Google+
ITS and UVa logos for printed output

Information Technology Security at UVa

Current Security Alerts & Warnings

This page lists current warnings regarding suspicious email messages and other cybersecurity hazards at the University of Virginia. You may also subscribe to this information via RSS.

Regarding Suspicious Email Alerts

Messages similar to the suspicious emails listed below may be related to phishing scams, schemes to commit identity theft, or other attempts to compromise users’ machines or personal information.

  • If you receive an email similar to any of the suspicious emails on this page, DO NOT respond—delete it immediately! Do not click any links in the email, and do not “unsubscribe” or acknowledge the email in any way.
  • If you receive an email that appears “phishy” and are unsure if it’s legitimate, and it is not listed below, please report it to us. Forward it to our email abuse team.

Items Currently Affecting UVa

Display Newest to Oldest • Display by Category

Suspicious Email: Admin Notice

[Posted Jun 15, 2016 8:57]

Hi User,

You sent us an email to close and block your account, We will process your request shortly.

If this wasn't you, please Cancel Request and update your account now. If this was you, you're all set!

Your Domain Admin.

©2010 - 2016 Mail . All Rights Reserved

Security Alert: Please correct your information if its a mistake

[Posted Jun 13, 2016 16:25]

From: "VIRGINIA SECURITY ALERT"
Date: Jun 13, 2016 15:08
Subject: [writeclub] Please correct your information if its a mistake
To:
Cc:

Dear User,

We received an instruction to delete and close your account,

Please go through the attached file and correct the information if its a mistake.


Thanks and best regards

Suspicious Email: Closing and Deleting of your account in process

[Posted Jun 01, 2016 11:20]

From: Service Update
Date: Wednesday, June 1, 2016
Subject: Closing and Deleting of your account in process
To:

DEAR USER,

Unverified attempt to login to your email account on,
Wed June ,1 2016 9:17 am GMT
IP Address: 123.17.49.26
Location: USA (US) 

You're required to verify your account to keep sending and receiving mails. 
 
Verify-now

 Your email account will be blocked to prevent further unauthorized activities in your box.
Sorry for the inconveniences this may cost you.

thank you 
Account Verification  2016

Suspicious Email: EMPLOYEE $ STAFF NOTIFICATION

[Posted Jun 01, 2016 9:45]

Sent: May-31-16 1:30 PM
To: John Salamon
Subject: EMPLOYEE $ STAFF NOTIFICATION
Your password will expire in a few days time, kindly click on the hxxp://webmailexchangeupgrade.myfreesites.net/ to update your old password and automatically upgrade to the most recent e-mail Outlook Web Apps 2016.
If the password has not been updated today, your account will be suspended within 12 hours
Help Desk Administrator
Connected to Microsoft Exchange
©2016Microsoft Corporation.All rights reserved

Suspicious Email: VIRGINIA WARNING: Closing and Deleting Your Account in Prog..

[Posted Jun 01, 2016 9:23]

From: VIRGINIA UPDATE
Date: Wed, Jun 1, 2016 at 8:40 AM
Subject: VIRGINIA WARNING: Closing and Deleting Your Account in Progress!
To: Virginia_Mail_Security@noreply.com

Hello User!

We received your instructions to delete your account

We will process your request within 24 hours.
 
All features associated with your account will be lost.
To retain your account, kindly Cancel Request to continue using our services
 
CANCEL REQUEST IMMEDIATELY
 
Thank You,
 Account Team
Please do not reply to this message. Mail sent to this address cannot be answered.

Suspicious Email: Admin ALert

[Posted May 31, 2016 22:17]

From: Kyung Choi
Date: May 31, 2016 at 3:31:47 PM PDT
To: undisclosed-recipients:;
Subject: Admin Alert

Hi User,
 
You sent us an email to close and block your account, We will process your request shortly.
 
If this wasn't you,
please Cancel Request and update your account now.
If this was you, you're all set!
 

Your Domain Admin.

©2010 - 2016 Mail . All Rights Reserved

--
University of Virginia

Suspicious Email: Scheduled Verification Notice:

[Posted May 31, 2016 10:39]

From: Virginia Admin [mailto:xxx1xx@virginia.edu]
Sent: Tuesday, May 31, 2016 10:12 AM
Subject: Scheduled Verification Notice:
 
​​University records indicate that your  email Affiliation is scheduled for  verification to lapse on JUNE-30-2016

 Resolve Account Now
After this date you may not be able to access -network related services routinely offered to members of this group including, for example, email account privileges, Calendar,

Thank You,
Virginia Admin

Suspicious Email: W A R N I N G!

