Uncategorized
Voice Message
August 29, 2024
This phishing email presents itself as a voice message notification from a VoIP service, attempting to lure the recipient into clicking on a malicious link by claiming they have a missed call record. The email uses deceptive tactics, including a seemingly legitimate “Play” button that directs to a malicious link and an attempt to impersonate […]
BOI Reporting Notice
August 12, 2024
This scam is presented as an official notice from the fabricated “U.S. Business Compliance Commission,” which targets businesses with the threat of penalties for non-compliance with fictional regulations. The document leverages urgent language and threats of significant fines to manipulate recipients into submitting their Social Security Numbers and making payments through a provided link, which […]
RE-ENROLL AUTHENTICATOR DUE TO MICROSOFT SHUTDOWN
July 23, 2024
This email impersonates a UTHSCSA employee, prompting users to update their credentials. The link redirects to a malicious site, and the provided IT support phone number differs from the official IMS support desk. Please report this email and avoid clicking any links.
First Name Last Name
July 15, 2024
This email subject has either the recipient’s first and last name or someone else’s first and last name. In some cases they sent the email to someone with the same last name but didn’t have the correct first name. Here are the red flags that help show this is a Phish Attempt. Sender used a […]
Final Notification – Urgent Attention Required.
July 15, 2024
This email is designed to make someone think they have a pending legal case against them. Even if the receiver has never had any payday loans, they could believe they are a victim of fraud and would want to get their name cleared. If the receiver replied to this email, they would be asked to […]
Assistance Program Eligibility
July 10, 2024
One of the first things to check is who sent the email. Since the Employee Assistance Program is part of HR, it would make more sense for this to have come from someone in HR. The second red flag is the URL isn’t associated with UT Health SA. The third thing to check is how […]
🛡️ Alert From Google
June 25, 2024
This phishing email uses several tactics to deceive recipients into clicking on a malicious link. The email impersonates Google with suspicious branding and contains an external email address that doesn’t match legitimate Google domains. The content of the email creates a sense of urgency by warning about a detected virus, prompting users to click a […]
6550-Uthscsa: Accept the proposal and return
June 5, 2024
This phishing email targeting UTHSCSA employees leverages several tactics to deceive recipients and avoid detection. Here are the key elements and red flags: Suspicious Branding and Font: The DocuSign logo appears distorted and irregular, which is a common indicator of a phishing attempt. Authentic emails from companies typically maintain consistent and professional branding. Sender Address […]
Action Needed: Help Us Trace COVID-19 Exposure
June 4, 2024
A breach occurred at one of the UT Campuses and was the direct result of people believing the Phish was a legitimate request. The breach included gaining the credentials of the targeted employees and even registering the attacker’s phone with Duo. The result of the breach was 3 people had their payroll checks redirected to […]
Informational-severity alert:Creation of forwarding/redirect rule Case ID:IPx2rFL
May 15, 2024
This phishing email employs a fake security alert from Microsoft 365 to exploit the recipient’s trust and urgency, warning of a newly created forwarding rule to prompt immediate action. It uses a seemingly official Microsoft domain and format to appear legitimate, while embedding a malicious link designed to harvest credentials or install malware. The email’s […]