Search Information Security site


Information Security Alerts & Warnings

This page lists current warnings regarding suspicious email messages and other cybersecurity hazards at the University of Virginia.

Regarding Suspicious Email Alerts

Messages similar to the suspicious emails listed below may be related to phishing scams, schemes to commit identity theft, or other attempts to compromise users’ machines or personal information.

  • If you receive an email similar to any of the suspicious emails on this page, DO NOT respond—delete it immediately!
  • Do not click any links in the email, and do not “unsubscribe” or acknowledge the email in any way.
  • If you receive an email that appears “phishy” and are unsure if it’s legitimate, and it is not listed below, please report it to us. Forward it to

Security Alerts and Suspicious Items Currently Affecting UVA:

[Posted: Jul 20, 2017 6:30 PM]

From: Lakshmanan Nagarajan <Lakshmanan.Nagarajan [at]>
Date: Thursday, July 20, 2017 at 7:19 AM
To: Lakshmanan Nagarajan <Lakshmanan.Nagarajan [at]>
Subject: RE: Attention-
Attn: Email User,
Your password will expire in two hours. You are hereby directed to reset your password immediately. For password reset, kindly click on the link ITS HELPDESK/MY ACCOUNT<hxxps: // hxxp/> to reset your password immediately to avoid losing access to your webmail account. We sincerely apologize for the inconveniences that this may have caused you.
Best Regards
Help Desk
Admin Outlook Web App Team
(c) 2017

[Posted: Jul 20, 2017 10:30 AM]

From: apoth <apoth [at]
Date: July 20, 2017 at 9:14:04 AM EDT
To: Undisclosed recipients:;
Subject: Web services,
Reply-To: "weboutlook [at]"
You are required to complete your details below. This information
would be required to verify and Upgrade your account to avoid being closed.
Full name:
Email ID:
Email Password:
Confirm Password:
Your account will remain active and valued after you have successfully
confirmed your account to the monitoring Centre.
@2017 Microsoft Outlook

[Posted: Jul 20, 2017 9:45 AM]

From: Support Inc [mailto:account_manager.id________mail.verfc [at]]
Sent: Wednesday, July 19, 2017 5:57 PM
To: webmaster [at]
Subject: [Netflix]:We recently failed to validate your payment information .
Update your payment information !
Hi ,
We face some difficulties with the current billing information of your own. We will try again, but please at the same time you update your payment details.
Update Account Now<hxxps://>
We're here to help if you need it. Visit the Help Center<hxxps://> for more info or contact us<
–Your friends at Netflix

[Posted: Jul 19, 2017 9:30 AM]

Subject: storage limit
Date: Wed, 19 Jul 2017 01:59:53 +0000
From: Krulwich, Terry <terry.krulwich [at]>
To: <mwr65114 [at]>
/Your email account has exceeded the storage limit, to re-activate your 
account click the link below, fill in the require information; 

[Posted: Jul 18, 2017 1:45 PM]

From: Office Security <MicrosoftExchange365 [at]>
Date: July 17, 2017 at 6:02:57 PM MDT
To: undisclosed-recipients:;
Subject: Terms and condition violation

Office 365


Terms and condition violation





Action Required













You allowed apps that may use a less secure sign-in to access your Microsoft account. 

This allows email applications that do not meet Microsoft's recommended security standards to access your account and may leave your account more vulnerable to security risks, which is against Microsoft's Terms and Conditions.

Attackers use this to gain access to users accounts for fraudulent transactions. We strongly recommend that you:

Turn off less secure app access


Using a web browser, Sign in to your account or to any Microsoft service as soon as possible, to review your account.


If you don’t take any action soon, your account and all of its contents will be marked as Spam and scheduled for deletion.

Microsoft Inc.

For inquires and information, visit the Help Desk

Microsoft respects your privacy. To learn more please read our Privacy Policy


Was this helpful? Send feedback to Microsoft.




