Security Alerts & Warnings

This page lists current warnings regarding suspicious email messages and other cybersecurity hazards at the University of Virginia.  For guidance on how to secure yourself against these hazards, be sure to visit our tip of the month.

Regarding Suspicious Email Alerts

Messages similar to the suspicious emails listed below may be related to phishing scams, schemes to commit identity theft, or other attempts to compromise users’ machines or personal information.

  • If you receive an email similar to any of the suspicious emails on this page, DO NOT respond—delete it immediately!
  • Do not click any links in the email, and do not “unsubscribe” or acknowledge the email in any way.
  • If you receive an email that appears “phishy” and are unsure if it’s legitimate, and it is not listed below, please report it to us by forwarding it to [email protected].

Security Alerts and Suspicious Items Currently Affecting UVA:

Posted:

From: Mark Info
Date: Wednesday, September 14, 2022 at 2:59 PM
To:
Subject: UNICEF Part Time Job
To whom it may concern,
I am sharing a Job Information to anybody who might be interested in a Paid World Health organization Part-Time Job to make up to $500 (USD) weekly

Attached is further information about the employment schedule, If interested kindly contact Dr. Dianna Arnold with your email address for urgent details of employment.

NOTE: THIS IS STRICTLY A WORK FROM HOME POSITION.

Regards,
World Health Organization

Posted:

From: User, Typical N (mst3k)
Date: Tuesday, September 6, 2022 at 4:05 PM
To: 
Subject: PART TIME JOBS

Posted:

Emails offering part-time work are always scam emails designed to extort money from you.

How can you tell? 

  • The reply-to address shown, and if one is given in the email, never end with "virginia.edu
  • Usually, they offer you a job, then send you a "certified check" or electronic payment.
  • Then they ask you to "send" some of the money back.
  • You quickly find the original payment check bounces or is otherwise no good, and you are out the money you sent.
  • If you receive ANY unsolicited email offering a part-time job, personal assistant position, TA slot or any other employment, DO NOT RESPOND.
  • Jobs do not pay you ahead of time for hours not yet performed.

  • Legitimate jobs do not hire you via email, without an interview, and without some kind of vetting process.

  • Legitimate internal job postings are posted in Workday or Handshake (for students).

Posted:

The service of a student assistant is urgently required to work part-time and get paid $ 320 weekly. Tasks will be carried out remotely and work time is 8 hours in a week. 

If interested, send a copy of your updated resume, a functional google hangouts email address, and a whatsapp number to our Department of Anthropology via this email address to proceed further on the job roles/responsibilities.
 
Regards
Sonia Alconini
Professor, Anthropology
Department of Anthropology

Posted:

From: Alexa Brown
Date: Wednesday, June 8, 2022 at 12:20 PM
To: Typical User (mst3k)
Subject: Retirement And Pension Meetings For University of Virginia Employees

As a valued employee of the University of Virginia, you are eligible to receive a free one-on-one consultation for answers to your retirement benefit questions.

 As part of this meeting, you will be provided information that will help you figure out:

  *   Your expected income when you retire
  *   How much longer you will have to work
  *   How you can save more money for retirement
  *   Which options have guaranteed income when you retire

      Daytime appointments are going fast. Click below to see whats available

Click Here to Schedule Your Meeting

Posted:

Confluence Server and Data Center - CVE-2022-26134 - Critical severity unauthenticated remote code execution vulnerability

*Information from Atlassian*

 

Summary of Vulnerability

Atlassian has been made aware of current active exploitation of a critical severity unauthenticated remote code execution vulnerability in Confluence Data Center and Server. Further details about the vulnerability are being withheld until a fix is available.

We expect that security fixes for supported versions of Confluence will begin to be available for customer download within 24 hours (estimated time, by EOD June 3 PDT).

 

What You Need to Do

There are currently no fixed versions of Confluence Server and Data Center available. In the interim, customers should work with their security team to consider the best course of action. Options to consider include:

Posted:

If you receive ANY unsolicited email offering a part-time job, personal assistant position, TA slot or any other employment, DO NOT RESPOND.

These are scam emails designed to extort money from you.

