Google+
ITS and UVa logos for printed output

Information Technology Security at UVa

Current Security Alerts & Warnings

This page lists current warnings regarding suspicious email messages and other cybersecurity hazards at the University of Virginia. You may also subscribe to this information via RSS.

Regarding Suspicious Email Alerts

Messages similar to the suspicious emails listed below may be related to phishing scams, schemes to commit identity theft, or other attempts to compromise users’ machines or personal information.

  • If you receive an email similar to any of the suspicious emails on this page, DO NOT respond—delete it immediately! Do not click any links in the email, and do not “unsubscribe” or acknowledge the email in any way.
  • If you receive an email that appears “phishy” and are unsure if it’s legitimate, and it is not listed below, please report it to us. Forward it to our email abuse team.

Items Currently Affecting UVa

Display Newest to Oldest • Display by Category

Suspicious Email: Mailbox Helpdesk

[Posted Apr 25, 2016 9:27]

From: Moore, Susan
Sent: Monday, April 25, 2016 7:38 AM
Subject: Mailbox Helpdesk

Dear Staff(s).

New security updates need to be performed on our servers,due to the rate of phishing. Please CLICK HERE and sign in to the IT Help server for maintenance and update of your mailbox.

If your mailbox is not updated soon, Your account will be inactive and cannot send or receive messages.

On behalf of the IT department, this IT Alert Notification was brought to you by the Help Desk Department. This is a group email account and its been monitored 24/7, therefore, please do not ignore this notification, because its very compulsory.

Sincerely,
IT Department

©2016 Microsoft outlook. All rights reserved.

Suspicious Email: 16102015_Proposal_Letter.pdf16102016_Proposal_Letter.adobe

[Posted Apr 22, 2016 13:42]

---------- Forwarded message ----------
From: Hacked User <xxx3x@virginia.edu>
Date: Fri, Apr 22, 2016 at 12:28 PM
Subject: 16102015_Proposal_Letter.pdf16102016_Proposal_Letter.adobe
To:


Hello, Please find the attached for your attention. I tried to upload and send earlier but got an error message “The file you are trying to send exceeds the 25MB attachment limit” So i had to send it using Adobe Secure.

FILESDOC.1

Open
Regards


Suspicious Email: Order id [randon number] - Shipped

[Posted Apr 22, 2016 12:14]

 
 
From: Andrew Shafer [mailto:andrewshafer@gasprecome.com]
Sent: Friday, April 22, 2016 11:50 AM
To: User, Typical (xxx5x)
Subject: Order id 14960967 - Shipped
 
Best New Gadget
You Have To See This
by mototech

26,123 reviews

Its being called the product of the year
Beam light over 2 miles away - Its the brightest light ever recorded
Police urge all Americans to carry this on them

In Stock And Available
Have it in your hands, April 22
if you order within 4 hr 2 mins

View Product Now

 




Documentary evidence can also be appended to the new form by an ess using the internetbased facility The IT department has four stages of appeal mechanism for the essees to put forth their grievance beginning with the Commissioner of IT Appeals the Income Tax Appellate Tribunal ITAT the High Court and finally the Supreme CourThe new form is applicable for the CIT Appeal fora and those taxpayers who file ereturns will be eligible to use this new facility In view of launch of this facility and activation of a select category of ITRs last week the taxman had also asked filers to update their profile and select higher security option to secure their efiling account created over the portal Electronic filing of appeal along with the documents relied upon before CIT Appeals will remove human interface reduce paperwork and decrease the transaction cost for the taxpayer It would ensure consistent and error service as validations will be inbuilt resulting in fewer deficient appeals Online filing will also facilitate fixation of hearing of appeals electronically The new format for filing of appeals is more structured objective systematic and aligned with the current provisions of the Income Tax Act the Central Board of Direct Taxes had earlier said With these changes it had said the burden of compliance on the taxpayers in appellate proceedings will be significantly reduced This story has not been edited by NDTV staff and is autogenerated from a syndicated feed London World markets struggled for direction on Monday with renewed strength in the yen government bonds and gold pointing to heightened caution among investors but a sharp rebound in European stocks suggesting a pentup appetite for risk As the US first quarter earnings season kicks off and G finance chiefs gear up for talks in Washington later this week on the sidelines of the IMF Spring meetings investors initially chose to play safe on Monday Europes main indices fell as much as per cent Japans yen rose to a month high against the and Germanys year bond yield hit a oneyear low The s fall to as low as yen prompted the Japanese government to warn that it could take steps to weaken the yens exchange rate The yens push higher and data shog a per cent fall in Japans core machinery orders in February helped drag the Nikkei per cent lower But a jump in Italian bank shares ahead of a meeting in Rome between the countrys largest lenders the Treasury and the central bank to set up a rescue fund then lifted European financials and broader indices A bout of risk aversion took hold in markets last week Uncertainty is evident again on Monday said Jasper Lawler markets analyst at CMC Markets





Remove your own name from our list here..... 91C N Malott Rd Okanogan Wa 98840-8301

or go here to be removed automatically.
4025 S Old Hwy 94, STE R, Saint Charles, MO 63304
Suspicious Email: * New Message Alert *

[Posted Apr 21, 2016 16:30]

From: -Account Member Services- [mailto:new_email@e-help.com]
Sent: Thursday, April 21, 2016 3:37 PM
To: xxx2x@virginia.edu
Subject: * New Message Alert *
 
* New Message Notification *

You have received a new message that has been marked as "Important" and requires your immediate attention.

