Technical Update Scam (6/21/2016)

The following scam attempts to trick its victims into going to a malicious website. Once there, the website will then attempt to steal user names and passwords from the victim. Notice the non-VCU sender’s email address, non-VCU link, and generic language; all of which are tell tale signs of a scam. Please delete this message if you received it.

____________________________________________

From: VCU IT Service <oneilma@whitman.edu>
Date: Mon, Jun 20, 2016 at 10:06 AM
Subject: Virginia Commonwealth University Technical Update
To: Recipients <earodriguez@sandiego.edu>

We are verifying contact information for all students and faculty/staff.

This is to secure your account and to prevent unauthorised access to your account.

Please take a moment now to verify by using the link “Verify Account” (Malicious link removed)

Thank you for your help in this important matter.

Virginia Commonwealth University

Leave a Comment

This email is making the rounds here at VCU with all links serving up a nasty bit of malware. The malware looks to be a variant of a crypto-malware which, if executed, will attempt to encrypt your files on your system and hold them for a ransom. Please delete the email if you receive it and do not forward it to any other parties.

 

From: Evil Eve<evil@gmail.com>
Date: Tue, Jun 14, 2016 at 2:49 PM
Subject: contract document
To:

Hi!
Please find bellow contract document,kindly peruse through and revert with your take on this,i would have the hard copy forwarded to your desk later in d day if you wish.
Contract document.pdf                                                         View | Download V
Kind regards.
Evil Eve
Comments Off on

Wire Transfer Scam (6/9/2016)

The following scam attempts to trick its victim into contacting the scammer back so the scammer can then steal money from the University or the victim. Although it appears the email is sent from a VCU address, the sender’s address is actually spoofed, and the scam is well crafted. when receiving emails from management personnel asking for wire transfers, it is always good to first check with the management personnel via an alternative communication mechanism first. If you received emails like this, please do not respond and check with your IT support to ensure the email is not a scam

___________________________________________

From: XXXXXX XXXXXXX<xxxxxxx@vcu.edu> (Spoofed email address sent from elsewhere)
Date: Thu, Jun 9, 2016 at 11:04 AM
Subject: Attn: Wire Transfer
To: xxxxxxx@vcu.edu
Cc: xxxxxxx@vcu.edu

Dear XXXXXXX,
Are you at your desk? i will need you to send an immediate wire transfer now, send a quick reply once you get this.

Regards,
XXXXXX XXXXXXX

Sent from my iPhone

Comments Off on Wire Transfer Scam (6/9/2016)

VCU Account update scam (5/27/16)

The following scam is intended to steal your credentials. Notice the generic language and non-VCU site, both are tell tale signs of a scam. Please delete this email if you received it.

__________________________________________

From: VCU Account Alert <xxxxxxvis@vcu.edu>
Date: May 27, 2016 at 8:03:13 AM EDT
To: undisclosed-recipients:;
Subject: VCU: Urgent Attention Needed

Dear User,

The safety and privacy of your information as it is stored on our electronic devices is our primary concern.

The VCU Information Security Office has published an update to protect your information from unauthorized access.

Note: The update is to prevent most computer theft and breaches of personal data.

Please Click Update/Verify (Malicious link removed) my account.

Thank you for helping us keep your VCU account safe.

Virginia Commonwealth University

Comments Off on VCU Account update scam (5/27/16)

Security Alert Scam (5/25/16)

The following scam attempts to trick its recipients into clicking on a malicious link, which will in turn infect the victim’s computer or steal the victim’s information. Notice the non-VCU sender’s email address, generic language, and sense of urgency; all of which are tell tale signed of a scam. Please delete if you received this scam.

______________________________________

From: Young, James <xxxxxxxxx@cau.edu>
Date: Wed, May 25, 2016 at 12:38 PM
Subject: [SUSPECTED SPAM]RE: Spam Alert!!!
To: “Young, James” <xxxxxxxxx@cau.edu>

 Your web mail has been blocked due to spammed mails and you can no longer send out mails,  to restore your spam filter so you could start sending and receiving mails. Click on Support (Malicious link removed) and log in to validate your Account today.
Thank you.
Security Alert Office.
Thanks for your anticipated co-operation,
Upgrade Team.
Comments Off on Security Alert Scam (5/25/16)

Payment Scam (5/18/16)

The following scam attempts to trick you into sending payments to a scammer. Notice the non-VCU email address and generic language, they are both tell tale signs of a scam. Delete this email if you received it.

