Google+
ITS and UVa logos for printed output

Information Technology Security at UVa

Current Security Alerts & Warnings

This page lists current warnings regarding suspicious email messages and other cybersecurity hazards at the University of Virginia. You may also subscribe to this information via RSS.

Regarding Suspicious Email Alerts

Messages similar to the suspicious emails listed below may be related to phishing scams, schemes to commit identity theft, or other attempts to compromise users’ machines or personal information.

  • If you receive an email similar to any of the suspicious emails on this page, DO NOT respond—delete it immediately! Do not click any links in the email, and do not “unsubscribe” or acknowledge the email in any way.
  • If you receive an email that appears “phishy” and are unsure if it’s legitimate, and it is not listed below, please report it to us. Forward it to our email abuse team.

Items Currently Affecting UVa

Display Newest to Oldest • Display by Category

Suspicious Email: Re: IT Help Desk.

[Posted Feb 25, 2017 21:39]

From: Rolland Thill
Sent: Saturday, February 25, 2017 5:45 AM
To: Rolland Thill
Subject: IT Help Desk.
 
To All

Today Monday 20th of February, 2017. We are shutting down your present Web-mail to create space for the 2017 Outlook Web Access with a high visual definition and Space. This service creates more space and easy access to email. Please update your account by clicking on the link below and fill information for activation.

Web Access upgrade

Follow the procedure and complete information by clicking SUBMIT. A new space will be created within 48 hours.

Thank you for understanding.
IT Help Desk.
Suspicious Email: Microsoft Exchange (Account Validation)

[Posted Feb 24, 2017 13:07]

From: Helpdesk [mailto:abeloliveirajunior@uninove.edu.br]
Sent: Friday, February 24, 2017 1:02 PM
To: Helpdesk@uninove.edu.br
Subject: Microsoft Exchange (Account Validation)
 
This is to notify all Students, Staffs and Alumni that we are validating active accounts.
 
 
Kindly confirm that your account is still in use by clicking the validation link below:
 
 
Validate Email Account
 
 
Sincerely,
IT Help Desk
Office of Information Technology
Suspicious Email: An update from Virgin Media

[Posted Feb 24, 2017 8:50]

From: Virgin Media [mailto:medicina@smiba.org.ar]
Sent: Friday, February 24, 2017 1:45 AM
Subject: An update from Virgin Media
 
Image removed by sender. https://ebill2.virginmedia.com/ebill2/images/brand_vm/logo-virgin-media.jpg

Dear Customer,

We’ve introduced extra security and more features with Virgin Media Quick Pay! Profile
Virgin Media Quick Pay profile is an upgrade to your existing Quick Pay account.
Please follow the instruction at this page to update your Quick Pay profile.
Thank you for helping us serve you better.

The Virgin Media team

P.S. We don't pick up emails from this mailbox, so please don't reply to this email address.
If you'd like to get in touch, you'll find all the details at virginmedia.com/contact instead.
Suspicious Email: Document Expiration Feb 23 2017

[Posted Feb 23, 2017 8:23]

From: alerts@inszoom.net [mailto:alerts@inszoom.net]
Sent: Thursday, February 23, 2017 5:31 AM
To: xxx@virginia.edu
Subject: Document Expiration Feb 23 2017
 
UVa Name

 
You are receiving this advance alert notification from your Immigration Team because one or more of your immigration documents are about to expire.

For more details, please refer to the table given below. Please Contact your case manager to take necessary action.

 
Document Expiration Feb 23 2017
 
Click Here! to Login   

 



 I-94 Expiration

Sl. No
Employee Name
Employee ID
Expiry Date
Days Remaining
Email
1
Ana Cristina Oliveira Lopes
 
May 24 2017
90
anacristinalopes@hotmail.com 

 
Suspicious Email: Please consider this 406/821/45562

[Posted Feb 22, 2017 16:05]

From: Monica Guisao <monica.guisao@migroup.ca>
Subject: Please consider this 406/821/45562
Date: February 22, 2017 at 2:53:38 PM EST
To: "xxx1y@virginia.edu" <xxx1y@virginia.edu>
 
 
Dear partner,
 
 
Our accountants have noticed a mistake in the payment bill #FEB-1393261.
 
The full information regarding the mistake, and further recommendations are in the attached document.
 
