Phishing

Phishing is a type of online scam where criminals send an email that appears to be from a legitimate company and ask you to provide sensitive information. This is usually done by including a link that will appear to take you to the company’s website to fill in your information – but the website is a clever fake and the information you provide goes straight to the crooks behind the scam.

The term ’phishing’ is a spin on the word fishing, because criminals are dangling a fake ’lure’ (the email that looks legitimate, as well as the website that looks legitimate) hoping users will ’bite’ by providing the information the criminals have requested – such as credit card numbers, account numbers, passwords, usernames, and more.

How do I spot a phishing email?

The email doesn’t specify your name.

"Dear Customer" or “Dear” isn’t an identifier. If you receive an email like this, there is a very high chance that this is a phishing email.

The email asks you to confirm personal information.

Keep an eye out for emails requesting you to confirm personal information that you normally do not disclose.

3 signs you are possibly being scammed:

1. You are being pressured to act immediately. Scammers may pose as someone or an organization you know and say there is a problem that needs immediate attention. DO NOT act unless you have verified the person who has contacted you is legitimate.

2. You're asked to provide personal information and/or verification codes. When in doubt, DO NOT disclose this type of information. Most organizations will not ask for this information when conducting business with you.

3. You're asked to pay or submit payment in an unusual way. Be wary if you are asked to pay by gift cards, payment apps, or digital currency.

1/23/2023

Subject: “RICE RESEARCH OFFER"

This is a phishing message for a fake research assistant job opportunity for students that requests user to reply with full name, email address, and years of study and department to receive the job description and requirements. Please DO NOT REPLY/SEND any personal info to the listed email address or phone number. Text header:

From: Mariana Thompson <thompsonmariana03@gmail[.]com>
Date: Mon, Jan 23, 2023 at 9:59 AM
Subject: RICE RESEARCH OFFER
To: undisclosed-recipients

_______________________________________________________

1/22/2023

Subject: "[Presidents] Hey presidents"

This is a phishing message with a link to a credential harvesting site requesting to accept an invite to view a fake site. Please DO NOT click link, download any attachments, or enter any user credentials. The site is not an official representative. Text heading:

From: gossage@suddenlink[.]net
Date: Sun, Jan 22, 2023 at 03:05 PM
Subject: [Presidents] Hey presidents
To: undisclosed-recipients

_______________________________________________________

1/20/2023

Subject: "High School Tutor Request"

This is a phishing message for a fake tutoring job opportunity that requests user to reply with full name, email address, and other contact info. Please DO NOT REPLY/SEND any personal info to the listed email address or phone number. Text heading:

From: hectorjohn2010@gmail[.]com
Date: Fri, Jan 20, 2023 at 03:05 PM
Subject: High School Tutor Request
To: undisclosed-recipients

_______________________________________________________

1/17/2023

Subject: "TRD-1205099 [FINAL NOTICE] PCP COURT CASE, CRB-1501031 [FINAL NOTICE] PCP COURT CASE"

This is a phishing message with a link to a to retrieve fake submitted court documents requesting to click on link or copy into your browser. Please DO NOT click link, open URL into browser, download any attachments, or enter any user credentials. The site is not an official representative. Text heading:

From:tom.ganter@ly-grp[.]com, shawn.sorrells@totemsol[.]com, robert.honton@tsisdvo[.]com, terry.blair@tsinative[.]com, brandon.leonard@tsisdvo[.]com, ricky.garcia@ly-grp[.]com
Date: Tue, Jan 17, 2023 at 03:05 PM
Subject: CRB-1501031 [FINAL NOTICE] PCP COURT CASE, TRD-1205099 [FINAL NOTICE] PCP COURT CASE
To: undisclosed-recipients

You are the recipient of eServed documents in case number 2023-TRD-1205099.

This is a notification of service for filing listed. Please click the link below to retrieve the submitted documents. If the link does not work, please copy the link and paste into your browser. You can also obtain this document by following the steps on this article.

