Images

“NO EXPERIENCE REQUIRED! UNICEF HIRING ASAP” Scam

Image Ian Aberle , ,

Very similar to a job opportunity email in January. This phishing email made the round this weekend.

"NO EXPERIENCE REQUIRED! UNICEF HIRING ASAP" Phishing Email Screenshot
Message Body: Hello SMU,
I am looking for a part-time Administrative Assistant to work from anywhere. If you are polished and personable with great organizational skills and time management then we have the perfect role for you! We are looking for someone who is friendly, honest, hardworking, and accurate.
Great for MOMS, PART TIME,RETIRED ,Male or female. Eligible to apply even though you are not a current student of the school
Compensation: Paying on a weekly basis $500
Employment type: Part Time
Hours of work: “Task-to-task basis”
HOW TO APPLY: Copy and paste the URL Below into the address bar of your web browser to submit an application: ( Redacted URL )
You can as well send a note of interest and phone number to the email address below. (Redacted Email Address) (e.g. yahoo, Gmail, Hotmail etc.) and not your EDU email for details of employment, including your phone number
NOTE: THIS IS STRICTLY WORK FROM HOME POSITION
Regards
UNICEF PART – TIME JOB

Continue reading

Seeking Part-Time Personal Assistant Scam

Image Ian Aberle , ,

Phishing message example:

Screenshot of Phishing Example
Email Text: Administrative Assistant needed, No Experience Required, Work time is up to 8 hours a week, at $500 (USD) Weekly, hours can be split throughout the week.
Duties include answering phones, general office duties, working with the computer. Flexible Hours
Copy and paste the URL Below into the address bar of your web browser for more details.

Clues that it is a phishing message:

  • While the sender is an SMU email account, normally, SMU employees do not send part-time job offers to other employees
  • Generic greeting.
  • The offer comes unsolicited.
  • The recipient is directed to use a generic short link to apply

More Information

Here are a few ways to spot and avoid job scams from the FTC:

  • Be suspicious if you’re offered a job without an interview. Scammers might say they’re out of town, too busy, or have another excuse for not talking to you by phone or in person.
  • If you get a check before you start a job, it could be a scam. The person “hiring you” might say: it’s your first paycheck, to use the money to buy supplies, or – for caregivers hired online – that it’s for expenses related to caring for their loved one. But later, they’ll tell you to send part of the money to someone else or return it to them. They’ll have excuses, but the main thing to know is this: the check is fake. By the time the bank realizes it, the scammer has your money (if you sent it), and the bank will want you to repay the money you withdrew.
  • Check out potential employers before giving them any sensitive information. Search online for their name, email address, phone number, and even the text of the message they sent. You might find that others have had bad experiences and been scammed by the same people, or in a similar way.

IT Notice – MY SMU Maintenance Phishing Attempt

Image Ian Aberle

Phishing message example:

Screenshot of phishing notice.
Email Text: Concerns regarding account
Dear Valued User ,
We received a request from you to terminate your Office 365 email due to a dual college/universities account. This process has begun by our administrator. If you did not authorize this action and you have no knowledge of it, you are advised to re-verify your account. Please give us 24 hours to terminate your account if you initiated the request. Failure to re-verify will result in the closure of your account and you will lose all of my files on these 365 accounts.
Browse the URL Below into the address bar of your web browser to re-verify and cancel the request

Clues that it is a phishing message:

  • The sender is not from OIT.
  • The recipient is not listed directly, but blind copied.
  • The URL is for a third-party URL shortener, which OIT does not use.
  • The email is pressuring with its sense of urgency.
  • There is no signature or contact information.

