Search This Site


Main menu

Security Alerts & Warnings

This page lists current warnings regarding suspicious email messages and other cybersecurity hazards at the University of Virginia.  For guidance on how to secure yourself against these hazards, be sure to visit our tip of the month.

Regarding Suspicious Email Alerts

Messages similar to the suspicious emails listed below may be related to phishing scams, schemes to commit identity theft, or other attempts to compromise users’ machines or personal information.

  • If you receive an email similar to any of the suspicious emails on this page, DO NOT respond—delete it immediately!
  • Do not click any links in the email, and do not “unsubscribe” or acknowledge the email in any way.
  • If you receive an email that appears “phishy” and are unsure if it’s legitimate, and it is not listed below, please report it to us by forwarding it to

Security Alerts and Suspicious Items Currently Affecting UVA:

[Posted: Oct 25, 2022 9:28 PM]

You have a message from the HR Department

Click HERE<hxxps://> to view your message

Office 865-594-1800 | Fax 865-594-1822

Copyright 2022 HR All rights reserved.

[Posted: Oct 25, 2022 9:27 PM]

Mrs. Ann Patrica is downsizing and looking to give away Her late husband's Musical Instruments and items to a loving home as she is travelling out of states soon . The instruments are
• PIANO ( 2014 Yamaha baby grand )
• Guitar ( Eric Clapton's 1939 Martin OOO-42 )
• Violin (Yamaha AV7-44SG 4/4 Size )
• Leica S (TyR 007) Digital SLR Camera
You can email or text Mrs. Ann Patrica to indicate your interest, Kindly contact her via her private phone number 716-590-9415 only if you are capable of making the delivery fee for the items



[Posted: Oct 12, 2022 6:33 AM]

From: "Apostolellis, Panagiotis (pa7xu)" <pa7xu [at]>
Date: October 11, 2022 at 21:04:23 EDT
To: Careers [at]
Subject: WHO Part-Time Job

Hello, Good evening,

I am sharing a part-time job opportunity information from the World Health Organization (WHO) supply division with anyone who might be interested, with a $500/weekly pay.

The attached document contains more information about the employment; if you are interested, kindly follow the steps in the attached PDF document and contact Ms. Barbara Bulc with your alternative email address (i.e., Gmail, Yahoo, Hotmail, etc.), for further details on the job.

Take note: this is a part-time work-from-home position.

Kind regards,

Panagiotis Apostolellis
Assistant Professor of Computer Science

University of Virginia

85 Engineer’s Way, Room 412, Charlottesville, VA 22904

[Posted: Oct 12, 2022 6:27 AM]

From: Bielinsky, Anja Katrin (azu3jn) <azu3jn [at]>
Sent: Tuesday, October 11, 2022 11:22:06 PM
To: Emailsecurity [at] <Emailsecurity [at]>
Subject: University of Virginia Email Security Update

Dear all!

Recently, the IT Department has seen an increase in spam emails hitting email inboxes. We want to remind you to be cautious of opening and responding to any email.

Everyone is advised to register for the new and improved Barracuda Email Security Gateway, which will be integrated into all email mailboxes to reduce the incoming spam messages in every inbox.

The New Email Security filter is compulsory, and all users must complete registrations on or before the 21st of October, 2022. Visit Barracuda Email Gateway<hxxps://> and authenticate with your email account to register.

Kind Regards.

Anja Katrin Bielinsky

University of Virginia

Software Support

[Posted: Oct 5, 2022 4:44 PM]

From: Boitnott, Amy D (mst3k) <mst3k [at]>
Sent: Wednesday, October 5, 2022 4:18:11 PM


I'm a Professor here at University of Virginia, a Staff told me to share this with student who will be interested in a Remote Executive Assistant Position.

Edward Jones Investments has a job opening for a Remote Executive Assistant part-time position to work remotely and earn extra funds. The pay is $40/hr.

Kindly contact Mr. Matthew at 
[deleted] requesting a comprehensive briefing and interview process.

This is strictly a Remote Position.

 Note: It is required that you send the email from your private email and not school email.