Submitted by: ELSA R. ALCALA

Filing Attorney: BRIAN ANTHONY ABBINGTON

Filing Type::: Possession of Child Pornography

Filing Description::: The knowingly and intentional possession of images or video files of a minor in a graphic depiction of nudity or engaging in sexual relations is possession of child pornography when the person has these, trades them or purchases them for personal use.

Date/Time Submitted: 1/15/2023 5:30 PM CST

Texas eFile Support Center

Please do not reply to this email, as email replies are not monitored.

· Business Hours: Monday – Friday from 8:30 am – 4:30 pm (CT) except Court Holidays.

· Toll free: 800-531-5442, Ext. 6-5985

_______________________________________________________

1/13/2023

Subject: "Item shared with you: 2023 FACULTY EVALUATION.pdf"

This is a phishing message with a link to a credential harvesting site requesting to accept an invite to view a fake employee evaluation. Please DO NOT click link, download any attachments, or enter any user credentials. The site is not an official representative. Text heading:

From: jgatton@humboldt[.]k12[.]ia[.]us
Date: Fri, Jan 13, 2023 at 03:05 PM
Subject: Item shared with you: "2023 FACULTY EVALUATION.pdf
To: undisclosed-recipients

_______________________________________________________

1/12/2023

Subject: “Assistant Position: RICE UNIVERSITY"

This is a phishing message for a fake assistant job opportunity that requests user to reply with full name, email address, and years of study and department. Please DO NOT REPLY/SEND any personal info to the listed email address or phone number. Text header:

From: <tindellawrence@gmail[.]com>
Date: Thurs, Jan 12, 2023 at 9:59 AM
Subject: Assistant Position: RICE UNIVERSITY
To: undisclosed-recipients

_______________________________________________________

1/10/2023

Subject: “RESEARCH ASSISTANTS VACANCY"

This is a phishing message for a fake research assistant job opportunity that requests user to reply with full name, email address, and years of study and department. Please DO NOT REPLY/SEND any personal info to the listed email address or phone number. Text header:

From: <muir.ferguson1@nhs[.]net>
Date: Tue, Jan 10, 2023 at 9:59 AM
Subject: RESEARCH ASSISTANTS VACANCY
To: undisclosed-recipients

_______________________________________________________

1/4/2023

Subject: “RESEARCH ASSISTANTS VACANCY"

From: BOWES, Clare (NEWCASTLE CLINICAL TRIALS UNIT) <clare.bowes@nhs[.]net>
Date: Tue, Jan 4, 2023 at 9:59 AM
Subject: RESEARCH ASSISTANTS VACANCY
To: undisclosed-recipients

_______________________________________________________

12/23/2022

Subject: "<USER-NAME>: Your Honor Society Acceptance"

This is a phishing message with a link to a credential harvesting site requesting to accept an Honor Society invite. Please DO NOT click link, download any attachments, or enter any user credentials. The site is not an official representative of the National Honors Society. Text heading:

From: memberservices@honorsociety[.]org
Date: Fri, Dec 23, 2022 at 03:05 PM
Subject: <USER-NAME>: Your Honor Society Acceptance
To: undisclosed-recipients

_______________________________________________________

11/30/2022

Subject: “RESEARCH ASSISTANTS VACANCY"

From: Lisa Cassidy <lisa.cassidy4@nhs[.]net
Date: Wed, Nov 30, 2022 at 9:59 AM
Subject: RESEARCH ASSISTANTS VACANCY
To: undisclosed-recipients

_______________________________________________________

11/29/2022

Subject: "FW: Document shared with you: "Important Information Regarding Promotion & Salary Increase For All Faculty and Staff.docx"

This is a phishing message for a fake job promotions and raises for faculty and staff that requests user to open a .docx Word file and then send your name, address, alternate email, age, and mobile number. Please DO NOT REPLY/SEND any personal info to the listed email address, or download any attachments. Text heading:

