Month: March 2023

RE:

Seems to be job scam season, this is the fourth job scam phish seen this week. Tactics are same as other job scams trying to lure people with too good to be true offers. The sender email and the email to contact are different, moreover this email pretends to be coming from WHO but the sender email address is clearly not from this organization. The email given, to contact, is clearly made to seem that it belongs to WHO but it is a fake domain. The phisher is asking to contact using personal email address, this a major red flag, as it is to evade UVic detection.

Please don’t be in a hurry to respond or click on attachments. Always look for red flags and when in doubt contact helpdesk.

 

APPLY FOR A RESEARCH ASSISTANT POSITION

This job scam phish was received over the weekend, observed various subjects such as “APPLY FOR A RESEARCH ASSISTANT POSITION”,  “Job Opportunity At UNIVERSITY OF VICTORIA”, “STUDENT EMPLOYMENT OPPORTUNITIES”, “APPLY FOR A RESEARCH ASSISTANT POSITION”, “UNIVERSITY OF VICTORIA Student Employment Openings”, “Research Assistants Needed At UNIVERSITY OF VICTORIA”.

Phishing signs:

  1. Impersonates a Professor from a UVic department. Sender name is different from the impersonated professor.
  2. Sender email address is external.
  3. Too good to be true offer.
  4. Asking to contact via phone, to evade UVic detection.
  5. Formatting and grammatical errors.

Never be in hurry to respond, take your time to look for phishing signs and if in doubt consult with helpdesk.

Student Research Assistant Urgently Needed

This is a job scam phish. These type of phishes usually try to trick students by giving “too good to be true” offer. This phish impersonates a professor in a UVic department but looking at the email address confirms that this is an external address which wouldn’t be a case if coming from a UVic employee in their professional capacity. The scammer is asking for a gmail address, which is a red flag, to evade UVic detection.

Never be in a hurry to respond, take your time to look for phishing signs and if in doubt consult with helpdesk.

 

UVic Emergency Email Maintenance

Another phish that is crafted to steal your UVic credentials.

The sender is clearly external and the link is clearly external – you can see it by hovering over it with the mouse cursor.

Remember, if in doubt – never click the links in the email. Instead open the main web page of the organization – whether UVic or your bank, CRA, etc  and find your way to the desired setting from there.

Please do not be curious and do not click on the links in phish emails, sometimes they may contain malware to infect your computer instantly. Our experts open them in specialized isolated environment.

IT Helpdesk

Another phish that claims to help you keep your current password. This does not make sense. The UVic Helpdesk would never send you an email it order to keep a password unchanged.

The sender is clearly external and the link is clearly external – you can see it by hovering over it with the mouse cursor. The goal of course is to steal your credentials.
Please do not be curious and do not click on these links, sometimes they may contain malware to infect your computer instantly. Our experts open them in specialized isolated environment.

RE: Document10_23

This phish tries to look like a secure file that came from an internal system, but in reality the uvic.ca sender address has been spoofed.

Other signs that this email is not legitimate:

  • There are grammatical and capitalization errors, including the incorrect “Uvic” in the sender display name
  • The email creates a false sense of urgency by saying the file will expire tomorrow
  • Hovering over “Get your file” would reveal a destination link that’s not on UVic or Microsoft.
  • The broken images might also be a bad sign, but in this case it’s not clear whether they would have worked in a different mail client.