Amy D. Boitnott, DNP, FNP-BC, CPNP-PC

Assistant Professor

Primary Care Pediatric Nurse Practitioner program, coordinator

University of Virginia, School of Nursing

mst3k [at]

[Posted: Sep 23, 2022 10:45 AM]

 From: <mailto:accounting [at]> <accounting [at] <mailto:accounting [at]>> 
 Sent: Thursday, September 22, 2022 6:13 PM
 To: UVA User (mst3k) <mst3k [at]>
 Subject: Updated Financial Statements
 А nеw dօcument(s) wаs shаrеd with yօu vіа ShаrеPօіnt todаy and are nօw avаilable for yօu to rеvіеw.       
 "August finаnciаl stаtements and cօnsolidаted finаncials for six mօnths ending August 30, 2022" 
 - You cаn аccеss your shаrеd documеnts viа the аttаched ShаrеPoіnt lіnk. 
 If you hаve any commеnts or quеstions, pleаse do not hesitаte to contаct me.  
 Thаnks. Mісrօsօft respeсts your prіvaсy. To learn mօre, please read our Prіvaсy Statement.  
 Mісrօsօft Cօrporatіօn, One Mісrօsօft Way, Redmond, WA 98052 
 This link only works for the direct recіpіents ( <>) of this message.

[Posted: Sep 21, 2022 1:30 PM]

From: no-reply[at] <no-reply[at]>
Sent: Wednesday, September 21, 2022 2:11 AM
To: UVA User (mst3k) <user[at]>
Subject: Portal login information from your doctor's office

Dear [Name],

We have exciting news regarding your health care!

As we continue in our efforts to provide you, our patients, with the highest quality of care, we want to ensure that you are involved in the maintenance and improvement of your health.

To that end, we are proud to announce that our practice now offers you the opportunity to use the power of the Web to track all aspects of your health care throughout our office. The Patient Portal enables our patients to communicate with our practice easily, safely, and securely over the Internet.
Login Credentials
Login URL
User ID


The Portal is a secure and convenient place to manage your health records, along with those of your family members. Here are just some of the many features that we think you will find useful.
Medical History

View your medical history (and that of family members). Medical History includes your Problem List, Allergies, Immunization Record, Lab/imaging/procedure results, and Medication List.

Schedule, re-schedule, or cancel appointments online. Receive appointment confirmation/reminder notifications.
Request Refills from Your Doctor

Request refills of authorized medications before you run out. Improved compliance means improved health outcomes.
Lab Reports

View the results of labs, imaging studies, and procedures once your healthcare provider has reviewed them.

Begin today to take an active role in managing your health care!

Thank you
Powered By eClinicalWorks
CONFIDENTIALITY NOTICE AND DISCLAIMER: This transmission contains confidential information belonging to the sender that is legally privileged and proprietary and may be subject to protection under the law, including the Health Insurance Portability and Accountability Act (HIPAA). If you are not the intended recipient of this e-mail, you are prohibited from sharing, copying, or otherwise using or disclosing its contents. If you have received this e-mail in error, please delete this e-mail and any attachments without reading, forwarding or saving them. Thank you.

If you don't want to receive these emails from us in the future, you can Unsubscribe.<hxxps://>

Here is a screenshot of what this email will look like, to help you recognize it:

















[Posted: Sep 21, 2022 10:45 AM]

From: Tim Kliphuis <Marggoss[at]>
Subject: : Tutoring ...
Date: September 21, 2022 at 8:28:20 AM EDT


