Cybersecurity Alert: Phishing Emails Targeting UMBC Benefits Information
Watch out for fake emails with subjects like "Meeting/[your name]" asking to review your pension and UMBC benefits. These are NOT legitimate and are part of a phishing campaign DoIT is tracking.
Key things to remember:
- Check the Sender: Official UMBC HR emails about benefits come from umbc.edu addresses. State emails usually end in .gov. Be suspicious of other senders.
- Don't Click, Don't Reply: If an email about your benefits seems off, avoid clicking links or opening attachments, and do not reply.
- Report Suspicious Emails:
We're sharing information about a recent phone and email scam to raise awareness across our campus community. Multiple scammers posing as a 'Shipping' and 'Billing' department targeted a UMBC office, using a combination of aggressive phone calls and persuasive emails to demand payment for copier and toner supplies. They had access to details like staff names and equipment models, making their claims appear genuine.
To protect yourself and the university, always verify payment requests and consult with colleagues or Procurement before using your P-card if you are unsure if the request is legitimate.
]]>
We're sharing information about a recent phone and email scam to raise awareness across our campus community. Multiple scammers posing as a 'Shipping' and 'Billing' department targeted a UMBC...
https://beta.my.umbc.edu/api/v0/pixel/news/147921/guest@my.umbc.edu/3e33ab4627a6010f285741323b30e716/api/pixel
IT Security - DoIT Cybersecurity Assurance and Digital Trust
https://beta.my.umbc.edu/groups/itsecurity
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/original.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxlarge.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xlarge.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/large.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/medium.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/small.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxsmall.png?1777162216
IT Security - DoIT
2
0
false
Fri, 07 Mar 2025 11:09:30 -0500
Fri, 07 Mar 2025 11:12:48 -0500
Beware of PayPal "New Address" Emails
New approach (to phishing). Same goal.
Cyberattackers constantly evolve their tactics to bypass organizational defenses. A recent trend involves exploiting PayPal's gift address feature to deliver phishing messages. These messages may include a fake support number to trick recipients into calling or malicious links designed to steal account credentials. In either case, the attacker's goal is to compromise your PayPal account.
If you receive a PayPal notification about account changes or a sent invoice, do not click any links in the email. Instead, directly type the official PayPal URL into your web browser to ensure you're interacting with the legitimate PayPal website, not a fraudulent copy.
This morning, several individuals received a phishing email disguised as a job opportunity. We want to thank everyone who reported it. Your reports allow us to take immediate action to protect others.
If you receive a suspicious email, please report it. Google provides the ability to report phishing in your web browser by clicking the three vertical dots next to the email sent date and selecting "Report Phishing." You can also forward the email to
security@umbc.edu. Both options create a ticket for our team.
Phishing is the use of deception to obtain sensitive information. In this case, the email attempted to collect your personal information. There were a couple of red flags that make it clear it is phishing:
- The email claimed to be from the Career Center but was sent from a personal Gmail address (not @umbc.edu).
- The link to the UMBC application portal redirected you to a Google Form, not UMBC's official portals.
- The Google Form was asking for personal information.
- The email requested that replies be sent to a personal Gmail address instead of the Career Center's UMBC email address.
Thank you again to all who reported the phish!
]]>
This morning, several individuals received a phishing email disguised as a job opportunity. We want to thank everyone who reported it. Your reports allow us to take immediate action to protect...
Image
https://assets1-beta.my.umbc.edu/system/shared/attachments/5b089e2d5faf10f7a6bab9073f6987b9/69ee7428/news/000/147/530/47b6ed0b6b6824c8dc892e2e48b462f9/Phishy Email.png?1740148103
https://beta.my.umbc.edu/api/v0/pixel/news/147530/guest@my.umbc.edu/0b9728621d8f27afc862cd897158196f/api/pixel
phishing
IT Security - DoIT Cybersecurity Assurance and Digital Trust
https://beta.my.umbc.edu/groups/itsecurity
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/original.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxlarge.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xlarge.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/large.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/medium.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/small.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxsmall.png?1777162216
IT Security - DoIT
7
0
false
Fri, 21 Feb 2025 09:37:54 -0500
Fri, 21 Feb 2025 09:38:22 -0500
Account Deactivation Emails
Don't click - it's a phish!!