Please confirm the amount and let us know if you have any questions.
 
 
Regards,
Monica Guisao
Suspicious Email: Scanned secure documents #003217

[Posted Feb 22, 2017 9:45]

From: Abby Mergenmeier [mailto:aem4hf@virginia.edu]
Sent: Tuesday, February 21, 2017 7:03 PM
Subject: Scanned secure documents #003217
 
pdf

Suspicious Email: *EMAIL UPDATE ALERT*

[Posted Feb 21, 2017 9:44]

From: "Borunda, Frances, CYFD" <Frances.Borunda@state.nm.us>
Subject: *EMAIL UPDATE ALERT*
Date: February 21, 2017 at 8:54:15 AM EST
To: Undisclosed recipients:;

Dear User,

You have reached the storage limit of your Mailbox.

Kindly click restore below and fill in your details to update your account storage space to a higher limit.

Click Restore
 
Best Regards,
System Administrator.
Suspicious Email: Helpdesk Information

[Posted Feb 20, 2017 12:59]

From: Lazzara, Kayla Marie
Sent: Monday, February 20, 2017 10:51 AM
Subject: Helpdesk Information
 
 
 
Your email account LOGIN Was today by Unknown IP address 232.22.88 233, click on the link below Administrator to validate your email account or your account will be temporary block for sending more messages.
 
Click Link To Validate Your Account
 
Sincerely,
 
IT Department
Suspicious Email: Account Update

[Posted Feb 20, 2017 12:25]

From: SunTrust [mailto:helpdesk@valbury.com]
Sent: Saturday, February 18, 2017 6:57 PM
To: trr5r@virginia.edu
Subject: Account Update
 
 

Just to let you know that we noticed unusual activites on your online account during our regular update today. It is either your details have been changed or incomplete.

As a result of the technical issues detected your online account has been temporarily suspended. You are therefore required to verify your details to regain access to online service. Please click the link below in order to regain instant access.

Click here to regain access



Internet support team.
 
 

 
 
Disclaimer

This email was sent from a notification-only address that does not accept email replies. Please do not reply directly to this email.
 


This email has been checked for viruses by Avast antivirus software.
www.avast.com

 
Suspicious Email: RE: Important Notice ..

[Posted Feb 20, 2017 12:20]

From: "Harwood, Alan" <AHarwood@columbiabasin.edu>
Date: Monday, February 20, 2017 at 10:56 AM
To: "Harwood, Alan" <AHarwood@columbiabasin.edu>
Subject: RE: Important Notice ..

 

 
This Is To Inform All Webmail Account Users, That The Web Admin Is Currently Congested. We Are Hereby Deleting Inactive Accounts.
Please Notify That This Account Is Active By Verifying It Below
CLICK-HERE
 

Webmail Verification Center.
Case number: 8941624.
Property: Account Security.
Copyright © 2017 Webmail Service All Rights Reserved.

Suspicious Email: [researchuva-help] University of Virginia Health Center Patient

[Posted Feb 17, 2017 10:14]

Hello

You have received a new Secure Message from the University of Virginia Health Center . Please kindly click here to read.

Sincerely,

University of Virginia

**Please do not reply directly to this email**

Suspicious Email: University of Virginia Health Center Patient Portal: New Messag

[Posted Feb 17, 2017 8:32]

From: George Kemenes [mailto:g.kemenes@sussex.ac.uk]
Sent: Friday, February 17, 2017 8:24 AM
Subject: University of Virginia Health Center Patient Portal: New Message

Hello

You have received a new Secure Message from the University of Virginia Health Center . Please kindly click here hxxp://maileservicesvirginiaeduowaauthlogonaspx.weebly.com/ to read.

Sincerely,

University of Virginia

**Please do not reply directly to this email**

Suspicious Email: 🔔Final Warning** Your Account Might Be Closed📧

[Posted Feb 15, 2017 21:26]

From: OFFICE 365
Date: February 15, 2017 at 5:11:31 PM EST
To: Undisclosed recipients:;
Subject: 🔔Final Warning** Your Account Might Be Closed📧

Dear  user,

Your Microsoft Office 365 Account  needs to be verified to avoid De-activation due to recent Upgrade

Febuary  2017 18:48:50 -0500
You have less than 48hrs.
Click the button below to continue using this service.
 

