Security Alerts & Warnings

This page lists current warnings regarding suspicious email messages and other cybersecurity hazards at the University of Virginia. For guidance on how to secure yourself against these hazards, be sure to visit our tip of the month.
Regarding Suspicious Email Alerts
Messages similar to the suspicious emails listed below may be related to phishing scams, schemes to commit identity theft, or other attempts to compromise users’ machines or personal information.
- If you receive an email similar to any of the suspicious emails on this page, DO NOT respond—delete it immediately!
- Do not click any links in the email, and do not “unsubscribe” or acknowledge the email in any way.
- If you receive an email that appears “phishy” and are unsure if it’s legitimate, and it is not listed below, please report it to us by forwarding it to [email protected].
Security Alerts and Suspicious Items Currently Affecting UVA:
[Posted: Jan 14, 2020 10:10 AM]
From: Microsoft Team <no-reply“[at]”microsoft.com>
Reply-To: "account-security-noreply“[at]”accountprotection.microsoft.com" <account-security-noreply“[at]”accountprotection.microsoft.com>
Date: Monday, January 13, 2020 at 4:47 PM
To: "UVA User“[at]”virginia.edu" <UVA User“[at]”virginia.edu>
Subject: Microsoft account unusual sign-in activity
Microsoft Account [hxxps://tinyurl.com/yxy7ybm3] <hxxp://onmicrosoft-log.dns.navy/log-in/regular>
Unusual Sign-in activity<hxxp://onmicrosoft-log.dns.navy/log-in/regular>
we detected unusual activity about recent sign-in to the Microsoft account UVA User“[at]”virginia.edu.
Sign-in details:
Country/region : United States/New York
IP address: 108.102.02.110
Date: 12/01/2019 15:25 (GMT)
Browser : Chrome
Please go to your recent activity page and let us know if it was you or not. If it was not you, we will help you secure your account.
If it was you, we will consider such activity as reliable in the future.
Review recent activity
<hxxp://onmicrosoft-log.dns.navy/log-in/regular>Regards,
The Microsoft account Team
[Posted: Jan 6, 2020 2:05 PM]
From: fmatthew <fmatthew[at]hku.hk>
Date: Monday, January 6, 2020 at 1:30 PM
To: "IT_helpdesk[at]webmaster.com" <IT_helpdesk[at]webmaster.com>
Subject: Caution on Your Mailbox Storage Usage
Your mailbox storage Usage is more than 90% on the email server.
90%
100%
At 100% limit Certain email features like;
• Sending messages
• Receiving messages
• Forwarding messages
will not be able available for your Usage.
Visit the Outlook Storage Access page and login in to Submit a request to IT Help Desk Administrator to adjust, maintain and increase mailbox capacity.
Visit the Outlook Storage Access<hxxps://temp-domain-10118.foliowebsites.com/> and login to increase your mailbox capacity
IT Help Desk Admin
Information Technology Services
[Posted: Dec 24, 2019 12:16 PM]
From: Email Security Server< admin[at]genraltrade.com
Date: December 23, 2019 at 11:49:08 PM EST
To: mst3k[at]virginia.edu
Subject: Email Deactivation Request
..... [cid:anonymousprofilephoto.png]
EMAIL DEACTIVATION FOR
mst3k[at]virginia.edu
Our record indicates that you recently requested to deactivate your email and this request will be processed Immediately.
Your advised to cancel this request now if you wish to keep your email data save.
CANCEL DEACTIVATION<hxxps://www.uspaidclinicaltrials.com/wp-content/themes/twentytwenty/.../index/12...
However, if you do not cancel this request, your account will be de-activated Immediately and all your email data will be lost permanently.
Regards.
Email Administrator
You received this email to let you know about important changes to your Email Account and services.