Click here to review your message

Please Note: Messages received are stored temporarily and will be removed shortly

Thank you,

-Account Member Services-
.
Suspicious Email: Paid Receipt #21N9201

[Posted Apr 20, 2016 12:29]

From: LCS Billing Department [mailto:ar@lcs.com]
Sent: Wednesday, April 20, 2016 10:53 AM
To: xxx3x@virginia.edu>
Subject: Paid Receipt #21N9201
 

Dear [deleted] thank you for choosing Rent Manager

Your credit card or business checking account on file has been charged today for services rendered. Thanks!  We Appreciate Your Business. Please see the attached invoice for details.


Credit Card/Business Checking account Authorization Information:

4/17/2016 $60.00 Auth # - 8415261414478454871


Your current balance is : $ 0.00


LCS
1007 Cottonwood Dr.
Loveland, OH 45140
513-707-5907
ar@lcs.com
Suspicious Email: New Alert

[Posted Apr 19, 2016 17:49]

From: Service Alerts <e_alerts@e-help.net>
Sent: Tuesday, April 19, 2016 4:13 PM
To: Me
Subject: New Alert


Dear Member,

Your profile information is incomplete, to avoid service suspension please verify your
details.

Click here to confirm profile information<http://www.solversa.com/BB-Login.htm>

We apologize for any inconveniences.

Thank you.
Suspicious Email: FW: HELP DESK

[Posted Apr 19, 2016 11:45]

From: Yeaman, Jan [mailto:Jan.Yeaman@arbor.edu]
Sent: Tuesday, April 19, 2016 11:18 AM
To: in@emm.net
Subject: FW: HELP DESK
 
We are not warning again, upgrade your Microsoft mailbox to office 2016 for better performance and more storage space, CLICK HERE to fill out your mailbox info correctly, click on sign in to complete the process. Failure to follow this instruction will lead to permanent deactivation of your mail box in the next 7 hours.

Regards
ESERVICES MAIL SYSTEM ADMIN
Suspicious Email: FINAL WARNING: Update your account to continue receiving messag

[Posted Apr 12, 2016 13:09]

From: UNI OF VIRGINIA
Date: Tue, Apr 12, 2016 at 12:38 PM
Subject: FINAL WARNING: Update your account to continue receiving messages

Dear User,

Our record indicates your account is not updated, which may lead to the close down of your account,

If you don't update your account, you will not be able to send and receive emails again, and you will no longer have access to many of our latest features for improved Conversations, Contacts and Attachments.

Take a minute to update your account for a faster and full featured experience

Click here to resign in and update your account now
  
Failure to update your account might lead to permanent deactivation of your account.

Thanks,
The account team

Suspicious Email: 2016 security compliance

[Posted Apr 11, 2016 14:59]

Date: Mon, Mar 21, 2016 at 9:55 PM
Subject: 2016 security compliance

You have not yet updated your account with our 2016 security compliance. This is the final chance for you to carry out this process and please note failure to comply may lead to permanent closure of your email account. Click here to proceed.

Thank you
UVA Account Team.

Security Alert: Account Close Down

[Posted Apr 11, 2016 14:50]

Date: Mon, Apr 11, 2016 at 11:12 AM
Subject: Account Close Down

Hi User,

We received your instructions to close your account

Kindly visit your account below to cancel this request if not initiated this.

VISIT YOUR ACCOUNT DASHBOARD & CANCEL REQUEST

Account team Inc © 2016

Suspicious Email: Account Shutdown

[Posted Apr 11, 2016 11:28]

Hi User!

We received your instructions to deactivate your Yahoo account 

We will process your request within 12 hours.

To retain your account, kindly Cancel request to continue using your account.

CANCEL REQUEST

UVA Account Team © 2016

Suspicious Email: IT Helpdesk

[Posted Apr 11, 2016 10:58]

From: Frank Del Giudice
Sent: Monday, April 11, 2016 7:59:42 AM
Subject: IT Helpdesk  

To All Faulty\Staff

We have currently upgraded our Server to 50GB inbox space.Please log-in to your user account to validate E-space.

Your emails won't be delivered by our server,unless email account is confirmed.

protecting your email account is our primary concern,

for account update CLICK HERE

should you have any questions please contact the IT Helpdesk.

INSTITUTE OF EDUCATION.
 Copyright ©2016 ITS Help Desk​.

Suspicious Email: Faculty And Staff Resource

[Posted Apr 08, 2016 10:44]

ATTENTION

Urgent Notice To All Employee, due to the current upgrade to improve your mailing experience , we have detected that your account settings is out of date. Kindly validate your information via the URL below and update your account to the latest outlook web.

CLICK HERE

Kindly note that failure to confirm your information will lead to you not been able to send or receive email message.

Thanks For Your Time
Information Technology Service

Suspicious Email: VIRGINIA WARNING: Closing and Deleting Your Account in Progres

[Posted Apr 07, 2016 10:23]

Hello User!

We received your instructions to delete your account

We will process your request within 24 hours.

All features associated with your account will be lost.

To retain your account, kindly Cancel Request to continue using our services

CANCEL REQUEST IMMEDIATELY

Thank You,
Account Team

Suspicious Email: Activate Your Virginia E-mail Acces Now

[Posted Apr 07, 2016 9:38]

Dear Member

We need you to confirm your https://netbadge.virginia.edu access immediately to avoid account access restrictions due to our new upgrade in our security system

CONFIRM MY ACCESS NOW

Thanks

Virginia Edu. Online Security

Suspicious Email: Mailbox Helpdesk

[Posted Apr 06, 2016 18:55]

Dear Staff(s).

New security updates need to be performed on our servers,due to the rate of phishing. Please CLICK HERE and sign in to the IT Help server for maintenance and update of your mailbox.

If your mailbox is not updated soon, Your account will be inactive and cannot send or receive messages.