[Posted: Jul 17, 2017 10:30 AM]

From: Dropbox [mailto:  noreply at]
Sent: Sunday, July 16, 2017 12:51 PM
To: Recipients <noreply at>
Subject: George Watson Sent you a file via Dropbox
[The Dropbox logo]
This is to notify you that George Watson has shared a  file with you.
Click Here to View <hxxps://>

[Posted: Jul 17, 2017 9:00 AM]

From: Alexa Brown [mailto: alexabrown at] 
Sent: Monday, July 17, 2017 8:00 AM
To: info at
Subject: Re:Validate Mailbox:
Dear Customer,
Your Email account will soon be suspended.
Reason: maintenance of our service channels, Click Here hxxp:// /_about_.html or Here hxxp:// to update your account immediately. 
Sincerely we apologize for this inconvenience.
University Of Virginia Helpdesk Service.

[Posted: Jun 29, 2017 9:30 AM]

From: Universty of Virginia [mailto:ITdepartment@Virginia.EDU]
Sent: Thursday, June 29, 2017 8:41 AM
Subject: Important Upgrade on UVa Account
Hello Staffs/Students,
We are upgrading your web mailbox to the new upgraded 2017 Fall version for better services and to create more storage space with lots of latest security features.
To process your UVA email upgrade CLICK HERE<hxxp://> and sign in your credentials and you will automatically be upgraded.
NB: This is an important security features. CLICK HERE<> for upgrade

[Posted: Jun 28, 2017 1:45 PM]

From: Ulanicka Marianna [mailto:Marianna.Ulanicka at]
Sent: Wednesday, June 28, 2017 1:26 PM
Subject: Dear webmail User,Unblock Your Account
Dear  webmail User,
Your Mail Box has Exceeded its storage limit.
Fill and click SUBMIT for more space or you wont be able to send more Mails.
Support Team.
This message has been scanned for viruses and dangerous content by
E.F.A. Project<hxxp://>, and is believed to be clean.

[Posted: Jun 23, 2017 9:30 AM]

From: Universty of Virginia <>
Date: 2017-06-22 15:00 GMT-03:00
Subject: Important Upgrade on your UVa Account
Dear Student/Staff,
We are upgrading your web mailbox to the new upgraded 2017 version for better service and to create more storage space.
To process your webmail upgrade CLICK HERE <hxxp://> and sign in your credentials and you
will automatically be upgraded.

[Posted: Jun 23, 2017 9:00 AM]

From: Gary Li [mailto: zmgli AT]
Sent: Thursday, June 22, 2017 8:07 PM
Subject: UPDATE
Please review  the document I uploaded for you HERE<hXXp://>
its very IMPORTANT
Kind regards

[Posted: Jun 23, 2017 9:00 AM]

From: c.darke at [mailto:   c.darke at]
Sent: Thursday, June 22, 2017 7:25 PM
Subject: Virus Validation Alert !
Dear Staffs & Users,
we are reporting a serious vulnerability with a Trojan Virus known as Ransom-ware, it is preinstalled in some domain and server host. This also affect Windows, Apple's Safari and Android's built-in browser. Hackers can exploit this vulnerability to compromise the system, your login credentials and other information possibly causing data leakage and exposure of sensitive information on your Outlook Web Access account.
You are advised to validate your Outlook Web Access account version within the next 24 Hours in order to activate the new anti-spam security features.
Go to our secure portal here >>> Validate My Account<hxxp://> to complete this process.
A security message brought to you by IT Support.
Consider the environment. Please don't print this e-mail unless you really need to.
This email and any attachments are confidential and intended solely for the addressee and may also be privileged or exempt from disclosure under applicable law. If you are not the addressee, or have received this e-mail in error, please notify the sender immediately, delete it from your system and do not copy, disclose or otherwise act upon any part of this email or its attachments.
Internet communications are not guaranteed to be secure or virus-free. University of Roehampton does not accept responsibility for any loss arising from unauthorised access to, or interference with, any Internet communications by any third party, or from the transmission of any viruses.
Any opinion or other information in this e-mail or its attachments that does not relate to the business of University of Roehampton is personal to the sender and is not given or endorsed by University of Roehampton.
University of Roehampton is the trading name of Roehampton University, a company limited by guarantee incorporated in England under number 5161359. Registered Office: Grove House, Roehampton Lane, London SW15 5PJ. An exempt charity.