The Department of Information Technology (DoIT) has received reports of a phishing campaign asking the campus community to provide their user ids and passwords to ensure their accounts are not deactivated. These emails are not legitimate.
DoIT will never ask you to input your user id, password or Duo codes into a Google Form.
For several years, UMBC's Division of Information Technology has received reports of gift card scams. Recently, some of these scams have been sent as text messages to personal phones, falsely representing themselves as directions from senior administration officials. Regardless of how the message is sent or received, who appears to be sending it, or what personal information it may contain, it's a scam. Nobody is going to ask you to buy several hundred dollars' worth of gift cards and send the PINs.
The scam is simple, and while details may vary, the basic outline remains the same.
Short version:
Someone tells you to buy one or more gift cards and then to send them the numbers off the back.
Detailed version:
The victim receives a message, possibly through email, SMS text message, or even a phone call, telling them that someone in authority (a supervisor, the Internal Revenue Service, etc.) needs them to purchase some quantity of gift cards. The message will specify a type of gift card, such as Google Play or iTunes, but it could be any card that can be used like money. The message will often be worded to make the immediate purchase seem urgent and may state that the person needing the card cannot be reached directly (e.g., "in a meeting" or "out of the country").
The victim is instructed to get the PIN off the back of the card and send it or a picture of it via phone, email, or some other method of electronic communication.
Once this is done, the scam is over. The scammer can sell the PIN numbers at a discount. Since the scammer has spent nothing, everything is pure profit.
If you receive a scam message involving UMBC phone numbers, UMBC-owned phones, or mentioning members of the UMBC community, please notify DoIT through email at security@umbc.edu.
You can find more information about these scams at:
]]>
For several years, UMBC's Division of Information Technology has received reports of gift card scams. Recently, some of these scams have been sent as text messages to personal phones, falsely...
https://consumer.ftc.gov/articles/avoiding-and-reporting-gift-card-scams
https://beta.my.umbc.edu/api/v0/pixel/news/143015/guest@my.umbc.edu/c2bf0580fdecd5d462396b63ee9944c8/api/pixel
notice
IT Security - DoIT Cybersecurity Assurance and Digital Trust
https://beta.my.umbc.edu/groups/itsecurity
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/original.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxlarge.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xlarge.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/large.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/medium.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/small.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxsmall.png?1777162216
IT Security - DoIT
15
0
true
Wed, 31 Jul 2024 21:02:24 -0400
Concerning Job Scams
Holidays and long weekends attempt to catch users off guard
Over the weekend the Division of Information Technology has gotten reports of several job scams sent to users by email. These scams promise good pay for minimal effort, usually at home on your own schedule. The scams will ask for your information, including:
- name and full address
- cell phone number and personal email address
- in some cases your resume
- banking or credit card information
- passport information and/or social security number (SSN)
This information can be used to impersonate you by opening credit in your name, or simply to drain the finances from your current accounts. Users have also reported fake invoices from well known companies, as well as check or money order scams; both meant to trick people to send money directly to the scammers.
If you have received any suspicious emails asking for your personal information, even from someone appearing to be affiliated with UMBC, do not respond. Send the message to
security@umbc.edu. We will help to verify the legitimacy of these messages.
]]>
Over the weekend the Division of Information Technology has gotten reports of several job scams sent to users by email. These scams promise good pay for minimal effort, usually at home on your own...