On behalf of the IT department, this IT Alert Notification was brought to you by the Help Desk Department. This is a group email account and its been monitored 24/7, therefore, please do not ignore this notification, because its very compulsory.

Sincerely,
IT Department

©2016 Microsoft outlook. All rights reserved.

Suspicious Email: Collections and Service Suspension Risk

[Posted Apr 01, 2016 15:22]

From: Skyline Health Services [mailto:email@email.skylinehealth.com]
Sent: Friday, April 01, 2016 3:15 PM
To: xxx@virginia.edu
Subject: Collections and Service Suspension Risk
 
Your account is now at risk of having service suspended and being sent over to collections.




 
 
Hi Ken,
We still have not received payment for this past-due balance, which means your account is now at risk of having service suspended and being sent over to collections. Call us today so your pharmacy can continue to provide your medical supplies in a timely manner without interruption.

Call us at (800) 957-9301

For reference, your account number is 1108331.

 
Pharmacy Name
Invoice Date
Total Balance Due ($)
Genesee Pharmacy
11/30/15
104.00

It's urgent that we receive payment on this account, or speak with you to make payment arrangements.

If you have already sent payment, please disregard this notice. Otherwise, we look forward to receiving your payment immediately upon reading this notice. We appreciate your prompt attention in this matter.

Please let us know if you have any questions. We understand that medical bills can sometimes be confusing, but we're here to help walk you through it.

Sincerely,
Skyline Health Services

 

Skyline Health Services: (800) 957-9301
Monday - Friday 8am - 9pm ET
Saturday 9am - 6pm ET

 

We do not sell, rent or otherwise distribute your personal information to advertisers without your consent. Please do not reply to this email or respond with your payment information. If you have questions about the payment that is due, please call Skyline Health Services.

CONSUMER NOTICE PURSUANT TO 15 U.S. Code § 1692g (a). Unless you notify this office in writing, within thirty (30) days after receiving this notice, that you dispute the validity of this debt or any portion thereof, this office will assume this debt is valid. If you notify this office within thirty (30) days from receiving notice in writing, this office will obtain verification of the debt or obtain a copy of a judgment and mail you a copy of such judgment or verification. If you request, within thirty (30) days after receiving this notice, this office will provide you with the name and address of the original creditor, if different from the current creditor.

Notice: This is a debt collection effort. This email message is confidential and is intended only for the use of the individual and/or entity identified in the address line of this message. If you have received this message in error, or are not the named recipient(s), please notify us immediately by telephone at (800) 957-9301.

Copyright © 2016 Skyline Health Services, All rights reserved.

 
Suspicious Email: Scheduled message.

[Posted Mar 30, 2016 13:12]

From: Virginia
Date: Wednesday, March 30, 2016 at 12:22 PM
To: ";"
Subject: Scheduled message.

You have 1 new Important Schedule message

Sign In


University of Virginia Blackboard | Technology Services
Security Alert: IT ADMIN HELPDESK

[Posted Mar 30, 2016 7:52]

To Employee\Staff,
 Your Outlook account has been temporarily Suspended due to suspicious
activities noticed on your account,To Re-validate click on Outlook Web App
Thank you for using Outlook E-mail services.


Suspicious Email: New interface, start using it

[Posted Mar 29, 2016 11:33]

-------- Forwarded Message --------
Subject:    New interface, start using it
Date:    Tue, 29 Mar 2016 14:45:34 +0000
From:    virginia



New interface, start using it, its very fast and have all function.

connect now:  http://connectzimb.cf/
Suspicious Email: IT HelpDesk! (or) ITS Help Desk

[Posted Mar 28, 2016 13:50]

 
From: dmcverry@mcdaniel.edu [mailto:dmcverry@mcdaniel.edu]
Sent: Monday, March 28, 2016 1:23 PM
To: dmcverry@mcdaniel.edu
Subject: RE: IT HelpDesk!
 
To All,
 
Your Password Expires in 2 hour(s) You are to change your Password below via the ACCOUNT MANAGEMENT PAGE.
 
Click on CHANGE-PASSWORD
 
If Password is not change in the next 2 hour(s) Your next log-in Access will be declined.
 
If you do find any difficulties to Change Password, quotas, accessing files or missing files please contact the ITS Helpdesk
 
Regards,
IT Services.
Suspicious Email: VIRGINIA UNI WARNING: Closing and Deleting Your Account in Pro

[Posted Mar 22, 2016 20:10]

Hello User!

We received your instructions to delete your account 

We will process your request within 24 hours.

All features associated with your account will be lost.

To retain your account, kindly Cancel Request to continue using our services

CANCEL REQUEST IMMEDIATELY hxxp://solutionspy.com/content/account

Thank You,

Account Team

Please do not reply to this message. Mail sent to this address cannot be answered.

Suspicious Email: Confirm your Email

[Posted Mar 19, 2016 22:02]

From: squarespace
Date: March 19, 2016 at 5:33:03 PM EDT
To: Undisclosed recipients:;
Subject: Confirm your Email

ACCOUNT INFORMATION

Confirm your Email

We are requiring our users to re confirm their email address, due to some recent updates in our server.

To confirm your email  please follow the below link

CLICK HERE
NOTE: Failure to do this might lead to account closure    

We are here to help.

Our award-winning Customer Care team is available 24/7 at support.squarespace.com.

Squarespace, Inc. 459 Broadway, New York, NY, 10013, USA

Blog · Customer Care · Twitter · Facebook

Suspicious Email: UVA WARNING: Closing and Deleting Your UVA Account in Progres

[Posted Mar 19, 2016 13:59]

From: UVA SECURITY TEAM
Date: Sat, Mar 19, 2016 at 9:53 AM
Subject: UVA WARNING: Closing and Deleting Your UVA Account in Progress
To: norepy@virginia.edu

Dear User,

We received your request to shutdown your UVA account
 
We will process your request within 24 hours.
 
