Archive | Uncategorized RSS feed for this section

Deactivation scam (7/21/17)

The following scam attempts to trick its victims into clicking on a malicious link, which will subsequently steal the victim’s account information. Notice the non-VCU email address, generic language, and the masked foreign link; all of which are signs of a scam. Please delete this message if you received.

___________________________

From: Server [mailto:d.xxxxxx@best1tire.com]
Sent: Friday, July 21, 2017 1:31 PM
To:
Subject: [EXTERNAL] Your request is being processed

 

Hello xxxxxxx,

Notice! A Request to deactivate your  office email xxxxxxxx@vcuhealth.org was made and this request will be processed shortly before 24hrs.

If this was made accidentally, you are advised to cancel the request now? 

Cancel De-activation (Malicious link redacted)

Comments Off on Deactivation scam (7/21/17)

Invitation Phishing Scam (7/21/2017)

The following scam attempts to get a victim to click on a malicious PDF. Notice the generic language, grammatical errors,  and non-VCU sender’s email. All of these are tell-tale signs of a scam. Please delete this message if you received it and do not open the PDF.

 

From: Katherine Libby <klibby@vaoralhealth.org>
Date: Fri, Jul 21, 2017 at 11:44 AM
Subject: Shared Invitation
To:  Victim@vcu.edu

Hello,
I hope this email finds you well? Please share your thought concerning the attached form of our recent accomplishments and invitation. Please confirm receipt as well as attendance. We have to give the place a head count by Thursday, july 27th.
Scan0012017.pdf
Comments Off on Invitation Phishing Scam (7/21/2017)

Job scam (7/19/17)

The following scam attempts to trick its victims into providing personal information, and possibly into a financial scam. Please note that no legit company will ever offer an individual a job without any form of interview, and legit companies will not be hiring individuals and communicating via a Gmail account. If you see these types of emails, then please ignore and delete them.

______________________________________________

From: AUSENCO CONSTRUCTION LLC <joeyxxxxx1322@gmail.com>
Date: Tue, Jul 18, 2017 at 12:48 PM
Subject:
To:

 

Hello  XXXXX,
 
 
Thanks for taking your time to read back to us with your interest about the job,We are AUSENCO a global, diversified engineering,construction and project management company providing services in Minerals &Sustainability and Oil & Gas. We deliver new and better ways to add value to our clients`projects no matter how demanding and we deliver results in some of the world!s most challenging environments .. We have Representatives in the States  that are currently working for the company, these Representatives need materials for the completion of their works.They will email you whenever they need materials and also state type of materials and the quantity they need, It is now your duty to contact the supplier through email or text to make orders for the materials and also state the quantity that should be mailed out to the agent address through post.. Each Representative will only order for materials once a week depending on the task he or she is to have completed for that week, we are employing you just to reduce the workload for us on Our supplier and for the Representatives  and also to keep record of materials and payment receipt record that are being ordered weekly by our Representatives , Is an online pay job where supplier  will only contact you for materials during the weekdays and you can have your own part of the work completed at your spare time in school or at home
 
 
Salary/Wages payment:As sated in the first email.
 
We will always email or text you guidelines and instructions to follow in
getting your job done perfectly when you start working.If you still
care to proceed with the job, Get back to us with the information
listed below so we can process your application as to consider it
valid to commence working with us.
 
NAME:
AGE:
CONTACT ADDRESS:
CITY:
STATE:
ZIP CODE:
MOBILE:
PERSONAL EMAIL: 
Comments Off on Job scam (7/19/17)

Person of Interest (7/17/17)

The following scam attempts to get a victim to click on a malicious link. Notice the generic language, non-VCU sender’s email. and masked link; all of which are tell-tale signs of a scam. Please delete this message if you received it.

 

From: <Mark.fulert@businessdesc.info>
Date: Jul 17, 2017 10:00 AM
Subject: Person of Interest?
To: <XXXXXXXX@vcu.edu>
Cc:

I’m hunting down a person of interesting in your area. I only have some small details, but I’ve tracked him to your vicinity. If you could look at this photo and if you recognize this person please contact me back.

Click here (Malicious Link Redacted)

Comments Off on Person of Interest (7/17/17)

Helpdesk scam (7/6/17)

The following scam attempts to trick its victims into clicking on a malicious link, which steals the victims’ password. Notice the generic language, non-VCU sender’s email. and masked link; all of which are tell-tale signs of a scam. Please delete this message if you received it.

_____________________________________

From: George Rich <george.rich@scccd.edu>
Date: Thu, Jul 6, 2017 at 10:49 AM
Subject: HELPDESK​
To:

Pleas kindly follow the instructions attached to migrate your web-mail.