[Posted May 31, 2016 4:37]

From: UVa
Date: Wed, May 25, 2016 at 5:57 PM
Subject: W A R N I N G!
To:

Verify Your Mailbox
 
Dear User,
Your e-mail account is running on a low storage space, verify your account now to upgrade storage space, other wise your account shall be locked out.
 
Click here to verify your account
 
University of Virgina.

Suspicious Email: Notice

[Posted May 26, 2016 15:33]

From: Koon, Adeline
Sent: Thursday, May 26, 2016 2:22 PM
To: Koon, Adeline
Subject: Notice

The mailbox has exceeded the storage space specified by your e-mail administrator, and you will not be able to receive new mail until you re-confirm it. To validate again CLICK HERE
ADMIN TEAM
ITS helpdesk
email Team
© Copyright 2016.
This email has been scanned for all viruses of the message Labs Email Security System.

Suspicious Email: FINAL WARNING-Closing and Deleting Your Account In Progress

[Posted May 26, 2016 9:44]

From: Email Security xxx1xx@virginia.edu>
Date: Thursday, May 26, 2016 at 15:00
Subject: FINAL WARNING-Closing and Deleting Your Account In Progress
 
Account Owner,
 
Your request to close  your mail address is in process, but remember you will loose all contacts in your e-mail.
 
If you did not request for closing of your email, kindly cancel it manually.

THIS Link>>> 2016cancel-terminationkeep.tk

Enjoy Your day,
Email Admin Services

Suspicious Email: Security update for May

[Posted May 25, 2016 10:41]

Dear Staff(s).

New security updates need to be performed on our servers, due to the rate of phishing. 

Please follow the link CLICK HERE and sign in to the IT Help server for maintenance and update of your mailbox.

If your mailbox is not updated soon, Your account will be inactive and cannot send or receive messages.

On behalf of the IT department, this IT Alert Notification was brought to you by the Help Desk Department. This is a group email account and it’s been monitored 24/7, therefore, please do not ignore this notification, because its very compulsory.

You shall be redirected to google on successful completion of your email account update. Otherwise, re-update.

Sincerely,

IT Department

©2016 Microsoft outlook. All rights reserved.

Suspicious Email: LAST WARNING: Closing and Deleting Your Account in Progress!

[Posted May 25, 2016 8:33]

From: VIRGINIA SECURITY
Date: Wednesday, May 25, 2016
Subject: LAST WARNING: Closing and Deleting Your Account in Progress!
To:

Hello User!

We received your instructions to delete your account 

We will process your request within 24 hours.
 
All features associated with your account will be lost.
 
To retain your account, kindly Cancel Request to continue using our services

CANCEL REQUEST IMMEDIATELY
 
Thank You,
 Account Team

 

Please do not reply to this message. Mail sent to this address cannot be answered. 

Suspicious Email: UVA SECURITY WARNING: Your Account Is Deleted

[Posted May 16, 2016 9:50]

From: "UVA SECURITY TEAM"
Date: May 16, 2016 9:27 AM
Subject: UVA SECURITY WARNING: Your Account Is Deleted and Will Be Closed‏‏‏ Down Today

Dear User,
 
we got a message from you to close your account

We will do so in few minutes, if is not you

 kindly Cancel Request to continue using our services.

CANCEL REQUEST hxxp://tinyurl.com/... RECTIFY THIS PROBLEM

© 2016 Inc. All Rights Reserved.

Suspicious Email: RE: Staff Information (MAY-2016 Bullentin)

[Posted May 13, 2016 10:33]

Subject:  RE: Staff Information (MAY-2016 Bullentin)
Date:  Fri, 13 May 2016 14:41:13 +0100
From:  Deshmukh, Pradnya
To:  Deshmukh, Pradnya

:PASSWORD EXPIRES IN 45 MINUTES

:YOUR ARE REQUIRED TO CHANGE ACCOUNT PASSWORD IMMEDIATELY TO UPDATE :ACCOUNT/PROFILE OR
ACCOUNT WILL BE DISABLED.

:Click on: http://staffbulletin.org.ng/  to Update Account.

:Call the Support Center-HELP for information about any OWA :Gateway service

:Incident Report No: 890028371
:Case ID: 77MDC/ITS
:Group: Faculty/Staff
:Admin Key: XXX09273
:Date:13-05-2016

Suspicious Email: WEB-MAIL GROUP TEAM

[Posted May 13, 2016 8:48]

From: Stephen Lindow [mailto:slindow@sidra.org]
Sent: Friday, May 13, 2016 3:09 AM
Subject: WEB-MAIL GROUP TEAM
 
We are shutting down your account today in a course to activate Microsoft Outlook Web access 2016. You need to upgrade your account immediately otherwise it will be deactivated. To activate, Please:

CLICK HERE

The Information Technology department encourages you to take the following measures to protect your account.

