Posts written by gerwitz

UT Career Center / Office For Disabilities

November 12, 2024

This email has many red flags that show it is not a legitimate email. The generic greeting should give you pause but is not always a sign of a phish. However, when you look at other parts of this email, there are enough other red flags to conclude this is a phishing attempt. If you […]

Smishing Scams Increasing Activity

October 28, 2024

This isn’t about an email. It is about Smishing Scams. Smishing is like a phish but it comes in the form of Text Message through the SMS protocol. Some recent activity appears to be coming from a high level member of our university, but it has been identified as a scam. The phone number the […]

First Name Last Name

July 15, 2024

This email subject has either the recipient’s first and last name or someone else’s first and last name. In some cases they sent the email to someone with the same last name but didn’t have the correct first name. Here are the red flags that help show this is a Phish Attempt. Sender used a […]

Final Notification – Urgent Attention Required.

July 15, 2024

This email is designed to make someone think they have a pending legal case against them. Even if the receiver has never had any payday loans, they could believe they are a victim of fraud and would want to get their name cleared. If the receiver replied to this email, they would be asked to […]

Assistance Program Eligibility

July 10, 2024

One of the first things to check is who sent the email. Since the Employee Assistance Program is part of HR, it would make more sense for this to have come from someone in HR. The second red flag is the URL isn’t associated with UT Health SA. The third thing to check is how […]

Action Needed: Help Us Trace COVID-19 Exposure

June 4, 2024

A breach occurred at one of the UT Campuses and was the direct result of people believing the Phish was a legitimate request. The breach included gaining the credentials of the targeted employees and even registering the attacker’s phone with Duo. The result of the breach was 3 people had their payroll checks redirected to […]

bugs in your site

February 29, 2024

This is a new type of Phish where the person is offering up their services to help identify some vulnerabilities. They are hoping you will pay them for the information they give you. If not, they are counting on you feeling like they will exploit the vulnerabilities if you don’t pay. There are actually some […]

Apply Now

February 2, 2024

A quick browser search using the domain name iconpln.co.id and Red Cross shows a number of companies/universities reporting this phish. The Red Cross uses their own domain name for correspondence; their email address format is FirstName.LastName@redcross.org. Any email coming from the Red Cross would be using that format with redcross.org. The link points to arc-careers.com. […]

Suspicious Login Detected

January 2, 2024

This email is designed to have you access the PDF file in someone’s Google Drive or contact the email address to find out what to do next. This is a scam and the PDF file probably has malicious code. See the Red Flags listed below for information on why this is not a legitimate email. […]

Generous Christmas Gift

January 2, 2024

This has been identified as a Phishing Email. Here are the Red Flags to look for in this email. Unexpected Offer: The email presents an unusually generous offer, which is a common tactic used in phishing to lure individuals with the promise of high-value items for free. Generic Greeting: The email starts with a generic […]