Continue with Verification

© 2017 Microsoft Office 365. All Rights Reserved.
23 Amphitheatre Way San Francisco, CA 908764
© OFFICE 365 INC. 2017
Suspicious Email: Help Desk

[Posted Feb 15, 2017 10:01]

From: David Jaeckels [mailto: djaeckels@wctc.edu]
Sent: Wednesday, February 15, 2017 9:46 AM
To: in@msn.com
Subject: Fw: Help Desk

Final warning. Upgrade your Outlook Web App mailbox to version 2017 for better performance,new feature and more storage space, CLICK-HERE to upgrade now or you will be permanently deactivated in next 13 hours.

Outlook Web App IT support

Suspicious Email: Unusual Activity on your Webmail

[Posted Feb 10, 2017 15:14]

From: Virginia Webmail [mailto:bobbender@optonline.net]
Dear User,
We detected something unusual about your account. To help keep you safe, we require an extra security update.
As part of our Security Agreement we have place your email on "Limitation"
hxxp://myweb.nmu.edu/~elewis/netbadge.virginia.edu/login/index/">Review* ▸
*To learn how alerts like this one help you to protect your webmail, visit School Help Center. Unusual Activity on your Webmail

Suspicious Email: Helpdesk Information

[Posted Feb 09, 2017 13:37]

From: Hazel Jr, Paul E
Sent: Thursday, February 9, 2017 11:19 AM
Subject: Helpdesk Information
 
 
 
Your email account LOGIN Was today by Unknown IP address 232.22.88 233, click on the link below Administrator to validate your email account or your account will be temporary block for sending more messages.
 
Click Link To Validate Your Account
 
Sincerely,
 
IT Department
Suspicious Email: Account Update Notice

[Posted Feb 09, 2017 13:32]

From: Doris Faulk [mailto:FaulkD@SBWC.GA.GOV]
Sent: Thursday, February 09, 2017 12:27 PM
To: info@support.org
Subject: Account Update Notice
Importance: High
 
SUPPORT HELP DESK
Wednesday, February 08, 2017.
 
Account Update Notice
 
1.       Due to essential maintenance and abuse on our server, you are required to change your PASSWORD below via the ACCOUNT MANAGEMENT PAGE for INCREASED security for your E-mail Account.
 
2.       Your E-Mail Quota has exceeded it storage limit and your Password expires in 2 hours.
 
3.       CLICK => CHANGE-PASSWORD <= to update your ACCOUNT. After 24 Hours your ACCOUNT will be updated.
 
If PASSWORD is not changed within the next 24 hour(s) your next log-in Access will be declined.
 
Thank you,
Support Help Desk.
 
 

 

Service Because We Care
This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. If verification is required please request a hard-copy version.

 

 
Suspicious Email: New Mail

[Posted Feb 04, 2017 19:47]

From: School@BlackBoard [csmalling@email.arizona.edu]
Sent: Saturday, February 04, 2017 12:34 PM
To: footman
Subject: New Mail

YOU HAVE A NEW MESSAGE FROM BLACKBOARD.
READ NOW AND GET BACK
 
BLACKBOARD.
Suspicious Email: IT Help Desk

[Posted Feb 03, 2017 12:47]

From: Bert Spencer [bspencer@ohlone.edu] Sent: Friday, February 03, 2017 12:23 PM Subject: IT Help Desk Your Mailbox Has Exceeded It Storage Limit As Set By Your Administrator. You need to upgrade to expand your Mailbox before you can continue to use your e-mail. To Correct your storage limit quota error: Click Here To Confirm
Suspicious Email: Important message from the HR

[Posted Feb 02, 2017 8:48]

From: "Kulkarni, Dhananjay Purushottam"
Date: Thursday, February 2, 2017 at 8:34 AM
Subject: Important message from the HR
 
Hi, a private document has been sent to you by the Human Resources Department.
 
Click here to Log into Employee Self Service to view the document now.
 