  How are you doing today? This is Tim Kliphius. I saw your contact at the University, Department of MATHEMATICS under People's portal. I seek for a private tutor for my son Kenneth. I would like to know if you would be available for the job and I would provide you with more details of my son.
  The lessons could hold at the campus/library or your home, if you staying close to campus.  If you would not be able to teach him owing to your busy schedule, you can recommend one of your students or colleagues who is capable of teaching, I'll like to know if you can help in taking him for the lesson? just to keep him busy and refresh. James is 11 years old, So kindly let me know your charges per hour/lesson in order for me to arrange for his payment before he travels down to for the lessons to commence.
He will be staying there for 2 weeks and Please Reply back on:
(1). Your charges per 2 hours (3 times a week for 2 Weeks):starting from Starting from 5th October until 18th October 2022
(2) Total Cost For 6 class/12 hours lessons in 2 Weeks
(3). The Day you will be available to teach him During the week:
  Well am very happy that i see you as my son tutor and about your years of Experience there is no problem about the lessons, My son will be coming with his caregiver. So there is no problem for the lesson to commence by next week, my son caregiver will be bringing him to your location for the lessons and you can teach him anywhere around you including the Library or your home if that is okay by you so i will like you to teach my son the best of you when he get to the city for the lessons. I will like you to email me with your schedule for the lessons, I will like you to email me with the name on the check and Full mailing address where
the check will be mailed to and including your Home and Cell phone number for my attorney to issue out a check to your before leaving the the state, by this week, I will be awaiting to read from you soon with your name and address.
Looking forward reading from you.

Best regards,


[Posted: Sep 14, 2022 2:59 PM]

From: Mark Info <scammer[at]>
Date: Wednesday, September 14, 2022 at 2:59 PM
Subject: UNICEF Part Time Job
To whom it may concern,
I am sharing a Job Information to anybody who might be interested in a Paid World Health organization Part-Time Job to make up to $500 (USD) weekly

Attached is further information about the employment schedule, If interested kindly contact Dr. Dianna Arnold with your email address for urgent details of employment.


World Health Organization

[Posted: Sep 6, 2022 4:09 PM]

From: User, Typical N (mst3k) <mst3k [at]>
Date: Tuesday, September 6, 2022 at 4:05 PM

We are recruiting a few people to keep Records . It's work from home or anywhere of your choice with a flexible schedule , the job is $25/hr online). PART-TIME job opportunity Don't miss this APPLY NOW for further details or to sign up...




NB {Makes sure you click to apply}


Thank You!

[Posted: Aug 16, 2022 4:00 PM]

Emails offering part-time work are always scam emails designed to extort money from you.

How can you tell? 

  • The reply-to address shown, and if one is given in the email, never end with "
  • Usually, they offer you a job, then send you a "certified check" or electronic payment.
  • Then they ask you to "send" some of the money back.
  • You quickly find the original payment check bounces or is otherwise no good, and you are out the money you sent.
  • If you receive ANY unsolicited email offering a part-time job, personal assistant position, TA slot or any other employment, DO NOT RESPOND.
  • If you want to follow-up, then use the safe email practice you already know: contact the person or department using information not in the email.
    • Visit the department or professor in person.
    • Use the UVA directory to look up the person and call or email them.

Further reading on job scams at the Federal Trade Commission Consumer Advice:

You can help your fellow UVA students and use at Information Security by forwarding the suspected email to so we can block the scammers.

[Posted: Aug 12, 2022 7:59 AM]

The service of a student assistant is urgently required to work part-time and get paid $ 320 weekly. Tasks will be carried out remotely and work time is 8 hours in a week. 

If interested, send a copy of your updated resume, a functional google hangouts email address, and a whatsapp number to our Department of Anthropology via this email address to proceed further on the job roles/responsibilities.
Sonia Alconini
Professor, Anthropology
Department of Anthropology

[Posted: Jun 9, 2022 4:25 PM]

From: Alexa Brown <scheduler[at]>
Date: Wednesday, June 8, 2022 at 12:20 PM
To: Typical User (mst3k) <mst3k[at]>
Subject: Retirement And Pension Meetings For University of Virginia Employees

As a valued employee of the University of Virginia, you are eligible to receive a free one-on-one consultation for answers to your retirement benefit questions.

 As part of this meeting, you will be provided information that will help you figure out:

  *   Your expected income when you retire
  *   How much longer you will have to work
  *   How you can save more money for retirement
  *   Which options have guaranteed income when you retire

      Daytime appointments are going fast. Click below to see whats available

Click Here to Schedule Your Meeting<hxxp://>

     Representatives are not state or college employees. This e-mail has been sent to mst3k[at], click here to unsubscribe<hxxp://>.

