Search This Site


Main menu

Security Alerts & Warnings

This page lists current warnings regarding suspicious email messages and other cybersecurity hazards at the University of Virginia.  For guidance on how to secure yourself against these hazards, be sure to visit our tip of the month.

Regarding Suspicious Email Alerts

Messages similar to the suspicious emails listed below may be related to phishing scams, schemes to commit identity theft, or other attempts to compromise users’ machines or personal information.

  • If you receive an email similar to any of the suspicious emails on this page, DO NOT respond—delete it immediately!
  • Do not click any links in the email, and do not “unsubscribe” or acknowledge the email in any way.
  • If you receive an email that appears “phishy” and are unsure if it’s legitimate, and it is not listed below, please report it to us by forwarding it to [email protected].

Security Alerts and Suspicious Items Currently Affecting UVA:

[Posted: Jul 19, 2019 10:16 AM]

From: Eduard Khudainatov [mailto:aneftegazxoldingy[at]] 
Sent: Friday, July 19, 2019 4:09 AM
To: mst3k[at]


Dear Sir / Madam,

I am very pleased to come across your esteemed company and so decided to contact you to see if you will find this Interesting. I am a mandate to big Russian refinery here in the Federation of Russia and I would like to bring you this good offer. Attached here is seller's offer for your review and if interested, kindly get back to me for immediate proceedings.

Best Regard

[Posted: Jul 15, 2019 8:30 AM]

From: University of Virginia <webmailaccountupgrade8[at]>
Sent: Monday, July 15, 2019 8:13 AM
Subject: UVA: Email Account Verification Alerts!

Dear UVA User:

Your University of Virginia E-mail Account is due for upgrade.

Kindly upgrade immediately to avoid E-mail Account suspension or shut down.

Click Here To Upgrade Now<hxxp://>

Note-: Please kindly upgrade your University of Virginia E-mail Account immediately, failure to do so will lead to account suspension.

| UVA. ICT Department...
© 2019 University of Virginia.

[Posted: Jul 12, 2019 11:13 AM]


Mail Quota: (98% Full)


Attention: mst3k[at] 

Your email quota has reached 98% and will soon exceed its limit. 
Click below to upgrade your quota to 250GB for free to avoid loss of email data. 

Upgrade Email Quota To 250GB Free 
If your email quota gets exceeded, your mailbox will be shutdown and all data will be permanently lost.    

Source: Email Administrator

[Posted: Jul 9, 2019 3:41 PM]

From: User, Typical <> On Behalf Of Sales Manager
Sent: Tuesday, July 9, 2019 2:47 PM
Subject: Invoice

To whom it may concern.

Kindly correct the attached invoice and send back for payment asap.

Best Regards.
James Pyne

[Posted: Jul 9, 2019 9:25 AM]

Untitled Document
Online virus scanner

 Dear mst3k[at],

 Your email requires immediate scanning for virus . Kindly be informed that ignoring to scan your system within the next 72

 hours might lead to losing of  your important files and messages.

 Click below to complete scanning and update your Email now to avoid losing your important files and messages.

Complete scan >> >>  [hxxp://[at]]

 Thank you.
 Email Administrator
 Copyright 2019 Inc

[Posted: Jul 8, 2019 12:14 PM]

From: Kelly, Robert G (rgk6y) <rgk6y[at]>
Sent: Monday, July 8, 2019 11:08 AM
Subject: I am sharing 'INVOICE0929.pdf' with you from SharePoint




Robert G.Kelly shared a secure PDF file with you via Microsoft Share Point

Your report is in PDF format, click here to view<hxxps://>.

Please Note: This document has been scanned against phishing /virus.



Robert G. Kelly FES FNACE

Editor, The Electrochemical Society Interface

                Current Issue: xxtp://

AT&T Professor of Engineering
MSE Department Associate Chair for Finance
Dept. of Materials Science and Engineering
University of Virginia
Wilsdorf Hall, Rm 328
395 McCormick Rd
P. O. Box 400745
Charlottesville, VA 22904-4745

(434) 555-5783<tel:%28434%29%20982-5783> (W)
(434) 555-5799<tel:%28434%29%20982-5799> (fax)<hxxp://>


On behalf of the Australian Corrosion Association:


[Posted: Jul 2, 2019 12:55 PM]

From: VIRGINIA WEBMASTER <enquiry[at]>
Date: Tuesday, July 2, 2019 at 12:50 PM
Subject: Important Update

Dear user,

    You have an update from Virginia Webmaster Click here<hxxp://> to read.