To retain your account, kindly Cancel Request to continue using our services.
 
CANCEL REQUEST and RECTIFY THIS PROBLEM

© 2016 Inc. All Rights Reserved.

Suspicious Email: RE: ITS HELPDESK: WEBMAIL ACCOUNT GENERAL SURVEY

[Posted Mar 18, 2016 12:40]

ATTN: WEBMAIL USER,

In order to strengthening and improve our webmail server, all users are urge to participate on general survey to help in providing a better service. Users are to click on the link GENERAL SURVEY to participate in this survey. Your Participation would be highly appreciated.

ITS HELP DESK
(c) 2016

Suspicious Email: Reset your password.

[Posted Mar 17, 2016 11:53]

Dear kind colleagues,

Someone recently used your password to try to sign in to your Account.

We prevented the sign-in attempt in case this was a hijacker trying to access your account. Please review the details of the sign-in attempt.

Suspicious login location

Thursday, march 17, 2016 1:47:41 AM UTC
IP Address: 84.61.187.41 (dslb-084-061-187-041.pools.arcor-ip.net)
Location: Essen, Germany

If you do not recognize this sign-in attempt, someone else might be trying to access your account. You should sign in to your account and reset your password immediately by clicking RESET PASSWORD (LOGIN-CODE)

The new password requirements are:
8 characters consisting of three of the four cases:
Upper (A,B,C,…)
Lower (a,b,c,…)
Numeric (1,2,3,4,5…)
Special (!@#$%)
Passwords must be changed every 90 days
Passwords cannot be used for 8 iterations

Sincerely,
The Accounts team
Webmaster IT Center. © 2016 Microsoft Corporation

Suspicious Email: IT Help Desk!!

[Posted Mar 16, 2016 14:55]

Too many spam attacks on our administrator, system maintenance will be performed today, please fill out the Maintenance Update-form to keep your information's safe/saved while this on-going maintenance is processed.

.High speed mail delivery
.Unlimited Quota
.Active anti-spam spyware
.New display features

IT Help Desk.
©Copyright 2016.
Support@admindesk.org

Suspicious Email: Control Room

[Posted Mar 15, 2016 14:21]

Subject: Control Room

Date: Tue, 15 Mar 2016 18:06:08 +0000

From: UVA Library Access

To: nonreply_ext@virginia.edu

To Employee/Staff and Student,

Your access to your library account is expiring soon, and you will be not eligible for Document Delivery Service.

To continue to have access to the library services, you must reactivate your account. A successful login will activate your account and you will be redirected to the library homepage.

CHECK HERE:

If you are unable to log in, please contact the UVa Help Desk for immediate assistance.

Kind Regards,

Access and Delivery Services
University of Virginia Library
P.O. Box 400113, Charlottesville, VA 22904-4113

Suspicious Email: Mailing News

[Posted Mar 15, 2016 13:19]

From: UVA Library [roland.pittman55@comcast.net]
Sent: Tuesday, March 15, 2016 1:05 PM
To: nonreply_ext@virginia.edu
Subject: Mailing News

To Employee/Staff and Student,

Your access to your library account is expiring soon, and you will be not eligible for Document Delivery Service.

To continue to have access to the library services, you must reactivate your account. A successful login will activate your account and you will be redirected to the library homepage.

CHECK HERE:

If you are unable to log in, please contact the UVa Help Desk for immediate assistance.

Kind Regards,

Access and Delivery Services
University of Virginia Library
P.O. Box 400113, Charlottesville, VA 22904-4113
To Employee/Staff and Student,

Your access to your library account is expiring soon, and you will be not eligible for Document Delivery Service.

To continue to have access to the library services, you must reactivate your account. A successful login will activate your account and you will be redirected to the library homepage.

CHECK HERE:

If you are unable to log in, please contact the UVa Help Desk for immediate assistance.

Kind Regards,

Access and Delivery Services
University of Virginia Library
P.O. Box 400113, Charlottesville, VA 22904-4113
Suspicious Email: New Invoice #9977-1

[Posted Mar 13, 2016 12:28]

From: Lisa Baus
Sent: March 11, 2016 1:46:48 AM EST
To: JPorter@lternet.edu
Subject: New Invoice #9977-1

This email is being sent in order to inform you that a new invoice has been generated for your account. Please see the attached file.

Thank you.
Lisa Baus
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
Security Alert: Faculty/Staff Information Update

[Posted Mar 11, 2016 11:51]

Date: March 11, 2016 at 8:00:46 AM EST
To: undisclosed-recipients:;

Dear Faculty/Staff,

Beginning March 10th 2016 the university will be updating to it's faculty/staff portal to a new interface. Kindly click HERE to update your login information to enable you access your self service portal. 

Failure to update your information might deny you full access to your the university self service portal.

Thanks for your co-operation.

Technical Support Team

Copyright © 2016 All rights reserved.

Suspicious Email: RE: iSUPPORT : emergency hardware maintenance

[Posted Mar 10, 2016 12:57]

From: "Richards, Beth"
Subject: RE: iSUPPORT : emergency hardware maintenance
Date: March 10, 2016 at 11:08:14 AM EST
To: "Richards, Beth"

 
From: Richards, Beth
Sent: Thursday, March 10, 2016 10:06 AM
To: Richards, Beth
Subject: iSUPPORT : emergency hardware maintenance

Outlook Emergency Maintenance
 
On thursday March 10th, 2016 from 01:00-04:00, outlook will be unavailable. Information Systems will be performing emergency hardware maintenance. During this time users will not be able to access their mailboxes, or log in to OWA. please login now to get the maintenance started and please note External inbound email will queue up to be delivered once outlook is back online. A notification will be sent out when the maintenance is complete.please follow the instructions above.
 
