COVID-19 Phishing Scams

[Agriculture, Life and Veterinary Sciences, and Cooperative Extension Weekly Bulletin]

Hello,

The Information Security Office has seen an uptick of phishing emails hitting campus. Please read through the message below and remember:


  *   If you receive a Duo push or phone call that you did not initiate, please report it immediately to your IT Support Professional<https://cct.cals.arizona.edu/support#find-an-expert> and the Information Security Office<https://security.arizona.edu/content/report-incident>. There is a strong possibility that your NetID password has been compromised.

Bad actors are taking advantage of the workforce's transition into a remote and less familiar IT environment, as well as the fears surrounding COVID-19.

Thanks,
Matt

From: itsecmgrs-request at list.arizona.edu <itsecmgrs-request at list.arizona.edu> On Behalf Of ISO-MAIN
Sent: Monday, March 16, 2020 4:21 PM
Cc: ISO-MAIN <security at email.arizona.edu>
Subject: [itsecmgrs] Warning: COVID-19 Phishing Scams


Malicious email phishing scams continue to target University of Arizona students, faculty and staff at a heightened level. The Information Security Office is especially concerned about phishing and malware scams taking advantage of fears surrounding the Coronavirus. These phishing attempts may ask you to enter credentials or urge you to open an attachment to learn more, potentially installing malicious code on your machine.

Please take the following precautions:



  *   Question emails claiming to be from the Centers for Disease Control (CDC) or experts saying that have information about the virus.
  *   Ignore online offers for COVID-19 vaccinations. There currently are no vaccines-online or in stores.
  *   Do your homework when making donations through charities or crowdfunding sites especially donations requested for cash, gift card, or by wiring money. See: https://www.consumer.ftc.gov/features/how-donate-wisely-and-avoid-charity-scams

The University's Security Operations Center recommends the following preventive measures:


  *   Verify the sender's email address.
     *   University of Arizona has recently implemented External Sender Notification to flag emails that come from senders outside the university to help mitigate phishing attempts. Based on campus feedback, the External Sender Notification banner has been modified.  External emails will now have "[EXT]" in the subject line and "External Sender" in red font in the body.
  *   Validate authenticity of DUO Multi Factor Login Requests.
  *   Be cautious with links or attachments.
  *   Protect your devices.
Support and Resources
Please contact the 24/7 IT Support Center if you have questions about a potential phishing email at (520) 626-TECH (8324).

If you received a phishing email, please notify the Information Security Office at https://security.arizona.edu/content/report-phish


[cid:image001.png at 01D5FBAD.7B027410]
Information Security Office
THE UNIVERSITY OF ARIZONA

Computer Center
PO Box 210073 | Tucson, AZ 85721

security.arizona.edu<https://security.arizona.edu/>
facebook<https://www.facebook.com/UArizonaInfoTech/> | twitter<https://twitter.com/UaInfotech> | instagram<https://www.instagram.com/uainfotech/> | linkedin<https://www.linkedin.com/school/the-university-of-arizona>


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://list.cals.arizona.edu/pipermail/alvsce_bulletin/attachments/20200317/17077ca4/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 11082 bytes
Desc: image001.png
URL: <https://list.cals.arizona.edu/pipermail/alvsce_bulletin/attachments/20200317/17077ca4/attachment.png>