Uncategorized
Informational-severity alert:Creation of forwarding/redirect rule Case ID:IPx2rFL
May 15, 2024
This phishing email employs a fake security alert from Microsoft 365 to exploit the recipient’s trust and urgency, warning of a newly created forwarding rule to prompt immediate action. It uses a seemingly official Microsoft domain and format to appear legitimate, while embedding a malicious link designed to harvest credentials or install malware. The email’s […]
Venmo Charge
May 8, 2024
This email falsely claims that $899 has been charged for an iPad to trick the recipient into authorizing this charge. It exploits PayPal’s trusted branding to create urgency and deceive the recipient into confirming a transaction that hasn’t actually occurred. Below are the red flags: Misleading Charge Information: The email falsely claims that $899 has […]
16 18 (my VIDS.pdf)
May 1, 2024
The following email contains a malicious PDF attachment labeled “my VIDS.pdf”. Below are the red flags: External Sender: The email is sent from an external address with a suspicious domain, indicating potential phishing. Suspicious Body Text: The message lacks meaningful content, making it look suspicious and inconsistent with legitimate communication. Malicious Attachment: The attached PDF […]
Available
March 28, 2024
This email attempts to impersonate a legitimate employee by using a real employee name, but originates from a suspicious external domain. There are many variation of this email utilizing different employee names. It is likely that the attacker is using publicly available directory information to target employees within a department by using a familiar name. […]
Document from HP LaserJet Pro Scanner
March 26, 2024
This email attempts to impersonate a notification from HP alerting the recipient that they have received a scanned document. The word document contained in the email contains a link to a website which attempts to impersonate hp.com. The URL was found to contain malware. Below are the red flags: Suspicious Attachment: Attachments are the most […]
Asset Works: User Password Expiration – Reminder
March 7, 2024
This email originates from awsupport@assetworks.com, which is a legitimate Asset Works account. Asset Works is software development company whose products are used by UT Health San Antonio for fleet vehicles and the gas needed for them. However, due to the suspicious nature and recent proliferation of these emails to various faculty outside the fleet vehicle […]
bugs in your site
February 29, 2024
This is a new type of Phish where the person is offering up their services to help identify some vulnerabilities. They are hoping you will pay them for the information they give you. If not, they are counting on you feeling like they will exploit the vulnerabilities if you don’t pay. There are actually some […]
Thanks fọr pļacíng Ọrder (Geek Squad)
February 29, 2024
This phishing email uses a common tactic of impersonating a Geek Squad invoice for a considerable charge. The tactics employed are designed to trick the recipient into calling the provided help desk number and disclosing financial information to the scammers. This particular example contains suspicious characters in the heading. Below are the red flags: Suspicious […]
helpdesk helpdesk (Norton AV Scam)
February 27, 2024
This email attempts to deceive the user into believing that they have received a bill for a substantial amount of money for the renewal of Norton products. The objective of this email is to trick the recipient into calling the provided phone number and revealing personal and financial information to the scammers. Here are the […]
modification of direct deposit details
February 27, 2024
This is a common phishing email which impersonates a legitimate employee in an attempt to redirect direct deposit payments to the attacker. below are the red flags: Mismatch Email: The email does not match the name of the sender, and is sent from an external account. Request for Sensitive Action: The sender is attempting to […]