https://itsecurity.umbc.edu/cyber-awareness/tips-to-avoid-identity-theft/
https://beta.my.umbc.edu/api/v0/pixel/news/134067/guest@my.umbc.edu/bab9f656bf0ebba90522467522e855fe/api/pixel
IT Security - DoIT Cybersecurity Assurance and Digital Trust
https://beta.my.umbc.edu/groups/itsecurity
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/original.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxlarge.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xlarge.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/large.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/medium.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/small.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxsmall.png?1777162216
IT Security - DoIT
https://assets3-beta.my.umbc.edu/system/shared/thumbnails/news/000/134/067/b07cb748c2c1920aebde647ceb16aaef/xxlarge.jpg?1687272518
https://assets1-beta.my.umbc.edu/system/shared/thumbnails/news/000/134/067/b07cb748c2c1920aebde647ceb16aaef/xlarge.jpg?1687272518
https://assets1-beta.my.umbc.edu/system/shared/thumbnails/news/000/134/067/b07cb748c2c1920aebde647ceb16aaef/large.jpg?1687272518
https://assets4-beta.my.umbc.edu/system/shared/thumbnails/news/000/134/067/b07cb748c2c1920aebde647ceb16aaef/medium.jpg?1687272518
https://assets3-beta.my.umbc.edu/system/shared/thumbnails/news/000/134/067/b07cb748c2c1920aebde647ceb16aaef/small.jpg?1687272518
https://assets4-beta.my.umbc.edu/system/shared/thumbnails/news/000/134/067/b07cb748c2c1920aebde647ceb16aaef/xsmall.jpg?1687272518
https://assets3-beta.my.umbc.edu/system/shared/thumbnails/news/000/134/067/b07cb748c2c1920aebde647ceb16aaef/xxsmall.jpg?1687272518
16
0
false
Tue, 20 Jun 2023 16:33:13 -0400
Thu, 28 Mar 2024 14:19:23 -0400
Event ticket sales paused due to vendor security concerns
UMBC has been informed that a third-party vendor for campus event ticketing, AudienceView (also known as University Tickets), recently experienced a payment card data security breach with its online Box Office services. The vendor has advised us that no UMBC information was compromised. However, in an abundance of caution, we have suspended online Box Office ticket sales through UMBC's online event ticket portal effective immediately, and until further notice.
Until this issue is resolved, traditionally ticketed events may be open (unticketed) or use alternative payment methods. For information about attending specific events, please see the event websites for athletics, the arts, and Student Affairs.
UMBC's Division of Information Technology has records of everyone who used the online ticket portal and has reached out to those who may have been affected. The national breach involves ticket purchases in the month of February. We strongly encourage anyone who purchased tickets through the ticket portal in February to review their credit card statements immediately, contact their banking institution regarding any suspicious transactions, and report the suspicious transactions to UMBC Police.
We will provide additional information regarding future ticket sales once the matter is resolved.
We encourage you to review our CyberSecurity Awareness website for guidance on further protecting your personal information and safe computing practices. As a best practice, we also recommend that you remain vigilant and promptly report to us and to the proper law enforcement authorities any suspicious activity or suspected fraudulent transactions.
If you have any questions please email security@umbc.edu.
Damian Doyle
Deputy CIO and Interim Chief Information Security Officer
Division of Information Technology
]]>
UMBC has been informed that a third-party vendor for campus event ticketing, AudienceView (also known as University Tickets), recently experienced a payment card data security breach with its...
https://beta.my.umbc.edu/api/v0/pixel/news/131311/guest@my.umbc.edu/b190b96efba21d91368d23087738ea46/api/pixel
IT Security - DoIT Cybersecurity Assurance and Digital Trust
https://beta.my.umbc.edu/groups/itsecurity
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/original.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxlarge.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xlarge.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/large.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/medium.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/small.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxsmall.png?1777162216
IT Security - DoIT
4
0
false
Tue, 28 Feb 2023 15:59:55 -0500
Tue, 28 Feb 2023 16:07:38 -0500
Two Unusual Phishing Campaigns
Scammers get creative
Recently the Division of Information Technology (DoIT) received notification of two phishing campaigns at other universities. While neither of these has been reported at UMBC, we are posting this warning as a precautionary measure.
One campaign is an advertisement for extras in a movie. The extras are to appear nude or semi-nude in a party scene and anyone interested is asked to reply for more details.The email is from a standard gmail.com account, not a recognized film production company.
The other campaign is a questionnaire directed to male recipients asking personal questions about circumcision. The sender is described as a nurse working for an unnamed non-profit organization. Like the studio advertisement, the message is from a standard gmail.com account.
Both of these messages are fakes trying to gather personal information about the recipient. Presumably the goal is identity theft, though there may also be a later attempt to scam the recipient for money.
As always with phishing messages, Please Do Not Reply!
__________________________________________________________
Receive any suspicious emails?