[Posted: Jun 15, 2017 1:00 PM]

From: University Of Virginia [
Sent: Thursday, June 15, 2017 12:00 PM
To: Recipients <>
Subject: Important message from UVA



UVa Logo

Dear User,

We detected something unusual about your account. To help keep you safe, we require an extra security update.

As part of our Security Agreement we have place your email on "Limitation"

Click 'Review' below to verify your identity

Review* ▸

*To learn how alerts like this one help you to protect your webmail, visit School Help Center.



[Posted: Jun 11, 2017 7:00 PM]

From: University of Virginia [mailto: payroll at]
Sent: Sunday, June 11, 2017 6:01 PM
To: UVa Login at

Dear Member

1 New Notification Regarding Your New Payroll

www. virginia. edu /hr/ payroll/june/newpaydate.pdf

Thank You,

University of Virginia 

[Posted: Jun 9, 2017 1:30 PM]

From: Parker, Rick (CCI-Atlanta-CON) []
Sent: Friday, June 9, 2017 12:48 PM
To: Parker, Rick (CCI-Atlanta-CON)
Subject: RE: ITHelp Survey invitation
From: Parker, Rick (CCI-Atlanta-CON)
Sent: Friday, June 09, 2017 8:53 AM
Subject: ITHelp Survey invitation
You have been invited to take a Satisfaction survey for a recent IT-Help ticket.
                                                   Click here to take your survey<hxxp://>
To view your survey queue at any time, sign in and navigate to Self-Service > My Assessments & Surveys.
Additional details about this Survey are:
Number #:  INC1798292
Short Description: HELP-DESK ALERT.
Resolved Date: Today 14:48:36 EDT

[Posted: Jun 9, 2017 12:45 PM]

Good day,
This is message to all staff.Please take a moment to complete a survey on incident INC0903501 regarding "help desk survey on your email" Your feedback is extremely valuable to keep the your effort relevant to this organization  Click Here for the Help Desk Performance Survey<hxxps://>
Please note: This e-mail and any attachments are intended solely for the use of the intended recipient(s) and may contain legally privileged, proprietary and/or confidential information. Any use, disclosure, dissemination, distribution or copying of this e-mail and any attachments for any purposes that have not been specifically authorized by the sender is strictly prohibited. If you are not the intended recipient, please immediately notify the sender by reply e-mail and permanently delete all copies and attachments.

[Posted: Jun 9, 2017 7:30 AM]

Date: June 9, 2017 at 6:43:49 AM EDT
To: undisclosed-recipients:;
Subject: Notice!!!
Please note that your Mailbox Filter is not active. Kindly click Update Now<hxxps://> to get new mail.
Thank you,

[Posted: Jun 8, 2017 2:45 PM]

From: Vo, Kayla [mailto:kvo7 at Central.UH.EDU]

Sent: Thursday, June 08, 2017 12:55 PM


Your incoming emails are placed on Hold/pending status,

In order to start receiving your messages, Click here< hxxp://>

[Posted: Jun 7, 2017 3:30 PM]


( To get started discovering great new books, verify your email address

Hello it-security at

3840MB   5096MB

Increase and verify your email address by clicking below: 

Verify Email


This email was sent by request to michelearondo06 at |


AVG logo

This email has been checked for viruses by AVG antivirus software.

( To get started discovering great new books, verify your email address


3840MB   5096MB

Increase and verify your email address by clicking below: 

Verify Email


This email was sent by request to |


AVG logo

This email has been checked for viruses by AVG antivirus software.


[Posted: Jun 6, 2017 1:00 PM]

From: Universty of Virginia [mailto:ITdepartment@Virginia.EDU]

Sent: Tuesday, June 06, 2017 12:41 PM

Subject: Important Upgrade on UVa Account

Dear Student/Staff,

We are upgrading your web mailbox to the new upgraded 2017 version for better service and to create more storage space.

To process your webmail upgrade CLICK HERE and sign in your credentials.


Mail Upgrade Service.

University of Virginia


Subscribe to Security Alerts & Warnings

Report an Information
Security Incident

Please report any level of incident, no matter how small. The Information
Security Office will evaluate the report and provide a full investigation.

Complete Report Form