______________________________________________

From: XXXXXX XXXX [mailto:XXXXXXXX@gmail.com]
Sent: Wednesday, May 18, 2016 12:52 PM
To:
Subject: Payment

Hello XXXX,

Do you have a moment?  I am tied up in a meeting and there is something i need you to take care of.

We have a pending invoice from our Vendor. I have asked them to email me a copy of the invoice and i will appreciate it if you can handle it before the close of banking transactions for today.

I cant take calls now so an email will be fine.

Sent from my iPhone .

Comments Off on Payment Scam (5/18/16)

Salary Update Scam (5/17/16)

The following scam attempts to trick its victim into clicking on a link, which in turn will attempt to steal the victim’s credentials. Notice that even though the send made it look like the email came from a valid VCU send, if you hover over the link, you would see that the site is a non-VCU link. We also should notice that there is a use of generic language. All of this combined makes a very phishy email. Please delete this message if you received it and you should not expect an 18.26% salary increase.

——- Original message ——–
From: VCU HR <employeeHRpayroll@vcu.edu>
Date: 05/11/2016 11:22 AM (GMT-05:00)
To: Victor Victim <victim@vcuhealth.org>
Subject: Your New Salary Update

Hello,

The documents below show the 2016 FY Payroll Assessment records indicating 18.26%
salary increase on your next paycheck.

Details below:

Access the documents here

Human Resources & Benefits

Virginia Commonwealth University

————————————————————————-
This message was secured by ZixCorp(R).

Comments Off on Salary Update Scam (5/17/16)

IT Service Desk Scam (5/11/16)

The following scam attempts to trick its victim into clicking on a link, which in turn will attempt to steal the victim’s credentials. Notice the non-VCU sender’s address, non-VCU link, and generic language; all of which are tell-tale signs of a scam. Please delete this message if you received it.

________________________________

From: DE REZENDE JR, SILVIO C [mailto:xxxxx@xx.xx.edu]
Sent: Wednesday, May 11, 2016 4:04 PM
Subject: [EXTERNAL] IT Service Desk

 

 

Help desk will undergo unscheduled system maintenance today in order to improve your account. The new Microsoft Outlook Web-access 2015 which will be installed on your web-mail account.

 

Your present account will be deactivated to create space for the new web-access 2015. In other to complete this process Click Here

 

to complete the survey. Your account will be inactive if this survey is not completed.

 

Thank you.

 

Web-mail Administrator.

Comments Off on IT Service Desk Scam (5/11/16)

New message scam (5/3/16)

The following scam attempts to trick its victim into clicking on a link, which will then either infect the victim’s computer or deliver scam ads. Notice the non-VCU sender’s address, generic language, and unknown link; all of which are tell-tale signs of a scam. Please delete this message if you received it.

______________________________________

From: Don Winter <cxxxxxxxx@comcast.net>
To:
Cc:
Date: Tue, 3 May 2016 12:19:07 +0000
Subject: Fw: new message

Hello!

 

You have a new message, please read http://xxxxxxxx.com.br/nearly.php (Malicious link redacted)

 

 

Don Winter

Comments Off on New message scam (5/3/16)

VCU Account Update (4/28/16)

The following scam attempts to steal your credentials. Notice the non-VCU sender’s address, errors in spelling and grammar, generic language, and non-VCU link; all of which are tell-tale signs of a scam. Please delete this email if you received it.

__________________________________________

From: Virginia Commonwealth University <abruzzop@newschool.edu>

To:

Date: Thu, Apr 28, 2016 at 7:38 AM

Dear Usher,

VCU is verifying contact information for all students and faculty/staff.

This information is to secure your information and to prevent unauthorised access to your account.

Please take a moment now to verify by using the link “Verify/Update Address (Malicious link removed)

The process is simple and can be completed in 5 minutes or less.

Thank you for your help in this important matter.

Virginia Commonwealth University

 

Comments Off on VCU Account Update (4/28/16)