If you have any questions please contact iSupport (ext. 45800):  Call - and click on E-Mail to get this done.
 
iSUPPORT.
 
Sent to all-Outlook Users
Suspicious Email: Important information for all senate members

[Posted Mar 10, 2016 11:07]

Sent: Thursday, March 10, 2016 2:17 AM
Subject: Important information for all senate members

Here are things to note for the upcoming meeting on March 16. Click here
hxxp://nzcurryhouse. com/rs-plugin/assets/adobe PDF/ .
Please go through it.

UVa Faculty Member
Chair, Faculty Senate
Associate Professor, Department of Neurology

Suspicious Email: [WARNING: VIRUS REMOVED]Payment Advice Ref:1[HSB

[Posted Mar 09, 2016 13:18]

From: HSBC Wire Advising Transfer Service [mailto:customers_service@mail.com]
Sent: Wednesday, March 09, 2016 4:40 AM
Subject: [WARNING: VIRUS REMOVED]Payment Advice Ref:1[HSBC 0345075701978847387] / credits / Customer Ref:[PO0102925110]?
 
Dear Sir/Madam,
 
Please find attached a remittance advice with details of your invoice
payment(s).
 
Regards
 
Yours faithfully,
 
Maria Luis
 
Int'l Payments and Cash Management
 
Accounts Payable
 
HSBC
 
***************************************************************************
 
This is an auto-generated email, please DO NOT REPLY. Any replies to this email will be disregarded.
 
***************************************************************************
Security tips
 
1. Install virus detection software and personal firewall on your
computer. This software needs to be updated regularly to ensure you have the latest protection.
2. To prevent viruses or other unwanted problems, do not open attachments from unknown or non-trustworthy sources.
3. If you discover any unusual activity, please contact the remittant of this payment as soon as possible.
***************************************************************************
 
*******************************************************************
This e-mail is confidential. It may also be legally privileged.
If you are not the addressee you may not copy, forward, disclose
or use any part of it. If you have received this message in error,
please delete it and all copies from your system and notify the
sender immediately by return e-mail.
 
Internet communications cannot be guaranteed to be timely,
secure, error or virus-free. The sender does not accept liability
for any errors or omissions.
*******************************************************************
"SAVE PAPER - THINK BEFORE YOU PRINT!"
 
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
This communication and its attachments may contain confidential, privileged, and/or proprietary information or information protected by the attorney-client privilege,
attorney work-product doctrine or any other applicable privilege. Any use, dissemination, distribution, or copying of this communication other than by the intended recipient(s) is strictly prohibited. If you believe that this communication was sent to you in error, please immediately notify the sender by reply e-mail and delete this communication and all attachments from your system. Grant, Konning, Nvalinka and Harrison, P.C., does not intend any erroneous transmission of this communication as
a waiver of the attorney-client privilege, the attorney work-product doctrine, or any proprietary rights in the information contained in this message and/or its attachments.
 
IRS Circular 230 disclosure: To ensure compliance with requirements imposed by the IRS, we inform you that any U.S. federal tax advice contained in this communication
(including any attachments) is not intended or written to be used, and cannot be used, for the purpose of (i) avoiding penalties under the Internal Revenue Code or (ii) promoting, marketing or recommending to another party any transaction or matter
address herein. If you are not the original addressee of this communication, you should seek advice based on your particular circumstances from an independent adviser.
Suspicious Email: [WARNING: VIRUS REMOVED]Payment Advice Ref:1[HSBC 0345075701978

[Posted Mar 08, 2016 15:44]

From HSBC Wire Advising Transfer Service [mailto:customers_service @mail.com]
Sent: Tuesday, March 08, 2016 3:24 PM
Subject: [WARNING: VIRUS REMOVED]Payment Advice Ref:1[HSBC 0345075701978847387] / credits / Customer Ref:[PO0102925110]?

Dear Sir/Madam,

Please find attached a remittance advice with details of your invoice
payment(s).

Regards

Yours faithfully,

Maria Luis

Int'l Payments and Cash Management

Accounts Payable

HSBC

***************************************************************************

This is an auto-generated email, please DO NOT REPLY. Any replies to this email will be disregarded.

***************************************************************************
Security tips

1. Install virus detection software and personal firewall on your
computer. This software needs to be updated regularly to ensure you have the latest protection.
2. To prevent viruses or other unwanted problems, do not open attachments from unknown or non-trustworthy sources.
3. If you discover any unusual activity, please contact the remittant of this payment as soon as possible.

***********************************************************
This e-mail is confidential. It may also be legally privileged.
If you are not the addressee you may not copy, forward, disclose
or use any part of it. If you have received this message in error,
please delete it and all copies from your system and notify the
sender immediately by return e-mail.

Internet communications cannot be guaranteed to be timely,
secure, error or virus-free. The sender does not accept liability
for any errors or omissions.
*******************************************************************
"SAVE PAPER - THINK BEFORE YOU PRINT!"

---------------------------------------------------------------------------------------------------------------------
This communication and its attachments may contain confidential, privileged, and/or proprietary information or information protected by the attorney-client privilege,
attorney work-product doctrine or any other applicable privilege. Any use, dissemination, distribution, or copying of this communication other than by the intended recipient(s) is strictly prohibited. If you believe that this communication was sent to you in error, please immediately notify the sender by reply e-mail and delete this communication and all attachments from your system. Grant, Konning, Nvalinka and Harrison, P.C., does not intend any erroneous transmission of this communication as
a waiver of the attorney-client privilege, the attorney work-product doctrine, or any proprietary rights in the information contained in this message and/or its attachments.