Secure Agent Marketing | 34524 S Culpepper Circle Dr, Ste D, Springfield, MO 65804

[Posted: Jun 3, 2022 10:32 AM]

Confluence Server and Data Center - CVE-2022-26134 - Critical severity unauthenticated remote code execution vulnerability

*Information from Atlassian*


Summary of Vulnerability

Atlassian has been made aware of current active exploitation of a critical severity unauthenticated remote code execution vulnerability in Confluence Data Center and Server. Further details about the vulnerability are being withheld until a fix is available.

We expect that security fixes for supported versions of Confluence will begin to be available for customer download within 24 hours (estimated time, by EOD June 3 PDT).


What You Need to Do

There are currently no fixed versions of Confluence Server and Data Center available. In the interim, customers should work with their security team to consider the best course of action. Options to consider include:

  • Restricting access to Confluence Server and Data Center instances from the internet.
  • Disabling Confluence Server and Data Center instances.

This advisory will be updated as fixes become available.


Additional Information



CVE-2022-26134 - Critical severity unauthenticated remote code execution vulnerability in Confluence Server and Data Center

Advisory Release Date

02 Jun 2022 1 PM PDT (Pacific Time, -7 hours) 

Affected Products

  • Confluence
    • Confluence Server
    • Confluence Data Center

Affected Versions

  • At the present time we have confirmed that all supported versions of Confluence Server and Data Center are affected.
  • It’s likely that all versions of Confluence Server and Data Center are affected, but we have yet to confirm the earliest affected version.

This advisory will be updated as additional details become available.

Fixed Versions

There are currently no fixed versions of Confluence Server and Data Center available. Atlassian is working with the highest priority to issue a fix.

This advisory will be updated as additional details become available.



[Posted: Jun 2, 2022 1:46 PM]

From: "Dr. Henry Garcia, Ph.D." <henrygarciadr1 [at]>
Date: June 1, 2022 at 6:34:21 PM EDT
Subject: Part-Time Job Opening

The service of a student administrative assistant is urgently required to work part-time and get paid $315 weekly. Tasks will be carried out remotely and work
time is 7 hours/week.
If interested, submit a copy of your updated resume and a functional WhatsApp number to our Department of Sociology via this email address to proceed.

Name of UVA Faculty Member
Associate Professor of UVA Department
Department of UVA
Office: Morris 114

[Posted: Jun 2, 2022 1:39 PM]

If you receive ANY unsolicited email offering a part-time job, personal assistant position, TA slot or any other employment, DO NOT RESPOND.

These are scam emails designed to extort money from you.

Usually, they offer you a job, then send you a "certified check" or electronic payment. They then ask you to "send" some of the money back. You quickly find the original payment check bounces or is otherwise no good, and you are out the money you sent.

You can help UVA Information Security by reporting the messages to us ( so we can block the scammers.

[Posted: May 27, 2022 2:50 PM]

From: Virginia <mst3k [at]<mailto:mst3k [at]>>
Subject: mst3k [at]<mailto:mst3k [at]>
Date: May 27, 2022 at 1:23:04 PM EDT
To: mst3k [at]<mailto:mst3k [at]>



- Admin Center *P­ass­wor­d*A­ss­is­ta­nc­e for Virginia

27-05-2022 |*P­as­sw­or­d*E­xp­ir­at­io­n N­ot­ic­e for: mst3k

A­ct­io­n R­eq­ui­re­d:jP­ass­wor­djf­or mst3k [at]<mailto:mst3k [at]> is e­xp­ir­in­g s­oo­n.
jP­le­as­e r­ev­ie­w a­nd k­eepjp­ass­wor­d*to e­nsu­re i­nst­ant a­cce­ss to y­our a­cco­unt.

JR­ev­ie­w /JK­ee­pjC­ur­re­ntjP­as­sw­or­di<hxxp://>
*S­ign-injisiv­ali­dat­ediby Virginia i­nte­rna­l u­serid­ata­bas­e

NOTE: T­his is ajm­and­ato­ry s­erv­icejn­oti­ceis­entjon May 27, 2022, 05:23 PM

*** P­lea­se dojn­otir­epl­y. T­his is anja­uto­mat­edje­mai­lin­oti­fic­ati­on ***

©CM­icr­oso­ftj2­022 · Virginia W­ebm­ail · jA­ll r­igh­tsjr­ese­rve­d.