© 2018 Administrator Inc.,1600 Amphitheatre Parkway, Mountain View.
et:100
[Posted: Dec 16, 2019 4:41 PM]
From: Eileen Lavis <care[at]maxnetonlinebd.com>
Sent: Monday, December 16, 2019 3:18 PM
To: User, Typical S (mst3k) <mst3k[at]virginia.edu>
Subject: Bonus, dated 12/16/2019
Hello,
Attached is a summary of Dec 2019 Bonus.
If you are unable to see the message below, click here to view hxxp://www.xiaoji.store/wp-admin/private-zone/individual-cSaZvPmU-dNCGQC0v2397N...
Best wishes,
Lisa Rose
Payroll Clerk
Eileen Lavis Team
[Posted: Dec 16, 2019 11:15 AM]
From: Microsoft Security <account-security-noreply[at]reply-us-.microsoft.com>
Sent: Monday, December 16, 2019 10:54 AM
To: User, Typical S (drp) <[email protected]>
Subject: Urgent verify your account
[hxxps://i.imgur.com/dNFh2Qa.png]<hxxp://microsoft-updated.sytes.net/microsofts-yes/outlook-yeah>
Your security info change is still pendig
your mailbox will expire on 17/12/2019.
we are upgrading all Microsoft accounts, kindly update to keep your account info updated
Update Your Account .
Update Your account <hxxp://microsoft-updated.sytes.net/microsofts-yes/outlook-yeah>
NOTE: Your email address will be disabled if Not updated before 13/12/2019.
Thanks,
Microsoft Security Essentials
Microsoft Teams office 365 <xxtp://microsoft-updated.sytes.net/microsofts-yes/outlook-yeah>
all rights reserved © 2019
[Posted: Dec 16, 2019 8:51 AM]
________________________________
From: Karen Rhea <Karen.Rhea[at]centerstone.org>
Sent: Monday, December 16, 2019 6:20:22 AM
To: [email protected] <info[at]help.com>
Subject: RE: ICT Service Desk : Mailbox Closure Confirmation
Dear user
According to our registration, you recently requested the closure of your email account. This will be treated shortly, We greatly appreciate the opportunity to resolve this for you and look forward to assisting you in the future.
If this request was made intentionally, please ignore this email. Otherwise, you can cancel request by Reactivating Account<hxxp://www.creator.swedish.domains/>. Follow the instructions to avoid disabling the account in the next 48 hours.
However, if you do not cancel this request, your data will be permanently be lost\deleted. We would like to hear your thoughts on our support, please take a few moments to complete some questions about your experience:
Regards,
ICT Service Desk
Microsoft Exchange Administrator.
© copyright 2019
________________________________
The information contained in this Email message is private and confidential. It may contain Protected Health Information deemed confidential by HIPAA regulations. It is intended only for the use of the individual(s) named above, and the privileges are not waived by virtue of this information having been sent by Email. Any use, dissemination, distribution or copying of this the information contained in this communication is strictly prohibited by anyone except the named individual or that person's agent. If you have received this Email in error, please notify the sender immediately and destroy this Email. Thank You.
[Posted: Dec 9, 2019 8:31 AM]
From: Patricia Sherman <Patricia.Sherman[at]ucps.k12.nc.us<mailto:Patricia.Sherman[at]ucps.k12.nc.us>>
Sent: Saturday, December 7, 2019 6:41:34 AM
Subject: RE: ICT Service Desk : Mailbox Closure Confirmation
Dear user
According to our registration, you recently requested the closure of your email account. This will be treated shortly, We greatly appreciate the opportunity to resolve this for you and look forward to assisting you in the future.
If this request was made intentionally, please ignore this email. Otherwise, you can cancel request by Reactivating Account<hxxps://forefront.yolasite.com/>. Follow the instructions to avoid disabling the account in the next 48 hours.
[Posted: Dec 6, 2019 1:11 PM]
Sent: Friday, December 6, 2019 11:37:53 AM
Subject: Don't Wait to Purchase Capital One Orange Bowl Tickets!
|