Mailbox full scam (3/1/2015)

Below is a basic phishing attempt that ask you to click a link. Please notice that the sending is not even from VCU. Clicking the link brings you to a site asking you to fill out your personal information. Please make sure to delete the email and do not respond to the sender in any way.


From:        “Robinson, Julia” <>
Cc:        “inf@gov.nd” <inf@gov.nd>
Date:        03/01/2015 04:31 AM

Your Mailbox Is Full “VALIDATE” Your Inbox To Receive New Massage.

HelpDesk Center

Leave a Comment

Malicious Attachment Scam (2/27/2015)

The following email contained an attachment that is executable. The attachment is a malicious software designed to compromise the victim’s computer. If you received this email, please delete it. For more info, please contact or 828-2227.


Subject: RA 143897


Leave a Comment

Terror Alert Scam Again (2/27/2015)

This is the same scam that tried to trick people into providing their passwords over email. Delete if you received it.


From: VCU NEWS <>
Date: Friday, February 27, 2015
Subject: VCU ***IT Alert

This is to notify all Students,Staff and Faculty,that the Virginia
Commonwealth University received a terror threat via email concerning
the University.The webmail information technology(IT) Help Center
policy STRICTLY  requires each mail account holder to clear his/her
self from sending out the terror threats in the University with the
University email system and for an active affiliation with the
technology cyber services.

The network satellite system does not show an active 2015 affiliation
for you at this time. You are required to provide the information
below in reply to this email for activation and proper verification
and scrutiny:



Your mail account is scheduled to be deactivated in 24hours of “Non
Compliance” After that time, you will not be able to log into your
mail box. Email messages sent to your mailbox will be rejected.

Leave a Comment

Yellow Pages Invoice Scam (2/23/15)

The following scam attempts to trick its victims into sending money to a scammer who is pretending to be a legit company. Notice the foreign address, misaligned text, both of which are tell tale signs of a scam. Most of all, if you did not do any business with the company, then chances are these invoices are scams.



Comments Off

Help Desk Scam (2/22/15)

The following scam attempts to trick its victim into clicking on a malicious link, which will subsequently steal her login credentials. Note the non-VCU email address, non VCU link and generic language; all of which are tell tale signs of a scam. Please delete the message if you received it.


From: Sanders, Benita <>
Date: Sat, Feb 21, 2015 at 2:35 PM
Subject: RE: Help Desk
To: “Sanders, Benita” <>

Our IT-Help-Desk have noticed some unusual activities on your account, Please Click on the Mailbox validation page to Verify​​ your account. Failure to do this might Have Your Mailbox Shut down

Thank you​.

Comments Off

Can I Trust You? Scam (2/20/15)

This is a very basic phishing scam similar to the Nigerian Prince scams that we are all familiar with. The sender wants to act as though you will be part of a business transaction, when in reality, will ask you for some personal information including, but not limited to, bank accounts and social security numbers. Please ignore and delete the email if you receive it.


From:        Joseph Wong <>
Date:        02/20/2015 10:16 AM
Subject:        Can i trust you?

My name is Joseph Wong, i live in Hong Kong. I have a nice business proposal for you, with huge sum of 22.5 Million US Dollars. reply back for more details on this business.

Comments Off

NYC Parking Ticket scam (2/18/15)

The following scam attempts to trick its victims into opening an attached malicious file, which in turn may infect the victims computer with malware or viruses. Please ignore and delete.


Thank you for your payment

This is confirmation that your payment on Wed, 18 Feb 2015 16:38:00 +0000 for
USD 7900.00 has been
accepted by the NYC Department of Finance. Your Credit Card statement
will show
an entry from Parking Fines NYCGOV. Please read the attachment and save
it in case
you have any questions about the items that you have paid.