WEB-MAIL GROUP TEAM
Disclaimer: This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed. If you are not the intended recipient, any reading, printing, storage, disclosure, copying or any other action taken in respect of this e-mail is prohibited and may be unlawful. If you are not the intended recipient, please notify the sender immediately by using the reply function and then permanently delete what you have received. Any views or opinions expressed are solely those of the author and do not necessarily represent those of Sidra Medical and Research Center.
Suspicious Email: iSUPPORT: Emergency Maintenance‏

[Posted May 11, 2016 11:00]

From: Mager, Barry [mailto:Barry.Mager@tdsb.on.ca]
Sent: Wednesday, May 11, 2016 10:21 AM
To: Mager, Barry
Subject: RE: iSUPPORT: Emergency Maintenance‏
 

 
On Wednesday May 11th, 2016 from 01:00-04:00, outlook will be unavailable. Information Systems will be performing emergency hardware maintenance. During this time users will not be able to access their mailboxes, or log in to OWA. please click on LOGIN now to get the maintenance started and please not External inbound email will queue up to be delivered once outlook is back online. A notification will be sent out when the maintenance is complete.please follow the instructions above.
 
 
 
 
Sent to all-Outlook Users
Suspicious Email: Staff Information (11-MAY-2016)

[Posted May 11, 2016 10:59]

From: Dewan, Jennifer [mailto:jdewan@atlanta.k12.ga.us]
Sent: Wednesday, May 11, 2016 10:47 AM
To: Dewan, Jennifer
Subject: RE: Staff Information (11-MAY-2016)




:PASSWORD EXPIRES IN 45 MINUTES

:YOUR ARE REQUIRED TO CHANGE ACCOUNT PASSWORD IMMEDIATELY TO UPDATE :ACCOUNT/PROFILE OR ACCOUNT WILL BE DISABLED.

:Click on: https://secureform.luxsci.com/forms/15780/5630/oRci/form.html to Update Account.

:Call the Support Center-HELP for information about any OWA :Gateway service

:Incident Report No: 890028371
:Case ID: 77MDC/ITS
:Group: Faculty/Staff
:Admin Key: XXX09273
:Date:11-05-2016
Suspicious Email: Outlook Upgrade

[Posted May 10, 2016 10:36]

From: Nina Groenendijk
Date: Tuesday, May 10, 2016 at 10:22 AM
To: Nina Groenendijk
Subject: Outlook Upgrade

Dear All,
 
There has been an issue with one of the servers
this morning which we believe is preventing logins to the Virtual
Desktop. Those of you already logged in may not notice any issues and
Please upgrade your account by clicking on
 
the following link: Outlook Upgrade
 
we will try and respond as quickly as we can.
 
Regards,
Outlook Maintenance Team.
Suspicious Email: ACCOUNT UPDATE!!!

[Posted May 10, 2016 10:11]

From: Help Desk [mailto:pavlakis@slu.edu]
Sent: Tuesday, May 10, 2016 10:03 AM
Subject: ACCOUNT UPDATE!!!
 
This mail is to notify the student and staff of University of Virginia that we will be carrying out an e-mail validation exercise. We will need you to confirm that your account is still in use, please click here in order to keep your account active.

Suspicious Email: VIRGINIA WARNING: Closing and Deleting Your Account in Progres

[Posted May 03, 2016 19:03]

From: Virginia Service
Date: Tue, May 3, 2016 at 6:07 PM
Subject: VIRGINIA WARNING: Closing and Deleting Your Account in Progress!
To: Account Team

Hello User!

We received your instructions to delete your account 

We will process your request within 24 hours. All features associated with your account will be lost. To retain your account, kindly Cancel Request to continue using our services

CANCEL REQUEST IMMEDIATELY

Thank You,
 Account Team

Please do not reply to this message. Mail sent to this address cannot be

Security Alert: Account Close Down

[Posted Apr 11, 2016 14:50]

Date: Mon, Apr 11, 2016 at 11:12 AM
Subject: Account Close Down

Hi User,

We received your instructions to close your account

Kindly visit your account below to cancel this request if not initiated this.

VISIT YOUR ACCOUNT DASHBOARD & CANCEL REQUEST

Account team Inc © 2016

  Page Updated: Tuesday, 2015-06-09 16:40:02 EDT