Emergency scam (7/25/14)

The following scam attempts to trick its victims into clicking on a malicious link, which then attempts to steal personal information from the victim. Notice the sense of urgency, non-VCU link, both are tell-tale signs of a scam. If you have received this email, please delete it. For more information on scam, please contact VCU helpIT center at 828-2227 or helpIT@vcu.edu

____________________________________________________

From: Naxxxxxx Sxxxx <nsxxxxx@mcvh-vcu.edu>
Date: Fri, Jul 25, 2014 at 7:07 AM
Subject: Emergency
To: 


This message was sent securely using ZixCorp.


Click or copy this link to validate your email:  http://valixxxxxxxx.webnode.com/  in other to avoid closure of your account.



————————————————————————- 
This message was secured by ZixCorp(R).

Leave a Comment

System Notification Scam (7/23/14)

The following scam attempts to trick its victims into clicking on a malicious link, which will subsequently attempt to steal the victim’s login credentials. Notice the non-VCU sender’s email, the sense of urgency, and the non-VCU link, all of which are tell-tale signs of a scam. Please delete the email if you received it. For more information on email and phishing scams, please contact the VCU helpIT center at 828-2227 or helpIT@vcu.edu

_______________________________________________________

To: library@oit.com
From: School Library <library@oit.com>
Date: 07/23/2014 11:04AM
Subject: Account Notice

  System Notification

 

Good Morning,

A suspicious activity has been detected on this account. For your safety, we have suspended your online access.

Please re-activate your account by clicking on the “ Re-activate My Account” button below:

Re-activate My Account (Malicious link redacted)

We apologize for any inconveniences caused as your security is important to us.

Thank you,

Library Resources.

Leave a Comment

Help Desk Alert (7/23/2014)

Another simple phishing account trying to use scare tactics by threatening the user with an account closure. Note that the “From” field has a non-vcu address for the sender. The email also links to a non-US website, which you can tell by the “.no” portion of the url. Finally, VCU will never ask you to validate accounts or personal information via email in such a manner.

From: Virginia Commonwealth University [mailto:redacted@binghamton.edu]
Sent: Tuesday, July 22, 2014 3:02 PM
To: undisclosed-recipients:
Subject: ITS Help Desk Alert Verification!!





Dear VCU Web-mail User,

An Attempt has been made to login your Mail Account from another computer. For the security of your web-mail account, Kindly

CLICK HERE <http://www.phishingsite.no/webmailupdate/>

Failure to verify your account may result termination of your mail account.

Thank you.
The Virginia Commonwealth University Web-mail Team.

Leave a Comment

Emergency (7/23/2014)

This scam was sent out earlier today with the originating sender posing as a vcu user. Remember that VCU will NEVER send you an email to “validate” an account or username and password with a threat to close.

From: Redacted Name/FS/VCU <user@vcu.edu>
Date: Wed, Jul 23, 2014 at 5:54 AM
Subject: Emergency
To: 


Click or copy this link to validate your email:  http://phishingsite.xxxxxxx.com/  in other to avoid closure of your account.

Leave a Comment

Helpdesk Alert scam (7/22/14)

The following scam attempts to trick its victims into clicking on a malicious link, which subsequently will attempt to steal the victims’ login information. Notice the non-VCU sender’s address, sense of urgency, and the non-VCU link; all of which are tell-tale signs of a scam. If you have received this scam, then please delete it. For more information on email and phishing scams, please contact the VCU helpIT center at 828-2227 or helpIT@vcu.edu

_________________________________________________

From: Virginia Commonwealth University <amaldon8@binghamton.edu> - Non-VCU sender’s address
To: 

Date: 07/22/2014 03:03 PM

Subject: ITS Help Desk Alert Verification!!

Dear VCU Web-mail User,

An Attempt has been made to login your Mail Account from another computer. For the security of your web-mail account, Kindly


CLICK HERE (Link redacted, going to non-VCU site)

Failure to verify your account may result termination of your mail account.


Thank you.
The
 Virginia Commonwealth University Web-mail Team.

