Phishing Awareness

Phishing_SANS

What is phishing?

Phishing is an online scam involving carefully crafted emails with a link that appear to be from a trusted source, but are not. Sophisticated phishing attempts use a bank, credit card company, department store, or even the University. By clicking a phishing scam link, you may compromise your Villanova Account and the Villanova Network, and allow viruses/malware to infect your computer.  

Phishing messages do not ask for you to respond with your information by email. Instead these messages have links that look like they will send you to a legitimate site, but instead send you to a copy designed to steal your personal information. To be safe do not click on links in the email; visit websites by typing the web address directly into your browser's address bar.

If a message sounds suspicious or too good to be true, it is most likely an attack.  Simply delete the message. To protect yourself, keep the following in mind:

  • If you are suspicious about a message from someone you know call the person to verify if it was truly them that sent it.
  • Be suspicious of any email directed to “Dear Customer” or some other generic salutation.
  • Be skeptical of any message that requires “immediate action,” 
  • Be suspicious of messages that have grammar or spelling mistakes. 
  • Before you click on a link “hover” your mouse over it. This will display the true destination of where you would go and is often an illegitimate website.                 

It is important that you learn to spot phishing attempts - no matter what they look like - to protect yourself and your personal information.

UNIT will post any known phishing campaigns to this site as a reminder of any ongoing or known attempts at phishing.  Please reference our User Awareness campaign to access helpful videos and tips to prevent from being victim to Phishing and other cyber related threats.

 

phish 10_2_17

Date of Phishing Campaign: 10/2/17

Approximate Time of Communication: 8:AM-11AM EST

Details:  This is a fake message sent indicating your access to Email is scheduled for suspension. The attached link will send you to a website that would steal your user credentials. 

Recommendation:  If you have received this message, please delete immediately.  Should you have clicked on the link, please reach out to UNIT's TechZone

An example of the message can be found above.

phish

Date of Phishing Campaign: 3/10/16

Approximate Time of Communication: 12:PM-12:30PM EST

Details:  This is a bogus message sent indicating your access to Blackboard will soon expire. The attached link will send you to a website that would steal your user credentials. 

Recommendation:  If you have received this message, please delete immediately.  Should you have clicked on the link, please reach out to UNIT's TechZone

An example of the message can be found above.

Phish 3_1_16

Date of Phishing Campaign: 3/1/16

Approximate Time of Communication: 12:27PM-12:30PM EST

Details:  This is a bogus message sent referencing an upgrade opportunity for your mailbox.  Upon review and if you hover over the link, it sends you to a website that would steal your user credentials. 

Recommendation:  If you have received this message, please delete immediately.  Should you have clicked on the link, please reach out to UNIT's TechZone

An example of the message can be found above.

 

Phish 3_10_16

Date of Phishing Campaign: 3/10/16

Approximate Time of Communication: 10:45AM-11:15AM EST

Details:  This message contains a link that redirects the user to a spoofed login for Citi bank's website.   

Recommendation:  If you have received this message, please delete immediately.  Should you have clicked on the link, please reach out to UNIT's TechZone  

It is also advised to consider reseting your CITI account password through CITI directly.   

An example of the message can be found above.

 

Date of Phishing Campaign: 4/9/16

Approximate Time of Communication: 12:20PM - 12:45PM EST

Details: The email comes from "nextcreditsuntrust@gmail.com" with a blank subject line. Following the link contained in the email redirects to the user to a fake login page with various email logos.

Recommendation: If you have received this message, please delete immediately. Should you have clicked on the link, please reach out to UNIT's TechZone

 


 

Spam 4_21

Date of Phishing Campaign: 4/21/16

Approximate Time of Communication: 8:00AM - 8:45AM EST

Details: The email comes from  joralber@umail.iu.edu and instructs the user to follow a link to a fake webmail login page.  

Recommendation: If you have received this message, please delete immediately. Should you have clicked on the link, please reach out to UNIT's TechZone

See image above for further details.

Phish_4_25_16

Date of Phishing Campaign: 4/25/16

Approximate Time of Communication: 5:49AM-6:00AM EST

Details: The email comes from stephenstom@umsl.edu and instructs the user to follow a link to a web page containing a form to complete with personal identifiable information

Recommendation: If you have received this message, please delete immediately. Should you have clicked on the link, please reach out to UNIT's TechZone

See image above for further details.

Phish 4_27_16

Date of Phishing Campaign: 4/27/16

Approximate Time of Communication: 2:40PM-3:00PM EST

Details: The email comes from jamie@tiouet.com and instructs the user to follow various links to false webpages. 

Recommendation: If you have received this message, please delete immediately. Should you have clicked on the link, please reach out to UNIT's TechZone

See image above for further details.

Phish 4_27_16

 

Date of Phishing Campaign: 6/6/16

Approximate Time of Communication: 12:40PM -3:00PM EST

Details: The email comes from Nogolide Gwangqana and instructs a user to follow a link to reset their webmail password.

Recommendation: If you have received this message, please delete immediately. Should you have clicked on the link, please reach out to UNIT's TechZone

See image above for further details.

 

Phish 4_27_16

 

Date of Phishing Campaign: 6/9/16

Approximate Time of Communication: 3:30EST - 3:54EST

Details: The email comes from [email_notifications@ecn.purdue.edu]‎ and contains a link that re-directs to a spoofed Blackboard Learn site. 

Recommendation: If you have received this message, please delete immediately. Should you have clicked on the link, please reach out to UNIT's TechZone

See image above for further details.

 

Phish 4_27_16

 

Date of Phishing Campaign: 6/9/16

Approximate Time of Communication: 3:30EST - 4:30EST

Details: The email comes from Blackboard.alerts@elearn.com‎ and contains a link that re-directs to a spoofed Blackboard Learn site. 

Recommendation: If you have received this message, please delete immediately. Should you have clicked on the link, please reach out to UNIT's TechZone

See image above for further details.

 

Phish 4_27_16

 

Date of Phishing Campaign: 8/17/16

Approximate Time of Communication: 8:00AM EST

Details: The email comes from Villanova Emergency leachkm@slu.edu
and contains a link that re-directs to a spoofed myNOVA site. 

Recommendation: If you have received this message, please delete immediately. Should you have clicked on the link, please reach out to UNIT's TechZone

See image above for further details.

 

Phish 8_28

 

Date of Phishing Campaign: 8/28/16

Approximate Time of Communication: 4:00PM EST

Details: The email comes from VILLANOVA.EDU <Pyper@bucknell.edu>
and contains a link to a fake Villanova login page.

Recommendation: If you have received this message, please delete immediately. Should you have clicked on the link, please reach out to UNIT's TechZone

See image above for further details.

 

Contact Us

University Helpdesk

Call Us: 610-519-7777
M-Th 8am-7pm
F 8am-5pm

Walk-ins: Vasey Hall Rm 101
M-Th 9am-7pm
F 9am-5pm

School of Law Helpdesk

Call Us: 610-519-7700
Walk-ins: Law Library Rm 104
M-F 9am-5pm

College of Engineering Support

Walk-ins: College of Engineering
and Research Rm 209
M-F 9am-5pm

Classroom Technologies Hotline

610-519-5631