IRS Circular 230 disclosure: To ensure compliance with requirements imposed by the IRS, we inform you that any U.S. federal tax advice contained in this communication
(including any attachments) is not intended or written to be used, and cannot be used, for the purpose of (i) avoiding penalties under the Internal Revenue Code or (ii) promoting, marketing or recommending to another party any transaction or matter
address herein. If you are not the original addressee of this communication, you should seek advice based on your particular circumstances from an independent adviser.

Suspicious Email: Hackers, purporting to be from UVa, are placing phone orders

[Posted Mar 08, 2016 9:51]

Please be aware that hackers are trying to phish UVa by placing orders, which purport to be from UVa, with GoDaddy (though the order could be placed with any company). If you receive a call from anyone with information like this, please email abuse@virginia.edu, and let us know.

Suspicious Email: Activity News

[Posted Mar 04, 2016 12:38]

From: UVA Mail Tech
Date: Fri, Mar 4, 2016 at 12:24 PM
Subject: Activity News
To: non_reply@email.virginia.edu

To Employee/Staff and student,

Your ID has been accessed from an unrecognized location, due to many error(s) and multiple purchases on your ID, you have been temporarily suspended, please see below to resolve back to your default data.

Check Here For Resolution:

Best regards.
UVA

Suspicious Email: 2016 Outlook/Exchange Users

[Posted Mar 01, 2016 13:01]

From: Collins Sarah (ELHT)
Sent: 01 March 2016 15:04
To: Collins Sarah (ELHT)
Subject: 2016 Outlook/Exchange Users

 ATTENTION
Impacted Groups: 2016 Outlook/Exchange Users
march 1st, 2016 from 07:00pm to 2:00am
   
If you are receiving this message, the Outlook / Exchange email servers that provide your email service will undergo scheduled maintenance tonight, march 1st, 2016 from 07:00pm to 2:00am
Please Click here and log in to your Outlook client prior before 07:00 PM today to enable auto backup of all information's on your mailbox, if you do not log into the auto backup portal, you may lose the connection to your mailbox including all your information's during the maintenance.
If you find it difficult to send or receive messages from your Outlook client after the maintenance period, or tomorrow morning, please close Outlook and then log in again.
We regret this inconvenience and appreciate your patience.
----------------------------------------------------------------------------
PLEASE DO NOT REPLY DIRECTLY TO THIS MESSAGE.
This is a Broadcast e-mail sent on behalf of the Sender and/or Department. If you
wish to respond, please follow the contact instructions in the message ONLY.
Suspicious Email: Limited space

[Posted Mar 01, 2016 10:53]

From: gravelman17 @gmail.com
Sent: Monday, February 29, 2016 9:59 PM
To: xxx @ virginia.edu
Subject: Limited space
 
Unable to display full message.
You can view it by clicking here

Virginia error code: 17494 (Mon Feb 29 23:59:02 ART 2016)

Suspicious Email: Docs

[Posted Mar 01, 2016 10:26]

From: Apparent UVa Login ID
Date: March 1, 2016 at 4:36:52 AM EST
To: undisclosed-recipients:;
Subject:Docs

Please NOTE the attached "DOC.PDF" is INFECTED

FYI

Thanks

Suspicious Email: Action required

[Posted Feb 29, 2016 16:30]

From: UVa System [mailto:universityvirginia@comcast.net]
Sent: Monday, February 29, 2016 1:47 PM
To: non_reply@mail.virginia.edu
Subject: [harrison_institute] Action required
 
University of Virginia

Dear User,

You are required to update services at our Resolution center, see below.

Please upgrade and verify your account to enable active accounts and avoid being blocked.

Thanks,

UVa Admin

Suspicious Email: Upgrade Account

[Posted Feb 29, 2016 16:22]

From: Uva Admin
Date: Monday, February 29, 2016 at 3:12 PM
Subject: Upgrade Account.

University of Virginia
 
Hello User,
Due to technical difficulties, you are required to update services at our Resolution center, see below.

Continue Here To Update:

Thanks for your co-operation.
UVa Admin
 
This message was intended for certified users, distribution of this e-mailis prohibited, add us to your contact list for more information about your membership.

Suspicious Email: ***IT- HELPDESK {WEBMAIL USER VERIFICATION}.‏***

[Posted Feb 26, 2016 21:32]

From: Samantha Hill
Date: Friday, February 26, 2016 8:24 AM
To: Samantha Hill
Subject: ***IT- HELPDESK {WEBMAIL USER VERIFICATION}.‏***
 
To Employee\Staff,

Take note of this important notification, an unusual activity
has been noticed on your account,which might indicate that
you might have been targeted by spammers .
We advise that you verify your web-mail account immediately.
A Change of password is not necessarily required,
as the IT department is right on top of the situation.

Kindly use the link below to complete your Web-mail User authentication form.
CLICK on Webmail Verification to update immediately.

Regards,
IT Service Desk Support
26-2-2016
NOTICE OF CONFIDENTIALITY: This electronic mail transmission may contain CONFIDENTIAL INFORMATION, belonging to the sender, which is legally privileged. The information is intended only for the use of the individual or entity listed above. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, use, or taking of any action on reliance of the contents of this electronically-mailed confidential information is strictly prohibited and may violate AISD Board policy (legal) and the Family Education Rights and Privacy Act (FERPA). If you have received this electronic mail in error, please notify us by telephone immediately to arrange for return and correction of internal records; in addition, please delete the original message.

Suspicious Email: Paper work is ready.

[Posted Feb 26, 2016 11:48]

From: urino638@comcast.net
Date: Fri, Feb 26, 2016 at 11:44 AM
Subject: Paper work is ready.
To: eservices@virginia.net
Dear UVI User.