 

Leave a Comment

Atomic Learning Notification System (7/21/14)

The following e-mail has been reported to be accidentally sent out to many VCU employees.  This is not a phishing e-mail, however, VCU users should dis-regard this message.  VCU users shall login to Atomic Learning via the VCU portal located at this address:  http://go.vcu.edu/atomiclearning

Here is the reported message:

From: Atomic Learning Notification System <redacted>

Date: Sat, Jul 19, 2014 at 6:03 AM

Subject: [AL Alert] New assessment assignment
To: <redacted>


You have one or more new assessment assignments.

To view them, log in at

   <Link redacted>

and expand the “My Training” module.

If you receive an error when clicking on the link,
copy the link and paste it into the address bar
of your browser.

NOTE: If your organization requires you to log in via
a link from their site, you will need to log in using
that link rather than the link provided in this email.
After you are logged in, expand the “My Training”
module.

You can opt out of receiving these notifications by
changing the Receive Updates option in “My Profile and
Settings”.  If that option is not available to you,
your system administrator may be requiring that all
users receive these e-mail alerts.

This is a system-generated message.  Please do not
reply to this e-mail address.



——————-

Leave a Comment

Email Quota Scam (7/12/2014)

The following email was sent out this weekend and attempted to use a validation request to gain access to personal information. This email was not sent out by VCU and if you received it and provided information, you should contact the HelpIT center immediately.
From: VCU News <redacted@gmail.com>
Date: Sat, Jul 12, 2014 at 4:12 PM
Subject: Notification!
To:

You have exceeded your VCU mail quota, Click on this link to revalidate your mail account.

 

http://my-xxx-xxx-xxxxxxxxxxx-xxx-xxxxx.webs.com/*

 

*Redacted address to prevent community from clicking on it.

 

Comments Off

“Subject: Hi” Phishing Scam (7/11/2014)

The following email is circulating with an attached pdf file which has been removed to keep the community from clicking on it. If opened, the pdf will redirect the recipient to a site asking for personal information including email, user id, and password. This was a very basic level phishing scam that can be caught by the recipient if they simply use the “hover trick” in which you hover your mouse over the file and look in the bottom corner of your browser. The browser will display the link that the file directs to. Keep in mind, this trick is not 100% accurate as a more advanced scammer can make the link look legitimate, but in this case, sophisticated techniques were not used.

 

From: Redacted Name <redacted@vcu.edu>
Date: July 11, 2014 at 9:10:30 AM EDT
To: undisclosed-recipients:;
Subject: Hi

 

 

Hello

how are you doing today?  I uploaded the attached document for you .Kindly view, it’s urgent.

 

 

Kind Regards

Comments Off

Free money scam (7/10/14)

The following scam attempts to trick its victims into opening an attachment and reply with the personal information of the victim, which will then allow the scammers to steal the identities of the victim. Note the non-VCU sender’s address,  “too good to be true” offer, and the attachment asking for personal information; all of which are tell tale signs of a scam. If you received this scam, please delete it. For any other questions about email and phishing scams, please contact the VCU helpIT center a 828-2227 or helpIT@vcu.edu

_______________________________________________

To: Recipients <uplucsar-nadrs@nic.in>
From: Mrs Julian Kent
Sent by: uplucsar-nadrs@nic.in
Date: 07/09/2014 09:38PM
Subject: Your email ID was selected-NOTICE

(See attached file: SA SHELL PETROLEUM INTERNATIONAL.docx)

Your email ID was selected, You are to view the attached MS WORD FILE for more information.
Attachments area
Preview attachment SA SHELL PETROLEUM INTERNATIONAL.docx

SA SHELL PETROLEUM INTERNATIONAL.docx
Comments Off

“Subject: File” Phishing Scam (7/9/2014)

The following email is circulating with an attached pdf file which has been removed to keep the community from clicking on it. If opened, the pdf will redirect the recipient to a site asking for personal information including email, user id, and password. This was a very basic level phishing scam that can be caught by the recipient if they simply use the “hover trick” in which you hover your mouse over the file and look in the bottom corner of your browser. The browser will display the link that the file directs to. Keep in mind, this trick is not 100% accurate as a more advanced scammer can make the link look legitimate, but in this case, sophisticated techniques were not used.

From: User Name <username@webaddress.com>
Date: Wed, Jul 9, 2014 at 12:50 PM
Subject: File
To: User Name

Hello


how are you doing today?  I uploaded the attached document for you .Kindly view, it’s urgent.

 

 

Kind Regards

Comments Off