From: drive-shares-dm-noreply@google[.]com, castaneda.betzabe@thesugarcreek[.]org
Date: Tue, Nov 29, 2022 at 9:59 AM
Subject: Important Information Regarding Promotion & Salary Increase For All Faculty and Staff.docx
To: undisclosed-recipients

Attached .docx with Job promotions and raises for all faculty and staff

_______________________________________________________

11/28/2022

Subject: "Invoice Payment"

This is a phishing message with a link to a credential harvesting site requesting to pay a fake invoice. Please DO NOT click link, download any attachments, or enter any user credentials. Text heading:

From: yschroit@startexlinen[.]com
Date: Mon, Nov 28, 2022 at 03:05 PM
Subject: Invoice Payment
To: undisclosed-recipients

_______________________________________________________

10/12/2022

Subject: “STUDENT RESEARCH ASSISTANCE VACANCY"

This is a phishing message for a fake research assistant job opportunity offering $350/week that requests user to reply with full name, email address, and years of study and department. Please DO NOT REPLY/SEND any personal info to the listed email address or phone number. Text body:

From: AJIBOYE, Matthew (BARKING, HAVERING AND REDBRIDGE UNIVERSITY HOSPITALS NHS TRUST) <matthew[.]ajiboye@nhs[.]net>
Date: Tue, Oct 11, 2022 at 9:59 AM
Subject: STUDENT RESEARCH ASSISTANCE VACANCY
To: undisclosed-recipients

Hello,

The Department of Computer Science at Rice University is looking for research assistants who are interested in working remotely and receiving a salary of $350 per week. Students from any department in the university can participate in the research. Please contact Professor Ronald Goldman at (270) 605-2103 via text message with your full name, email address, year of study, and department to obtain the position description and further application requirements.

Kind Regards
C/O RONALD GOLDMAN
PROFESSOR OF COMPUTER SCIENCE

_______________________________________________________

10/7/2022

Subject: "Suspicious Activity"

This is a phishing message with a link to a credential harvesting site via fake, look-a-like Microsoft sign-in. It displays a fake suspicious recent sign-in to a Microsoft Outlook account and then requests user to enter username and password. Please DO NOT click link or enter any user credentials. Text body:

From: IT Help Desk <alyona.shylina@ucl[.]com[.]ua>
Date: Fri, Oct 7, 2022 at 03:05 PM
Subject: Suspicious Activity
To: undisclosed-recipients

We detected something unusual about a recent sign-in to your Outlook Microsoft account

Sign-in details

Country/region: Canada

IP Address: 107.150.30.230

Date: 10/7/2022 3:05 PM (GMT)

Platform: Windows

Browser: Chrome

Please go to your recent activity page to let us know whether or not this was you. If this wasn't you, we'll help you secure your account. If this was you, we'll trust similar activity in the future.

Click HERE to Review recent activity

To opt out or change where you receive security notifications, CLICK HERE.

Thanks,

The Microsoft account team

_______________________________________________________

09/29/2022

Subject: "Important Notification"

This is a phishing message with a link to a credential harvesting site via fake, look-a-like ImagineOne (iO) website. It requests user to enter username and password. Please DO NOT click link or enter any user credentials. Text body:

From: Rice University <ah76@rice.edu>
Date: Thur, Sept 29, 2022 at 11:30 AM
Subject: Important Notification
To: undisclosed-recipients

You have 1 New message.

Click Here to view message.