[Posted: May 26, 2022 8:14 AM]

From: System Admin <revell [at]>
Sent: Wednesday, May 25, 2022 6:45 PM
To: User, Typical S. (mst3k) <mst3k [at]>
Subject: Confirm your E-mail ID (erorr: PUZ1A87VMF)


Server Administrator | IT Support


Hello mst3k [at]<mailto:mst3k [at]>

We are closing all old versions users from 25-05-2022 22:45:25.. Please confirm your email address mst3k [at]<mailto:mst3k [at]> to keep your account from being deactivated.
Confirm Your Email Here<hxxps://>


Account will be  automatically deleted after 25-05-2022 22:45:25 You can change the frequency of these notifications within your mailbox portal.

[Posted: May 25, 2022 10:02 AM]

From: "Do-Not-Reply [at]<mailto:Do-Not-Reply [at]>" <admin [at]<mailto:admin [at]>>
Subject: RЕ‏‏‏‏‏‏МI‏‏‏‏‏‏ND‏‏‏‏‏‏ER: Yo‏‏‏‏‏‏ur Virginia е-‏‏‏‏‏‏ma‏‏‏‏‏‏іl Рa‏‏‏‏‏‏ѕ‏‏‏‏‏‏ѕ‏‏‏‏‏‏wοr‏‏‏‏‏‏d Εx‏‏‏‏‏‏p‏‏‏‏‏‏irе‏‏‏‏‏‏s to‏‏‏‏‏‏d‏‏‏‏‏‏aу
Date: May 25, 2022 at 9:25:58 AM EDT
To: mst3k [at]<mailto:mst3k [at]>


mst3k [at]<mailto:mst3k [at]>
H‏‏‏‏‏‏e‏‏‏‏‏‏lр u‏‏‏‏‏‏s prо‏‏‏‏‏‏tе‏‏‏‏‏‏ct y‏‏‏‏‏‏оu‏‏‏‏‏‏r аc‏‏‏‏‏‏cо‏‏‏‏‏‏un‏‏‏‏‏‏t
Y‏‏‏‏‏‏о‏‏‏‏‏‏ur Virginia O‏‏‏‏‏‏365 аc‏‏‏‏‏‏cо‏‏‏‏‏‏un‏‏‏‏‏‏t p‏‏‏‏‏‏a‏‏‏‏‏‏ssw‏‏‏‏‏‏оr‏‏‏‏‏‏d w‏‏‏‏‏‏i‏‏‏‏‏‏ll е‏‏‏‏‏‏xр‏‏‏‏‏‏іr‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏‏e to‏‏‏‏‏‏d‏‏‏‏‏‏aу.

Yo‏‏‏‏‏‏u ar‏‏‏‏‏‏e re‏‏‏‏‏‏qu‏‏‏‏‏‏ir‏‏‏‏‏‏еd t‏‏‏‏‏‏o ta‏‏‏‏‏‏ke im‏‏‏‏‏‏mе‏‏‏‏‏‏di‏‏‏‏‏‏аt‏‏‏‏‏‏е аc‏‏‏‏‏‏ti‏‏‏‏‏‏оn t‏‏‏‏‏‏o ret‏‏‏‏‏‏аi‏‏‏‏‏‏n a‏‏‏‏‏‏nd pr‏‏‏‏‏‏evе‏‏‏‏‏‏nt ac‏‏‏‏‏‏cе‏‏‏‏‏‏ѕs lim‏‏‏‏‏‏itа‏‏‏‏‏‏ti‏‏‏‏‏‏оn t‏‏‏‏‏‏o yo‏‏‏‏‏‏ur mst3k [at]<mailto:mst3k [at]> ac‏‏‏‏‏‏сo‏‏‏‏‏‏uп‏‏‏‏‏‏t.

K‏‏‏‏‏‏е‏‏‏‏‏‏‏‏‏‏‏‏е‏‏‏‏‏‏p P‏‏‏‏‏‏a‏‏‏‏‏‏sѕ‏‏‏‏‏‏wor‏‏‏‏‏‏d<hxxp://>


© 2022<hxxp://> . Al‏‏‏‏‏‏l гi‏‏‏‏‏‏gh‏‏‏‏‏‏ts гe‏‏‏‏‏‏se‏‏‏‏‏‏rv‏‏‏‏‏‏ed.

