Uncategorized
Beware of Phishing Links Disguised as Dropbox Files
September 24, 2024
Beware of Phishing Links Disguised as Dropbox Files Phishing attacks are evolving, and the latest trend that’s catching people off guard is the use of trusted cloud services like Dropbox to deliver malicious content. Why? Because we all know Dropbox. It’s convenient, reliable, and most importantly, it feels safe. But that’s exactly why […]
Information Sheet – Claim #UT System, Case# 2024 CA
September 24, 2024
The phishing email is a credential harvesting attempt that impersonates Microsoft Support Desk, alerting the user to undelivered emails due to Office365 quarantine. It prompts the user to review and restore messages by clicking a link. The email creates urgency by warning the user that the messages will be deleted in 24 hours if no […]
You received a 3gVoip Message
September 12, 2024
The email is designed to appear as an urgent notification from Microsoft, alerting the recipient about a voice message supposedly left by a contact. The message prompts the recipient to click a link to “Play/Listen” to the message, which is actually a malicious link. Red Flags: Non-Microsoft Domain: The sender’s email address does not belong […]
Undelivered Messages
August 29, 2024
This phishing email pretends to be a notification about undelivered Microsoft 365 messages. It uses social engineering tactics to entice the recipient to click on a malicious “Review” button by claiming there are three undelivered messages awaiting attention. The email attempts to impersonate Microsoft, making it appear as a legitimate communication. Red Flags: Suspicious External […]
Voice Message
August 29, 2024
This phishing email presents itself as a voice message notification from a VoIP service, attempting to lure the recipient into clicking on a malicious link by claiming they have a missed call record. The email uses deceptive tactics, including a seemingly legitimate “Play” button that directs to a malicious link and an attempt to impersonate […]
BOI Reporting Notice
August 12, 2024
This scam is presented as an official notice from the fabricated “U.S. Business Compliance Commission,” which targets businesses with the threat of penalties for non-compliance with fictional regulations. The document leverages urgent language and threats of significant fines to manipulate recipients into submitting their Social Security Numbers and making payments through a provided link, which […]
RE-ENROLL AUTHENTICATOR DUE TO MICROSOFT SHUTDOWN
July 23, 2024
This email impersonates a UTHSCSA employee, prompting users to update their credentials. The link redirects to a malicious site, and the provided IT support phone number differs from the official IMS support desk. Please report this email and avoid clicking any links.
First Name Last Name
July 15, 2024
This email subject has either the recipient’s first and last name or someone else’s first and last name. In some cases they sent the email to someone with the same last name but didn’t have the correct first name. Here are the red flags that help show this is a Phish Attempt. Sender used a […]
Final Notification – Urgent Attention Required.
July 15, 2024
This email is designed to make someone think they have a pending legal case against them. Even if the receiver has never had any payday loans, they could believe they are a victim of fraud and would want to get their name cleared. If the receiver replied to this email, they would be asked to […]
Assistance Program Eligibility
July 10, 2024
One of the first things to check is who sent the email. Since the Employee Assistance Program is part of HR, it would make more sense for this to have come from someone in HR. The second red flag is the URL isn’t associated with UT Health SA. The third thing to check is how […]