Wire transfer phishing attack reported at UD

We’ve had multiple reports about a spear phishing attack that asks UD staff to process a wire transfer for a specific amount. The recipient of this message forwarded it to her supervisor to see if it was legitimate or not, and for him to process if it were a...

Paypal #phishing kit

Proofpoint recently dissected a tricky PayPal phish. What’s interesting about this phish is that it was made by a phishing kit that allows scammers to steal lots of information easily—and scammers don’t have to be tech-savvy to use a kit to steal your personal...

“New login from Manassas” phishing scam

This phishing scam is, at first glance, almost convincing. But if you think for just 20 seconds, you’ll recognize it for the phishing scam it is. This scam is spear phishing aimed at UD users. Check out the low-res copy of a UD logo. If you hover your mouse over...

Did you spot May’s Secure UD test phish?

If you’re reading this, you may have spotted May’s test phishing email! This email was sent as part of the Secure UD “Take a BITE out of phish!” campaign, a University initiative to raise our community’s awareness about phishing attacks, their consequences, and how to...

#SMiShing: Your smartphone isn’t safe from #phishing

SMiShing is a type of phishing that uses text messages instead of emails. Though the delivery method is different, scammers often use the same social engineering techniques to trick victims–and they’re after the same basic prizes of your personal and...

What to do about WannaCry

Computers in over a hundred countries have been affected by the ransomware WannaCry; one of the most notable victims was the National Health Service (NHS) in the United Kingdom. No UD systems were affected by WannaCry, but we would like to share some security tips in...

Phony Google Docs invites are phishing!

We’re currently seeing reports of phishy emails that imitate Google Docs invitations. The “Open in Docs” button is actually a link that redirects to a malicious URL–not something you want to click! Here’s one of the fake invites: Note the...

Did you spot April’s Secure UD test phish?

If you’re reading this, you may have spotted April’s test phishing email! This email was sent as part of the Secure UD “Take a BITE out of phish!” campaign, a University initiative to raise our community’s awareness about phishing...

All about phishing

Many of the posts on this blog warn you about specific phishing scams. But what is phishing? And how can you recognize and protect yourself from it? What is phishing? Phishing is one of the most common online scams today. In a phishing attack, the hacker or...

Spear phishing strikes again

Earlier this year, we wrote about W-2 spearphishing in which scammers impersonated a high-ranking member of an organization and asked for employee W-2s in an attempt to steal their personal information. Today, a member of the University community forwarded a similar...