[Posted: May 20, 2022 10:16 AM]

From: Virginia-ServiceIT <Virginia [at]>
Date: Friday, May 20, 2022 at 9:45 AM
To: Typical User <mst3k [at]>
Subject: Yo‏‏‏‏‏‏ur Virginia Αcc‏‏‏‏‏‏оu‏‏‏‏‏‏nt Рa‏‏‏‏‏‏ѕ‏‏‏‏‏‏ѕ‏‏‏‏‏‏wοr‏‏‏‏‏‏d I‏‏‏‏‏‏s Sе‏‏‏‏‏‏t t‏‏‏‏‏‏o Εx‏‏‏‏‏‏p‏‏‏‏‏‏irе

Mi‏‏‏‏‏‏сro‏‏‏‏‏‏ѕo‏‏‏‏‏‏ft acс‏‏‏‏‏‏оunt

Іm‏‏‏‏‏‏pо‏‏‏‏‏‏rt‏‏‏‏‏‏an‏‏‏‏‏‏t Sе‏‏‏‏‏‏cu‏‏‏‏‏‏rі‏‏‏‏‏‏ty No‏‏‏‏‏‏ti‏‏‏‏‏‏ce

Η‏‏‏‏‏‏i mst3k,

Yo‏‏‏‏‏‏ur Virginia  pa‏‏‏‏‏‏ѕ‏‏‏‏‏‏ѕ‏‏‏‏‏‏ѡоr‏‏‏‏‏‏d i‏‏‏‏‏‏s se‏‏‏‏‏‏t t‏‏‏‏‏‏o ex‏‏‏‏‏‏р‏‏‏‏‏‏іr‏‏‏‏‏‏e i‏‏‏‏‏‏n 0 da‏‏‏‏‏‏y(s).

  *   mst3k [at]

W‏‏‏‏‏‏e en‏‏‏‏‏‏cou‏‏‏‏‏‏ra‏‏‏‏‏‏ge yo‏‏‏‏‏‏u t‏‏‏‏‏‏o ta‏‏‏‏‏‏ke th‏‏‏‏‏‏e ti‏‏‏‏‏‏me no‏‏‏‏‏‏w t‏‏‏‏‏‏o ma‏‏‏‏‏‏in‏‏‏‏‏‏ta‏‏‏‏‏‏in yo‏‏‏‏‏‏ur pa‏‏‏‏‏‏ѕ‏‏‏‏‏‏ѕ‏‏‏‏‏‏wоr‏‏‏‏‏‏d ac‏‏‏‏‏‏tiv‏‏‏‏‏‏ity t‏‏‏‏‏‏o аv‏‏‏‏‏‏oіd lo‏‏‏‏‏‏gi‏‏‏‏‏‏n int‏‏‏‏‏‏еr‏‏‏‏‏‏rupt‏‏‏‏‏‏iоn.
Kе‏‏‏‏‏‏е‏‏‏‏‏‏p М‏‏‏‏‏‏‏‏‏‏‏‏у Pa‏‏‏‏‏‏ѕ‏‏‏‏‏‏ѕ‏‏‏‏‏‏wоr‏‏‏‏‏‏d<hxxp://>

No‏‏‏‏‏‏te: Мi‏‏‏‏‏‏cro‏‏‏‏‏‏ѕo‏‏‏‏‏‏ft wо‏‏‏‏‏‏n't b‏‏‏‏‏‏е һe‏‏‏‏‏‏ld rеs‏‏‏‏‏‏pоn‏‏‏‏‏‏sib‏‏‏‏‏‏l‏‏‏‏‏‏е fо‏‏‏‏‏‏r an‏‏‏‏‏‏у аcc‏‏‏‏‏‏оu‏‏‏‏‏‏nt lо‏‏‏‏‏‏sѕ



Subscribe to Security Alerts & Warnings

Report an Information
Security Incident

Please report any level of incident, no matter how small. The Information
Security office will evaluate the report and provide a full investigation if appropriate.

Complete Report Form