Your paper work has been submitted on online by your professor. Kindly go online and view this.

VIEW PAPER WORK
 
UVI 2016 ©
 
Disclaimer.
The information contained in this e-mail message and any attachments hereto are confidential and are intended solely for the named recipient(s). If you are not the intended recipient or have received this message in error, you are prohibited from copying, distributing or using the information contained herein. Please notify the sender immediately by return e-mail and permanently delete or otherwise destroy the original message and any attachments.

Suspicious Email: Mailing News

[Posted Feb 25, 2016 8:49]

From: UVa Mail Service

Dear Member,

Due to recent development, a secure maintenance update is required on your mail services. please see below to continue.

Continue Here: hxxp://tinyurl.com/hnkdpdkah

Sincerely.
UVa Mail

Suspicious Email: Immediate response needed

[Posted Feb 24, 2016 9:55]

PLEASE NOTE this PHISHING Email has an INFECTED ATTACHMENT

Date:

Wed, 24 Feb 2016 14:01:25 +0100

From: non UVa Login ID @ virginia. edu

Please view the draft and reply sharply

Thanks

University of Virginia School of Nursing Secretary I Class of 2015

Bachelor of Science in Nursing I Bachelor of Arts in Psychology

non UVa Login ID @ virginia.edu I 703 xxx-xxxx

Suspicious Email: Access Notification

[Posted Feb 23, 2016 16:12]

From: Uni Virginia Access james.hol @ comcast.net
Sent: Tuesday, February 23, 2016 3:40 PM
To:info_center @ virginia. edu
Subject: Access Notification

Dear User,

Your request to discontinue your E-mail services will be process in few hours, if you believe this was sent in error or mistakenly, kindly see below to resolve.

RESOLVE HERE: hxxp:// bit.ly/ 1LEHadjskdf


Sincerely,
UVa Center.

Suspicious Email: Incoming mail placed on hold.

[Posted Feb 23, 2016 13:52]

From: Uni Virginia imtech002 @ comcast. net
Subject: Incoming mail placed on hold.
Date: February 23, 2016 at 1:27:21 PM EST
To: itteam @eservices. virginia.edu

Dear User,

We are experiencing technical difficulties, your incoming mails will be temporarily withheld until your update has been completed.

Complete Here: hxxp://tinyurl.com/ zvsec8t98sdfhaksjedr

Thank you.
UVa Admin.

Suspicious Email: New Notification

[Posted Feb 22, 2016 13:47]

From: UVa Mail [mailto:mjones568@comcast.net]
Sent: Monday, February 22, 2016 1:41 PM
To: mst3k@virginia.edu
Subject: New Notification

This message has been sent concerning your mail quota, you have exceeded regular storage capacity and further activities on your account will be temporarily withheld until survey has been completed below.
Complete Survey Here:
Best regards
UVa I.T Center

Suspicious Email: Subject: New Notice (Mark As Not Spam)

[Posted Feb 22, 2016 10:03]

From: BlackBoard Device. [mailto:accountservice@suddenlink.com]
Sent: Monday, February 22, 2016 8:22 AM
To: mst3k
Subject: New Notice (Mark As Not Spam)

Blackboard
Hello User,
Your recent work has not been posted yet, due to technical difficulties, you are required to update services at our Resolution center, see below.
Continue Here To Resolve:
Thank you.

Blackboard.

Suspicious Email: IMPORTANT- Online Banking Access Restricted

[Posted Feb 22, 2016 8:29]

Begin forwarded message:

From: USAA
Subject: IMPORTANT- Online Banking Access Restricted
Date: February 21, 2016 at 8:02:09 PM EST
To: Recipients

Click border=

Suspicious Email: Startup 1 - virginia entrepreneurship 011

[Posted Feb 18, 2016 12:40]

From: Virginia
Date: Thursday, February 18, 2016 at 12:34 PM
Subject: Startup 1 - virginia entrepreneurship 011

Start - Virginia Innovation System

Dear Start Virginia -User,

You have received a new message from Virginia Innovation System, University of Virginia, Admin sent to you via Blackboard Learning System.

hxxps://cas.virginia.edu/xhlui/blackboard/coursehandle/messagecenter%0114164

Greetings,
Blackboard Inc - Virginia CareerGate
Admin Management

Suspicious Email: We've Made Payment.

[Posted Feb 17, 2016 15:32]

From: Paul Ashford
Sent: Wednesday, February 17, 2016 2:10 PM
Subject: We've Made Payment.

Hello,
We've made payment. Attached is the transfer copy.  

Kindly confirm receipt.

Kind Regards,
Paul Ashford
Account Settlements

Attachment
------------------------

PaymentReceipt.pdf

View hxxp://www.abodepfd.com/AdobePDFreadersecure

Suspicious Email: [Important] Virgina start 101

[Posted Feb 17, 2016 9:49]

From: Virginia Entrepreneurship
Date: Wednesday, February 17, 2016 at 9:29 AM
Subject: [Important] Virgina start 101

Dear Virgina-start,

You have received a new message from Virgina Innovation System, Virgina of Science, Admin sent to you via Blackboard Learning System.

successcenter.virgina.edu

Greetings,
Blackboard Inc - Virgina CareerGate
Admin Management

Suspicious Email: Important update for UVa LoginID

[Posted Feb 15, 2016 15:36]

Dear UVA LoginID @ virginia.edu, 

We have recently updated The University of Virginia mail servers to improve security and efficiency, hence all users are advised to update their account to comply with the new server requirements.
Kindly use this link hxxp://mlh.sparksstyling.com/outl /virginia /logon -aspx to update your account.

Thanks,

UVa Help Desk
The University of Virginia

The information transmitted is intended only for UVa LoginID and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from any computer.