     Virginia Webmaster

[Posted: Jul 2, 2019 12:09 PM]

From: Adam Rabinowitz <Rabinowitz[at]>
Date: Tuesday, July 2, 2019 at 8:06 AM
Subject: Completed: Please DocuSign:

Adam Rabinowitz
 sent you a document to review and sign.


Thank You.
Powered by

Adam Rabinowitz | Media and Strategy Project Manager
Collaborative Communications Group
office: (123) 456-7890 | cell: (123) 456-7809<hxxp://www.collaborativecommunicatio...
Connect to me on LinkedIn<hxxp://>

[Posted: Jul 1, 2019 9:31 AM]

From: WeTransfer [mailto:noreply[at]]
Sent: Monday, July 01, 2019 8:47 AM
To: User, Typical (kjh5e) <mst3k[at]>
Subject: mst3k[at] has received files via WeTransfer

Thanks for using WeTransfer! Your files were sent successfully.

[Click 'Download images' to view images]<hxxps://>

Files sent to
1 file, 21.9 KB in total * Will be deleted on 8th, July 2019
Dear mst3k as discussed please amend export license as attached.

Download link
1 file

To make sure our emails arrive, please add [email protected]<mailto:noreply[at]> to your contacts<hxxps://>.

Get more out of WeTransfer, get Plus
About WeTransfer * Help * Legal * Report this transfer as spam

[Posted: Jul 1, 2019 9:22 AM]

Subject:        RETRIEVE MAILS:- Cloud stopped the delivery of 11 mails
Date:   Sun, 30 Jun 2019 18:20:33 -0700
From:   Support || <[email protected]><mailto:[email protected]>
To:     mst3k[at]<mailto:mst3k[at]>



Retrieve here<hxxps://[email protected]>

Settings | Help | Opt-out  | Download app, 90055 Plug Street, 900 U turn San, CA 94103<>

[Posted: Jun 30, 2019 5:33 AM]

From: Boye, Teeja <BoyeT19[at]>
Date: Fri, Jun 28, 2019 at 3:29 PM
Subject: New Job Alert!!! (HR-Department)
To: mst3k[at] <mst3k[at]>

*I am  Boye Teeja** from DARDEN **UNIVERSITY OF VIRGINIA**. You have
received this email because you have an offer from the University Office to
work these summer for the HR-Department. You will be paid $300 Weekly! If
interested Kindly Click Here <hxxps://> to
send your resume.*

*Thank You,*
*Boye Teeja*
*. *

[Posted: Jun 27, 2019 4:50 PM]

From: MyVirginia <grapetester[at]>
Reply-To: MyVirginia <grapetester[at]>
Date: Thursday, June 27, 2019 at 4:39 PM
Subject: University of Virginia

This message is brought to you by the University of Virginia Directory, Click on REVIEW<hxxp://> to read now.

[Posted: Jun 27, 2019 10:37 AM]

Dear mst3k[at]

You have undelivered emails on the server. These emails have not been properly synced with your mailbox. To synchronize your mailbox with your host. click below

Download your emails <hxxp://[at]>

However, if you do not retrieve your undelivered emails now, they may be lost for ever.
and all your email data will be lost permanently.

 Email Server


This message is auto-generated from E-mail security server. Do not reply to this message
(c)2019 All Rights Reserved.

[Posted: Jun 27, 2019 10:21 AM]

From: Don Cartier <forexloanorganization[at]>
Sent: Wednesday, June 26, 2019 9:44 PM
Subject: Financial Service Funds

Fortress Capital Investment
Loan Order Department

This is from Capital Financial Loan Investment, we offer Personal Loan, Business Loans, Students Loan
with a very low interest rate and with or without collateral.

We are very solid and have the capacity to swift large amount of funds
across to local and abroad. If you are interested, reply back to commence
loan approval

Full Name: .................
Loan Amount: .................
Phone Number: .................
Country: ....................