]]>
Recently the Division of Information Technology (DoIT) received notification of two phishing campaigns at other universities. While neither of these has been reported at UMBC, we are posting this...
https://itescurity.umbc.edu
https://beta.my.umbc.edu/api/v0/pixel/news/130051/guest@my.umbc.edu/b8406f14fe53696bb24f336193a96094/api/pixel
notice
IT Security - DoIT Cybersecurity Assurance and Digital Trust
https://beta.my.umbc.edu/groups/itsecurity
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/original.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxlarge.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xlarge.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/large.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/medium.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/small.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxsmall.png?1777162216
IT Security - DoIT
https://assets2-beta.my.umbc.edu/system/shared/thumbnails/news/000/130/051/2753e50142e2f5b7089b165accdcc900/xxlarge.jpg?1672851649
https://assets2-beta.my.umbc.edu/system/shared/thumbnails/news/000/130/051/2753e50142e2f5b7089b165accdcc900/xlarge.jpg?1672851649
https://assets2-beta.my.umbc.edu/system/shared/thumbnails/news/000/130/051/2753e50142e2f5b7089b165accdcc900/large.jpg?1672851649
https://assets3-beta.my.umbc.edu/system/shared/thumbnails/news/000/130/051/2753e50142e2f5b7089b165accdcc900/medium.jpg?1672851649
https://assets1-beta.my.umbc.edu/system/shared/thumbnails/news/000/130/051/2753e50142e2f5b7089b165accdcc900/small.jpg?1672851649
https://assets1-beta.my.umbc.edu/system/shared/thumbnails/news/000/130/051/2753e50142e2f5b7089b165accdcc900/xsmall.jpg?1672851649
https://assets3-beta.my.umbc.edu/system/shared/thumbnails/news/000/130/051/2753e50142e2f5b7089b165accdcc900/xxsmall.jpg?1672851649
7
0
false
Fri, 06 Jan 2023 16:44:38 -0500
Protecting your online account over Winter Break
As we prepare for the winter break, we commonly see a surge in malicious activity toward user accounts. Users receive emails warning about unpaid invoices, expired passwords, or full inboxes. These messages are made to convince people that they are in danger of losing money or access if they don't respond, or click a link within an email. Very often these messages will appear to come from someone you know, from a company you may have done business with, or in some cases, from what looks like your own account.
Other common phishing messages recently have included invoices from companies like PayPal or GeekSquad saying they will be charging your credit card if you don't click a link. These messages are fake.
We have some FAQs available on how to identify phishing/spam messages you can look at below.
As well as some best practices for keeping your account secure:
]]>
As we prepare for the winter break, we commonly see a surge in malicious activity toward user accounts. Users receive emails warning about unpaid invoices, expired passwords, or full inboxes....
https://beta.my.umbc.edu/api/v0/pixel/news/129969/guest@my.umbc.edu/15fdd505c7dd0a1313df3c60b40055b7/api/pixel
learn
notice
IT Security - DoIT Cybersecurity Assurance and Digital Trust
https://beta.my.umbc.edu/groups/itsecurity
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/original.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxlarge.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xlarge.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/large.png?1777162216
https://assets4-beta.my.umbc.edu/images/avatars/group/7/medium.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/small.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1777162216
https://assets1-beta.my.umbc.edu/images/avatars/group/7/xxsmall.png?1777162216
IT Security - DoIT
https://assets1-beta.my.umbc.edu/system/shared/thumbnails/news/000/129/969/f94c5a86b59201fa4ce2411213f40d01/xxlarge.jpg?1671734441
https://assets3-beta.my.umbc.edu/system/shared/thumbnails/news/000/129/969/f94c5a86b59201fa4ce2411213f40d01/xlarge.jpg?1671734441
https://assets1-beta.my.umbc.edu/system/shared/thumbnails/news/000/129/969/f94c5a86b59201fa4ce2411213f40d01/large.jpg?1671734441
https://assets3-beta.my.umbc.edu/system/shared/thumbnails/news/000/129/969/f94c5a86b59201fa4ce2411213f40d01/medium.jpg?1671734441
https://assets3-beta.my.umbc.edu/system/shared/thumbnails/news/000/129/969/f94c5a86b59201fa4ce2411213f40d01/small.jpg?1671734441
https://assets3-beta.my.umbc.edu/system/shared/thumbnails/news/000/129/969/f94c5a86b59201fa4ce2411213f40d01/xsmall.jpg?1671734441
https://assets4-beta.my.umbc.edu/system/shared/thumbnails/news/000/129/969/f94c5a86b59201fa4ce2411213f40d01/xxsmall.jpg?1671734441
2
0
true
Thu, 22 Dec 2022 13:44:11 -0500