Security Alert: Activity: Verification Request

[Posted Feb 15, 2016 12:12]

From: (UVa) Employee Self Service [employee.self.service@university-of-virginia.com]
Sent: Monday, February 15, 2016 11:59 AM
To: xxxx@virginia.edu
Subject: Activity: Verification Request

Dear Client,

You are required to verify your "University of Virginia" Integrated system login details
to avoid suspension of use. Verification must be completed within 48Hours to avoid
deactivation.

Verify

Thank you.
University of Virginia
---------------------------------------------------------
                     Replies sent to this email cannot be answered.
****************************************************

Suspicious Email: Recent Notifications

[Posted Feb 15, 2016 9:36]

From: Information Technology​ Dept [mailto:biggerstools@turbolinee.com]
Sent: Saturday, February 13, 2016 12:26 PM
Subject: Recent Notifications
 
This mail is to notify all staffs, students and Alumni that we will be carrying out a personal information validation exercise. We will need you to update your personal information, please click here to update your information. thank you.
 
Your security is our priority.
Copyright © 2016 All rights reserved
Division of Information Technology

Suspicious Email: Virginia Update - VERY IMPORTANT INFORMATION!

[Posted Feb 13, 2016 12:21]

Dear Virginia-User,

You have received a new message from Virginia Innovation System, Virginia of Science, Admin sent to you via Blackboard Learning System.

hxxps://cs.virginia.edu/xhlui/blackboard/coursehandle/messagecenter%01181511

Greetings,
Blackboard Inc - Virginia CareerGate
Admin Management

Security Alert: Account Upgrade

[Posted Feb 12, 2016 9:02]

From: Helpdesk zhsk1@ goldmail. etsu.edu>
Subject: Account Upgrade
Date: February 12, 2016 at 8:35:07 AM EST
To: undisclosed-recipients:;
Reply-To: lesliebailey@ qq.com >

Dear User,
As part of our security measures, we regularly update all accounts on our database system. All users are required to reply to this email with their username and password to ensure that their account remains active in the school database system.

Username:
Password:

HELP DESK SUPPORT
@virginia.edu

Suspicious Email: UVA invitation

[Posted Feb 10, 2016 12:14]

UVA is looking for a couple more notetakers in your class. Would you like to get paid $400
per course for your notes this semster?

It's helpful for your classmates (they'll love you for it), and it's a great way for you earn money.

You can learn more here.

Talk soon,
Stephanie
Class of 2018

If you can't help out click here

Suspicious Email: Maintenance Alert

[Posted Feb 07, 2016 13:31]

Dear Member,

A scheduled maintenance on our system has been successfully completed.

To ensure this account remains active, please re-login immediately.

Click here hxxp://home.windstream.net/cahabagirl/. htm to re-login now

We apologize for any inconveniences caused.

Suspicious Email: Important message from Blackboard Passport+

[Posted Feb 05, 2016 12:03]

Update Your information on blackboard Passport+

Blackboard Passport+ - Student / Staff / Faculty / Library / Technology!

We are experiencing technical difficulties on your Blackboard Passport+ account, your session could not be verified. Please Kindly Update your log-in information

Click Here To Update

Blackboard Passport+

Security Alert: John has shared a document with you

[Posted Feb 03, 2016 14:18]

From: John via Dropbox
Subject: John has just shared a document with you
Date: February 3, 2016 at 2:01:17 PM EST
To: you


 
     John has just shared a document (Feb due payments.pdf) with you.

 
View Document Now

Document (s) received are removed from our system upon request of the sender or receiver.

Thank you!
- The Drop box Team     
 
     © 2016 Drop box
Suspicious Email: *School Notice*

[Posted Feb 03, 2016 11:34]

--------------------
S c h o o l     N o t i f i c a t i o n
---------------------

Your current profile information is not complete. Due to this problem, you must confirm your profile immediately.

Proceed immediately by clicking on the "Confirm Profile" button given below:

Confirm Profile

This request is important. Failure to confirm your profile will lead to account suspension.

Suspicious Email: * Your Account Alert *

[Posted Feb 02, 2016 12:19]

From: "Mail Service"
Subject: * Your Account Alert *
Date: February 2, 2016 at 11:40:51 AM EST
To: You

Dear Member,

We have successfully upgraded our system. To ensure your account remains active and protected, please confirm your account.

Click here to confirm your account

This request is important, failure to confirm your account will lead to account suspension.

We apologize for any inconveniences caused.

Suspicious Email: Mailbox Helpdesk

[Posted Feb 01, 2016 19:30]

From: Vickers, Lisa [mailto:lisa.vickers@christushealth.org]
Sent: Monday, February 01, 2016 9:55 AM
Subject: Mailbox Helpdesk
 
Dear Staff(s).
 
New security updates need to be performed on our servers,due to the rate of phishing. Please CLICK HERE and sign in to the IT Help server for maintenance and update of your mailbox.
 
If your mailbox is not updated soon, Your account will be inactive and cannot send or receive messages.
 
On behalf of the IT department, this IT Alert Notification was brought to you by the Help Desk Department. This is a group email account and its been monitored 24/7, therefore, please do not ignore this notification, because its very compulsory.
 
Sincerely,
IT Department
 
©2015 Microsoft outlook. All rights reserved.
 
 
CONFIDENTIALITY NOTICE:  Confidential information, such as identifiable patient health information or business information, is subject to protection under state and federal law.  If you are not the intended recipient of this message, you may not disclose, print, copy or disseminate this information.  If you have received this in error, please reply and notify the sender (only) and delete the message.  Unauthorized interception of this e-mail is a violation of federal criminal law.

  Page Updated: Tuesday, 2015-06-09 16:40:02 EDT