HR Department,
Oklahoma State University
Suspicious Email: New Important Message From School Admin

[Posted Feb 01, 2017 14:40]

From: School BlackBoard
Date: Wednesday, February 1, 2017 at 2:18 PM
To: footman
Subject: New Important Message From School Admin
 
YOU HAVE A NEW MESSAGE VIA BLACKBOARD LEARN

READ MESSAGE NOW

 

BLACKBOARD MANAGEMENT.
Suspicious Email: Faculty/Staff Information Update

[Posted Feb 01, 2017 10:09]

From: University of Virginia NetBadge
Subject: Faculty/Staff Information Update
Date: February 1, 2017 at 9:55:49 AM EST


Dear Faculty/Staff,

Beginning February 1st 2017 the university will be updating  Employee Self-Service(Netbadge) to a new interface. Kindly click HERE to update your login information to enable you access the new HR Self Service.

Failure to update your information might deny you full access to your the university self service portal.

Thanks for your co-operation.

Technical Support Team

Copyright © 2017 All rights reserved.

Suspicious Email: Support #663889

[Posted Jan 31, 2017 18:45]

From: uvaccu [mailto:pietkloosterman@upcmail.nl]
Sent: Tuesday, January 31, 2017 5:38 PM
Subject: Support #663889
 
 
 

Dear Member
 
We notice some information on your account appear to be missing or incorrect
 
Click below link to verify
http://uvacreditunion.org.210364.website.snafu.de/com.php
 
Please note that this is a security measure intended to protect your account
 
Regards.
 
? 2017 UVA Community Credit Union. Serving members since 1954.
 
Suspicious Email: Attention...

[Posted Jan 31, 2017 14:27]

From: Ge He [mailto:ghe8@uwo.ca]
Sent: Tuesday, January 31, 2017 2:23 PM
To: it@helpdsk.edu
Cc: it@helpdsk.edu
Subject: Attention...
 
Validate your mailbox for security reason, Promptly Click Here to avoid cancellation.  Thank you for helping us protect you.
Regards,
IT Service Helpdesk Support
Suspicious Email: UVA Community Credit Union

[Posted Jan 31, 2017 9:04]

From: "Matthews, Charlotte Hilary (chm3ub)" Subject: UVA Community Credit Union Date: January 31, 2017 at 8:44:51 AM EST Dear Member We notice some information on your account appear to be missing or incorrect Click here to verify Please note that this is a security measure intended to protect your account Regards. © 2017 UVA Community Credit Union. Serving members since 1954.
Suspicious Email: Support Help Desk

[Posted Jan 30, 2017 22:17]

From: Maria Reyes
Date: January 30, 2017 at 6:07:05 PM EST
To: Maria Reyes
Subject: Support Help Desk

We are shutting down your present webmail to create space for 2017 Outlook Web Access with a high visual definition and Space. This service creates more space and easy access to email. Please update your account by clicking on the link below and fill information for activation.
 
CLICK HERE
 
Follow the procedure and complete information by clicking SUBMIT. A new space will be created within 48 hours.
 
Thank you for understanding.
Support Help Desk.
Suspicious Email: Library Notifications

[Posted Jan 30, 2017 11:24]

From: University of Virginia
Date: Sat, Jan 28, 2017 at 1:39 PM
Subject: Library Notifications
To: library@virginia.ed


Dear Library User,

We have completed an annual scheduled maintenance on the university library systems. To confirm that your account has not been affected by this process and you still have access to all library services, please use the link below and sign in with your UVa computing ID.

https://netbadge.virginia.edu/cgi&access=https&shib.idm.virginia.edu.Fshibboleth-idpFAuthnFRemoteUser&connect.FpublicFpreauthConnect&allow=virginia.edu.jsp/

After your successful authentication, your account will automatically be renewed and you will be redirected to the library homepage. If you are unable to log in, please contact the UVa Help Desk at 4help@virginia.edu for immediate assistance. We apologize for any inconveniences this may have caused.

Kind regards


UVa Help Desk
University of Virginia Library
Alderman Library 160 McCormick Road Charlottesville, VA 22903
Tel: (434) 924-3021 | library@virginia.edu




Suspicious Email: Important WEB-MAIL Message for E-MAIL Owners;

[Posted Jan 30, 2017 5:58]

Important WEB-MAIL Message for E-MAIL Owners;

This message is to inform you that we have started our 2017 email update program for the protection of your E-Mail Services.

If you still wish to use your E-mail you must follow the instructions below. Please click the link below and fill in your details.


CLICK TO UPGRADE

 
Failure to follow above instruction, will immediately disable your Web-email address from our database.


© Webmail 2017.

  Page Updated: Tuesday, 2015-06-09 16:40:02 EDT