Name: sol chaimovits

Payment Date: Wed, 18 Feb 2015 16:38:00 +0000

Receipt Number: WWW00207991

Payment Amount: USD 7900.00

Credit Card: Visa

Account ending in: 9198

Your payment was for the following items:

Agency                             Item
------------------------------     --------------------
PVO                                1160025162
USD 3000.00
PVO                                7247746580
USD 4500.00
DOF                                Convenience Fee
USD 400.00

Thank you for using New York City's website to process your payment.
Please do not reply to this email.  You may contact us by visiting if you have questions
or need further assistance.

Comments Off

Webmaster scam (2/18/15)

This scam attempts to trick its victims into clicking on a link. Notice the generic language, non-VCU site, all of which are tell-tale signs of a scam. Delete this email if you received it and contact or 828-2227 for more questions.


To: undisclosed-recipients:
From: Rudolf H Ross <> (Compromised account)
Date: 02/17/2015 03:04PM
Subject: Webmaster Emergency Alert!

Confirm Your Email Today In Other To Avoid Closure Of Your Account:
Click Here
NOTE: The information contained in this message may be privileged and confidential and protected from disclosure. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error, please notify us immediately by replying to the message and deleting it from your computer.

Comments Off

Tax Exemption Notification Scam (2/16/15)

This is a basic phishing email from someone posing as a valid employee of the IRS. They are using a realistic email address to accept responses, however, IRS employees do not have a .US in their email address. Note that the sender is requesting personal information including permanent and temporary home addresses, passport copies, and the information from a completed tax form.
From:        “Angela M. Barrett” <>
To:        Recipients <>,
Date:        02/14/2015 08:42 AM
Subject:        Tax Exemption Notification



Our records indicate that you are a Non-resident, and that you are exempted from the United States of America Tax reporting and withholdings on interest paid to you on your account and other financial benefits. To protect your exemption from tax on your account and other financial benefits, you need to re-certify your exempt status to enable us confirm your records with us.

Therefore, you are required to authenticate the following by completing form W-8BEN attached and return same to us as soon as possible with a valid copy of government issued Identification (eg, International Passport)  through fax number or  the email at the bottom of the form.

When completing form W-8BEN, please follow the steps below;

1. We need you to provide your permanent address and US address if any. if different from the current mailing address. You must indicate as a Non-US resident, the country you are residing, to support your non-resident status and if your bank or other financial institutions you are dealing with has a US address for mailing purposes.

2. Please complete 1 through 11 and have all account holder(s) (if more than one account holder) sign and date the form separately and send to us through the fax number or email at the bottom of the W-8BEN form. Note that if your W-8BEN FORM together with a copy of your International passport is not received from you after 7days from the day of the receipt of this letter you will lose your Non-resident status and be listed as undocumented,resulting in the standard rate of 30% being applied on any dividend or interest income received on your investments/accounts.*

List of required documents:

1.A copy of filled W-8BEN FORM.
2.A photocopy of the photo page of your international passport.

*If you should receive multiple notifications,it means previous filled out forms was not properly filled and as such,we need you to refill needed columns and re-fax or email to us using the details at the bottom of W-8BEN.

We appreciate your co-operation in helping us protect your exempt status and also confirm our records.


Sincerely Yours,
Angela M. Barrett.

IRS Public Relations




**Please do not reply to this email. This mailbox is not monitored and you will not receive a response.




Comments Off

Mail Quota Scam (2/12/15)

The following scam attempts to trick its victims into clicking on a malicious link, which will subsequently steal their credentials. Note the non-VCU sender’s email, non-VCU link, and generic language, all of which are tell-tale signs of a scam. Please delete if you received the message. Call helpIT at 828-2227 or for more information


From: Virginia Administrator <>
Date: Wed, Feb 4, 2015 at 6:20 PM
Subject: Mail Quota.

138MB 131MB

Your  Virginia Internet  webmail  access mailbox is full and needed to be update now by clinking this URL      and  Increase your Mail Quota. Failure to do so immediately will lead to SUSPENSION OF YOUR Email ACCOUNT.

IT Services Help Desk

Comments Off