Piano “GIVEAWAY” Scam

Image Ian Aberle ,

Phishing message example:

GIVEAWAY Sony Airpeak S1 Drone, Piano, Acoustic Guitar, Violin & Camera
Message Body: Mrs. Jennifer Petty is downsizing and looking to give away Her late husband’s Sony Airpeak S1 Professional Drone, Piano (2014 Yamaha Baby Grand, Eric Clapton’s 1939 Martin 000-42 and Leica S (TyR 007) Digital SLR Camera and Violin to a loving home. The piano is a 2014 Yamaha baby grand, the Guitar is Eric Clapton’s 1939 Martin 000-42 while the camera is Leica S (TyR 007) Digital SR Camera .You can email Mrs. Jennifer Petty to indicate your interest. Kindly text via her private cell 205-xxx-xxxx to get it delivered to your home. Please text Mrs. Petty via your personal phone for a swift response. NOTE: THE ITEMS ARE FREE, NO PICK UP, DELIVERY ONLY REQUIREMENTS: Shipping Fee is estimated at $100 – 250 anywhere in USA

Clues that it is a phishing message:

  • There is way too many recipients.
  • The valuable items are being given away for free, but you MUST pay to ship. No pick-up options.
  • Google search shows similar scams.

“Mandatory Harassment Prevention for Employees” Phishing

Image Ian Aberle

Phishing message example:

'Mandatory Harassment Prevention for Employees' phishing message
Message Body: Good morning, Our records show that your Discrimination & Sexual Harassment Training will expire within 24hrs. At the Training Calendar you will find a guide on how to determine which training you are required to take (in-person / Live Virtual or online). *If you have already registered for a session, thank you, please disregard the notification.* The Discrimination and Sexual Harassment Prevention training sign up/registration can be found in our new training system, Training Calendar under the Course Catalog. *Please note this notification reflects data received up to September 27. If the training was taken after September 27, we ask that you visit Training Calendar, and Login to confirm you already completed the training. The Anti-Harassment Policy requires: Every non-supervisory employee must attend the County’s “Discrimination and Sexual Harassment Prevention Training for Employees” upon hire and every year thereafter during the course of their employment with the County. While non-supervisory employees have the option of completing the training online via the County’s intranet, it is required that in-person trainings are completed at least every other training to ensure a thorough understanding. Every supervisor must attend the County’s “Discrimination and Sexual Harassment Prevention Training for Supervisors” upon hire and every year thereafter during the course of their employment with the County. Supervisors do not have the option of completing the training online and must attend an in-person training each time the training is due. Your attention to this matter is greatly appreciated.

Clues that it is a phishing message:

  • The sender is not from a department that would normally send the message.
  • This type of message would normally come from a department, such as HR and not a user is an unrelated department.
  • The recipient is taken to a fake Outlook login page.
  • The recipient is not listed directly, but blind copied.
  • The URL is for for a PK domain, which SMU does not use.
  • The email is pressuring with its sense of urgency.
  • There is no signature or contact information.

“Personal assistance” for WHO Scam

Image Ian Aberle ,

Phishing Example:

Personal Assistance Job Offer for WHO.org
Message Body: I am sharing job opportunity information to employees who might be interested in a paid World Health Organization Part-Time job with a weekly pay of $705.00. Attached is further information about the employment details. Kindly follow the steps in the attached document and contact xxxxxx with your non-official email address I.e. Gmail, Yahoo, Hotmail, icloud etc.) For more details on the job. Take note; this is strictly a work-from-home position.

Continue reading

KEEP THE SAME PASSWORD Phishing Attempt

Image Ian Aberle

Phishing message example:

We notice that your office 365 has two info different logins with two universities portals. Kindly indicate the two info logins as soon as possible. To avoid termination of both logins within 24hrs,we expect you to strictly adhere and address it OFFICE365 EMAIL. You are advised to keep the same password using the below button to avoid losing your data.

Clues that it is a phishing message:

  • The sender is not from OIT.
  • The recipient is not listed directly, but blind copied.
  • The URL is for Google Forms, which OIT does not use.
  • The email is pressuring with its sense of urgency.
  • There is no signature or contact information.

“UNICEF Part-Time job” Scam

Image Ian Aberle ,
UNICEF Part-Time job Phishing Email Example
Message description: I am sharing job opportunity information to employees who might be interested in a paid UNICEF Part-Time job with a weekly pay of $600.00. Attached is further information about the employment details. Kindly follow the steps in the attached document and contact Henrietta H. Fore with your non-official email address I.e. Gmail, Yahoo, Hotmail, icloud etc.) For more details on the job. Take note; this is strictly a work-from-home position.

Continue reading