Uthscsa Benefit Report on October 28, 2021

This email below has been confirmed as malicious or fraudulent by the Information Security department. If you have received this phishing email, do not open any attachments or follow the link(s) in the message; simply delete the email.

This phish appears to come from the University’s Human Resources office regarding benefits payments.  The phish is poorly branded using an old logo and improper branding.  It contains two attachments: a Microsoft logo and a malicious HTML file.  The HTML file downloads malicious software to the computer and then sends the browser to a malicious web site intended to look like a University web page.  The malicious web site is designed to steal login credentials.

Article Categories: Uncategorized