We shall contact you with more details to complete your application
through email/phone

At Your Service,
Mr. Don Cartier
Loan Application Director
Capital Financial Loan Investment

[Posted: Jun 27, 2019 9:08 AM]

From:<hxxp://> <sales[at]<mailto:sales[at]>>
Subject: ✉ DEAR mst3k Messages Pending Delivery On Your e-Mail Portal
Date: June 26, 2019 at 3:11:11 PM EDT
To: mst3k[at]<mailto:mst3k[at]>

Dear Mail User

You have Three (3) Messages Pending Delivery On Your e-Mail Portal Since: 14 June 2019.
This messages can be viewed by the subject of each message or proceed to  sign in   to Release   Message on your e-Mail Account below.

User ID:    mst3k[at]<mailto:mst3k[at]>

  Status          Subject                                                            Recipient                                     Date
Pending:   RE:  Statement Of Account Notice<hxxps://[at]> To:<hxxp://>   14-06-2019
Pending:   Fw:  Proforma Invoice/Contract<hxxps://[at]>   To:<hxxp://>   17-06-2019
Pending:  RE: Outstanding Payment: $87,500.00<hxxps://[at]>       To:<hxxp://>   19-06-2019

Sign In And Verify<hxxp://[at]>
 Web Admin (C) 2019 Secured Service.
<hxxp://> • Web Admin • Redmond, WA 98052
          You are receiving this one-time notification because you created mst3k[at]<mailto:mst3k[at]> account.

[Posted: Jun 27, 2019 8:57 AM]

From: Charles Schwab <proregion_cv07[at]>
Sent: Wednesday, June 26, 2019 7:29 PM
To: Recipients <proregion_cv07[at]>
Subject: Account Notice

Delayed contribution listed on your account requires urgent attention.
Please VERIFY NOW at IRA \ Verification portal<hxxps://>.

[Posted: Jun 26, 2019 12:05 PM]

From: Typical User (mst3k) <mst3k [at]>
Sent: Wednesday, June 26, 2019 9:52 AM
Subject: Completed: Please DocuSign:




[Posted: Jun 24, 2019 10:54 AM]

From: Finance [mailto:hrs2n[at]]
Sent: Sunday, June 23, 2019 4:26 AM
To: User, Typical (mst3k) <mst3k[at]>
Subject: Finance Department


You have (2) new notification from the finance department.
Log into your account to view<hxxps://>


1902 MAGELLAN CT LOUISVILLE KY 40210, louisville, KY 40210

Unsubscribe<hxxps://> - Unsubscribe Preferences<hxxps://>

[Posted: Jun 24, 2019 9:41 AM]

From: frederic.lienhart[at] <frederic.lienhart[at]>
Sent: Monday, June 24, 2019 9:24:45 AM
To: mst3k[at]
Subject: Claim 312909511

Payment Claim 814789373

Please see attached 151945058 invoice for payment.




[Posted: Jun 19, 2019 4:00 PM]

From: mark hunk <markhunk3232[at]>
Date: Tue, Jun 18, 2019 at 4:44 PM
To: mst3kat] <mst3k[at]>


Hello ,


I have received your information and after a little consideration i have offered you an opportunity to work with me and i hope to have 100% of your loyalty and co-operation. Test of your loyalty, honesty and sincerity will be carried out from time to time.  Your quick response to mails and effectiveness in discharge of your duties will be required and I urge you to be as focus as you can and always work according to instructions. 

I would like you to start immediately if you accept this offer. I have a load of pending workload i would like us to get on with.

Every month, UNICEF and various foundation engage in a Corporate Social Responsibility by catering for needs of foster homes across the States. There are list of items to be gotten this month and my team will be responsible for purchasing of the item and delivering it. The good news is you are part of the team.


You will be responsible for the purchase of some items, electronic and sundry materials which you would shop for and ship to foster homes across the state to put a smile on their faces. 


Please note that a Check will be sent to you which will be used to funds the purchase of items for the foster homes and your first week payment. Once you have received funds, i will email you a list containing the mailing addresses of the foster homes where the gifts will be sent.


I will get back to you with more information including the tracking number of the check payment once  i receive it from my Financial Manager because you are expected to receive it through the Mail. .


Please Re-confirm the Name and Address in the offer letter to avoid any loss or misplacement of check payment.


Name: User, Typical

Address: 12 So. North St., Katonoon, NC 99999

Phone: 111-555-1212


Sent from Dr. Mark H.


Subscribe to Security Alerts & Warnings

Report an Information
Security Incident

Please report any level of incident, no matter how small. The Information
Security office will evaluate the report and provide a full investigation if appropriate.

Complete Report Form