




Your account will Expire(s) today. It is very important you reset your information to avoid deactivation. Please Click Here to Upgrade. This Upgrade is to migrate you from Microsoft Outlook 2006 to Outlook Web Apps which is the new creative outlook for your account. Inability to complete this procedure will terminate your account.

Comments Off

IT HELPDESK NOTIFICATION Scam (10/1/14)

The following scam attempts to steal your login credentials, notice the non-VCU sender’s address, generic language, and non-VCU link, all of which are tell tale signs of a phishing scam. Please discard and delete this scam if you received it. For more information on Phishing and email scams, please contact the VCU helpIT center at 828-2227 or helpIT@vcu.edu

_______________________________________________________

From:        Anthony Lamb <Anthony.Lamb@sta.uwi.edu> 
To:         
Date:        10/01/2014 09:47 AM 
Subject:        RE: IT HELP DESK NOTIFICATION 








Sent: Wednesday, October 01, 2014 9:27 AM
Subject:
 IT HELP DESK NOTIFICATION 


Dear user, 

We detect unauthorized Login Attempts into your webmail  from other IP Location. Please verify your identity to update your default IP Address for the safety and integrity of the webmail Community.click on Verify now 

Verify now (malicious link redacted)

This is an automated message, please do not reply to this email. If you need additional help, visit our school web page. 

Thanks, 
Apple Support

Comments Off

Important Notice Scam (9/19/14)

The following scam attempts to steal its victim’s login information by tricking the victim into clicking on a malicious link. Notice the non-VCU sender’s address, non-VCU link, generic language; all of which are tell-tale signs of an email scam. If you have received this scam, please ignore and delete it. For more information on email and phishing scams, please contact the VCU helpIT center at 828-2227 or helpIT@vcu.edu

__________________________________________________

From: Admin VCU <hgeltzer@stern.nyu.edu>
Date: Mon, Jun 3, 2013 at 12:48 AM
Subject: URGENT: IMPORTANT NOTICE
To: 


Dear,

The management of Virginia Commonwealth University have mandated that all staffs and faculties should register for SpamKiller to help control spam emails sent to our Mail Server.

Register Now for FREE! by Downloading the attached SpamKiller Page and login with your Virginia Commonwealth University e-mail details.

This is mandatory to help improve our email services, do not ignore this message.

Thank you for your understanding!

Best Regards,

Management of Virginia Commonwealth University

Comments Off

Email update scam (9/18/14)

The following scam attempts to steal its victim’s login credentials by tricking the victim to click on a malicious link. Note the generic language, poor grammar, and non-VCU link, all of which are tell-tale signs of a phishing scam. If you have received this message, please delete it. For more information on phishing and email scams, please contact the VCU helpIT center at 828-2227 or helpIT@vcu.edu
________________________________________

From: Virginia Commonwealth University <xxxxxx@vcu.edu>
Date: Thu, Sep 18, 2014 at 7:54 PM
Subject: Email Update
To: 

Dear User,

Your e-mail ID needs to be updated with F-Secure R-HTK4S
new version anti-spam/anti-virus/anti-spyware 2014.CLICK HERE (Link redacted, linked to non-VCU site)  to update

Comments Off

VCU Alert scam (9/9/14)

The following scam attempts to steal your login credentials, notice the suspicious subject, generic language, and non-VCU site; all of which are tell tale signs of a scam. Please delete this email if you received it. For more information, please contact the VCU helpIT center at 828-2227 or helpIT@vcu.edu

________________________________________________

From: Jasmine Pease <pexxxx@mymail.vcu.edu>
Date: September 9, 2014 at 10:29:54 AM EDT
To: undisclosed-recipients:;
Subject: VCU Alert

Click or copy this link to validate your email:  http://xxxxxxxx.altervista.org/index.php  in other to avoid closure of your account.
Comments Off

Urgent Message Scam (9/8/14)

The following scam attempts to steal a victim’s credentials. Note the spoofed VCU admin email address, non-VCU link, and generic language, all of which are tell-tale signs of a scam. Please delete this scam if you received it. Contact helpIT@vcu.edu or 828-2227 for questions or concerns.

_________________________________________________________________________

From: VCU Admin <admin@vcu.edu>
Date: Mon, Sep 8, 2014 at 9:26 AM
Subject: Urgent Message
To: xxxxxxxx@vcu.edu




Dear Candidate,
We are suspending all inactive VCU email accounts to create space for new users.
Click Here (Malicious link redacted) and login your email (xxxxxxx@vcu.edu) to keep your account active.
VCU Admin.

Comments Off