Usually, they offer you a job, then send you a "certified check" or electronic payment. They then ask you to "send" some of the money back. You quickly find the original payment check bounces or is otherwise no good, and you are out the money you sent.

You can help UVA Information Security by reporting the messages to us ([email protected]) so we can block the scammers.

Posted:

From: Virginia >
Subject: mst3k [at] virginia.edu
Date: May 27, 2022 at 1:23:04 PM EDT
To: mst3k [at] virginia.edu

 

M­icr­oso­ft®365

- Admin Center *P­ass­wor­d*A­ss­is­ta­nc­e for Virginia

27-05-2022 |*P­as­sw­or­d*E­xp­ir­at­io­n N­ot­ic­e for: mst3k

A­ct­io­n R­eq­ui­re­d:jP­ass­wor­djf­or mst3k [at] virginia.edu is e­xp­ir­in­g s­oo­n.
jP­le­as­e r­ev­ie­w a­nd k­eepjp­ass­wor­d*to e­nsu­re i­nst­ant a­cce­ss to y­our a­cco­unt.

JR­ev­ie­w /JK­ee­pjC­ur­re­ntjP­as­sw­or­di
*S­ign-injisiv­ali­dat­ediby Virginia i­nte­rna­l u­serid­ata­bas­e

NOTE: T­his is ajm­and­ato­ry s­erv­icejn­oti­ceis­entjon May 27, 2022, 05:23 PM

*** P­lea­se dojn­otir­epl­y. T­his is anja­uto­mat­edje­mai­lin­oti­fic­ati­on ***

Posted:

From: System Admin
Sent: Wednesday, May 25, 2022 6:45 PM
To: User, Typical S. (mst3k)
Subject: Confirm your E-mail ID (erorr: PUZ1A87VMF)

 

Server Administrator | IT Support

 

Hello mst3k [at] virginia.edu

We are closing all old versions users from 25-05-2022 22:45:25.. Please confirm your email address mst3k [at] virginia.edu to keep your account from being deactivated.
Confirm Your Email Herewww.yehudap.com/.well-known/abox/?r=[email protected]>

 

Account will be  automatically deleted after 25-05-2022 22:45:25 You can change the frequency of these notifications within your mailbox portal.

Posted:

From: "Do-Not-Reply [at] Virginia.edumailto:Do-Not-Reply [at] Virginia.edu>" mailto:admin [at] gesauthdg11xniqdkfzumrs2mqzrauc.awsapps.com>>
Subject: RЕ‏‏‏‏‏‏МI‏‏‏‏‏‏ND‏‏‏‏‏‏ER: Yo‏‏‏‏‏‏ur Virginia е-‏‏‏‏‏‏ma‏‏‏‏‏‏іl Рa‏‏‏‏‏‏ѕ‏‏‏‏‏‏ѕ‏‏‏‏‏‏wοr‏‏‏‏‏‏d Εx‏‏‏‏‏‏p‏‏‏‏‏‏irе‏‏‏‏‏‏s to‏‏‏‏‏‏d‏‏‏‏‏‏aу
Date: May 25, 2022 at 9:25:58 AM EDT
To: mst3k [at] virginia.edu

[img]

mst3k [at] virginia.edu
H‏‏‏‏‏‏e‏‏‏‏‏‏lр u‏‏‏‏‏‏s prо‏‏‏‏‏‏tе‏‏‏‏‏‏ct y‏‏‏‏‏‏оu‏‏‏‏‏‏r аc‏‏‏‏‏‏cо‏‏‏‏‏‏un‏‏‏‏‏‏t
Y‏‏‏‏‏‏о‏‏‏‏‏‏ur Virginia O‏‏‏‏‏‏365 аc‏‏‏‏‏‏cо‏‏‏‏‏‏un‏‏‏‏‏‏t p‏‏‏‏‏‏a‏‏‏‏‏‏ssw‏‏‏‏‏‏оr‏‏‏‏‏‏d w‏‏‏‏‏‏i‏‏‏‏‏‏ll е‏‏‏‏‏‏xр‏‏‏‏‏‏іr‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏e to‏‏‏‏‏‏d‏‏‏‏‏‏aу.