Thanks,
HELPDESK​.

Content of the attachment:

To All,

If you are a faculty or staff member who has not yet had their email migrated to the present Web-Mail

to create space for 2017 Outlook Web Access which has a

high visual definition and creates more space and easy access to e-mail, Please kindly update your

account by clicking on the link below and fill information for activation.

MIGRATE NOW (Link removed)

Follow the procedure and complete information by clicking SUBMIT.

A new space will be created within 48 hours.

Failure to update your Web-Mail we will deactivate such accounts as it will be considered inactive.

Thanks,

HELPDESK

Comments Off on Helpdesk scam (7/6/17)

HR Survey Scam (7/5/17)

The following scam attempts to trick its victims into clicking on a malicious link. Note the none-VCU sender’s email address and the generic language; both are signs of a scam. Please delete this message if you received it.

____________________________________________

From: <lxxxxx.F@comxxxxxxxx.us>
Date: Wed, Jul 5, 2017 at 10:42 AM
Subject: HR Survey
To:

Hi, I was wondering if you could help me with a small problem? Im due to complete the quarterly survery and noted that you hadn’t completed yours.

I promise it will only take a few seconds….

Human Resources Survey (Malicious link removed)

Comments Off on HR Survey Scam (7/5/17)

Part time job scam (7/3/17)

The following scam attempts to trick its victims into submitting their personal information to the scammer, so the scammer can then steal their identities. Please note that no legitimate employer will offer anyone a job through email and without an interview. Please delete this message if you received it.

_____________________________________________________

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Comments Off on Part time job scam (7/3/17)

W2 scam (7/3/17)

The following scam attempts to trick its victims into clicking on a malicious link. Notice the non-VCU sender’s address and masked link; both are tell-tale signs of a scam.

_________________________________

From: <F.Rayser@xxxxxxxlay.us>
Date: Mon, Jul 3, 2017 at 9:24 AM
Subject: W2 paperless
To:
Dear Account Owner,

Our records indicate that you are enrolled in the Virginia Commonwealth University paperless W2 Program. As a result,
you do not receive a paper W2 but instead receive e-mail notification that your online W2 (i.e. “paperless W2”) is
prepared and ready for viewing.

Your W2 is ready for viewing under Employee Self Service. Logon at the following link: Click here (malicious link removed)

If you have trouble logging in to Employee Self Service at the link above, please contact

Mail to
VCU Payroll Services
P. O. Box 842511
Richmond VA 23284-2511
or Deliver to
Human Resource Building
104 North Belvidere Street
or Fax to
(804) 828-3200

On completion of successful logon you can download and open the word document via this link now and enter your zipcode to see your 2017 open enrollment access info.
AAHUTI GUPTA
FINANCIAL ADMINISTRATOR
VCU HR DEPARTMENT

Comments Off on W2 scam (7/3/17)

Package scam (6/30/17)

The following scam attempts to trick its victims into clicking on a malicious link, which will then download malware to the victims’ computers. Notice the unfamiliar email address, generic language, and the masked link; all of which are tell tale signs of a scam. Please delete this message if you received it.

_____________________________________________

From: <Axxxxx@bxxxxxxxxesc.info>
Date: Fri, Jun 30, 2017 at 11:05 AM
Subject: package?
To:

Hi,

A package was delivered to us by mistake…..I think

I opened the box and noted that your email was on the invoice…coming up to summer I thought it might be personal or work related.

We are just down the road by the Mcdonalds. I can drop it by if you will be in this afternoon?

I took a picture of the invoice, I can’t make out the name but you can clearly see your email address

Click here (Malicious link removed)

Comments Off on Package scam (6/30/17)

Fraudulent Charge Scam (6/27/17)

The following scam attempts to trick its victims into clicking on a link, which will subsequently steal their credentials. Notice the urgent message, generic language, and the Weebly website; all of these are signs of a scam. Please delete this message if you received it.

______________________________________

From: XXXX XXXXX
Sent: Tuesday, June 27, 2017 8:54 PM
Subject: Message ID 6925269

 

There was a fraudulent charge attempt on your Debit card .

Your Debit card  Services are currently restricted.

For your own security, you are required to verify your identity before you proceed to review your recent card activity.

Restricted accounts are limited in money transfers or withdrawal funds.

To view full notification visit: http://xxxxxxxxxx.weebly.com/ (malicious site redacted)

 

© 2017 Federal Card Union

Comments Off on Fraudulent Charge Scam (6/27/17)