Posts written by gerwitz

Would You Like to be Chair/Speaker in IDDST 2023, Amsterdam, The Netherlands?

March 28, 2023

This email initially looked legitimate. The signature at the bottom is a legitimate domain name and the conference is being held on the date/location stated in the email. But the person who sent the email is suspect because the domain was only recently created and it has no web presence. The sender would use this […]

Important Fax Received

March 28, 2023

This email has an attachment with malicious code that could be downloaded to a computer or mobile device once it is opened. A red flag for this email is the From field and Reply-To field make it look like it is coming from a uthscsa.edu address. But the label under the attachments shows it is […]

Prelim HUD

March 27, 2023

The attachment in this email contains a possible Trojan. Trojans quietly download to a person’s computer and gather information before infecting the machine. 

uthscsa.edu Confirmation Request Access Friday, March 24, 2023 – 12

March 24, 2023

This is an example of why hovering over the links helps confirm the email isn’t legitimate and clicking the links is probably dangerous. The broken image link goes to a YouTube page. The Authentication link has a redirect to a unknown web page. The sender’s domain name belongs to a restaurant in Lebanon. If you […]

Invoice #11012 paid – see attached receipt

March 24, 2023

This is a Phishing email. The idea is to get the receiver to believe they have been charged for something they never purchased, so they will contact the sender to clear up the issue. The sender will be very helpful and ask personal questions to help “clear up the issue”. This is a common Phishing […]

Action Required: uthscsa.edu Password Expiration on 2/13/2023 (Today’s date)

February 13, 2023

This email subject line is designed to create a sense of urgency in the receiver. The idea is to keep the receiver from looking too closely or spending time deciding if it is true. The scammers are counting on the idea you can’t let your password expire. There are other red flags with this email […]

Thank You For Your Order – Geek Squad

February 1, 2023

This is a known phishing scam designed to entice the receiver to call the phone number listed. Since the receiver never ordered their service and they write that the money will be withdrawn from your savings account, they hope you will not think about it too much and will just call the number to clear […]

Pending Payment

January 5, 2023

This email has a number of red flags. The email address appears different from the actual address and even uses the username of the recipient as the domain name. The salutation just has the username instead of a proper name. Hovering over the “Open Secure Document” link reveals a redirect to a site that has […]

ITs or Email Maintenance

December 22, 2022

Two different emails with a graphic embedded with a link. In some of the emails the graphic can’t be displayed, but they point to the same URL. The URL is dangerous and this is an attempt to download malicious software to your computer or device. The subject line is either ITs or Email Maintenance. If […]

Billingdesk#

December 5, 2022

The subject line of this email will have a series of numbers after the pound/hashtag sign. The big red flag for this email is the email address that sent it. PayPal emails will always come from a PayPal.com address. The purpose of this scam is to make someone believe there was a large payment made […]