Rice University

_______________________________________________________

08/10/2022

Subject: "LOOKING FOR CASUAL WORK?, Trending Jobs... Apply for this REMOTE PART TIME JOB"

This is a phishing message to Alumni and students for a fake remote P/T job as an administrative assistant that requests user to open a .PDF file and then send your name and phone number for an interview. Please DO NOT REPLY/SEND any personal info to the listed email address. Text body:

From: HAM XIAO YING <TP063701@mail[.]apu[.]edu[.]my>
Date: Mon, Aug 8, 2022 at 9:59 AM
Subject: LOOKING FOR CASUAL WORK?, Trending Jobs... Apply for this REMOTE PART TIME JOB
To: undisclosed-recipients

(blank content besides attachment) Attached .pdf with Job description and email to drjameswillson19@gmail.com

_______________________________________________________

08/09/2022

Subject: "EMPLOYMENT OPPORTUNITY, WORK OFFER"

This is a phishing message for a fake job position through Employment Agency License organization (DHHS) Department of Health and Human Services that requests user to open a .PDF file and then send your name, address, alternate email, age, and mobile number. Please DO NOT REPLY/SEND any personal info to the listed email address. Text body:

From: Donovan Williams <dj-williams7@wiu[.]edu>
Date: Mon, Aug 8, 2022 at 9:59 AM
Subject: EMPLOYMENT OPPORTUNITY, WORK OFFER
To: undisclosed-recipients

(blank content besides attachment) Attached .pdf with Job description

Regards,

Donovan Williams

_______________________________________________________

07/25/2022

Subject: "2022 Summer Benefit Program"

This is a phishing message for a fake financial assistance to employees and their families that requests user to click on a "2022 Employee Benefits" link to apply. Please DO NOT CLICK on link or input any information that is requested. Text body:

From: Tuttle, Russ <Russ[.]Tuttle@lakecountyohio[.]gov>
Date: Mon, July 25, 2022 at 9:59 AM
Subject: 2022 Summer Benefit Program
To: undisclosed-recipients

I would like to inform you about the Summer 2022 Employee Benefits plan, which will be available to provide financial assistance to employees and their families during the summer break.

Because of the COVID-19 pandemic, the last few years have been difficult for every family. The purpose of the Employee Benefits Plan will be to provide cash assistance to employees and their families up to the amount of $5000.

The Employee Benefits plan is accepting new applications. Applications can be submitted via the 2022 Employee Benefits.

Sincerely,

Russell Tuttle

_______________________________________________________

07/22/2022

Subject: "EMPLOYMENT OPPORTUNITY"

From: Samantha Mendez-Rivera <samanthamendezrivera5@gmail[.]com>, Samantha Mendez Rivera <vlori1237@gmail[.]com>, Samantha Mendez Rivera <louisalexis717@gmail[.]com>, Samantha Mendez-Rivera <laurieboyce0@gmail[.]com>
Date: Fri, July 22, 2022 at 9:59 AM
Subject: EMPLOYMENT OPPORTUNITY
To: undisclosed-recipients

Attached .pdf with Job description

_______________________________________________________

07/21/2022

Subject: (blank)

This is a phishing message for a fake job position that requests user to send your info. Please DO NOT REPLY/SEND any personal info to the listed email address. Text body:

From: Ladonnia Lewis <jladonniaglewis@gmail[.]com>
Date: Wed, July 21, 2022 at 9:59 AM
Subject:
To: undisclosed-recipients

Without further ado, following the inquiry from the RICE UNIVERSITY concerning the characteristics of the skills you honed, which makes you the preferred candidate for the position of the administrative/personnel assistant position.

Subsequently, due to the low time constraint associated with this position, it is limited, which makes it flexible and stress-free, and the commitment associated with this post can also be done outside of the school schedule.

Furthermore, please write back to me with your alternate email and phone number, and I'll be grateful to hear your thoughts on the topic.

Regards,

Lewis, Ladonnia G.

_______________________________________________________

07/12/2022

Subjects (various): 1) "SURVEY/DRAFT ASSISTANT"

2) “PROJECT AUDIT"

3) “STUDENT RESEARCH PROGRAM"

4) “ACADEMIC/TASK RESEARCH ANALYSIS"

5) “RESEARCH EVALUATION"

From: william davis <wd0009437@gmail[.]com>
Date: Mon, July 11, 2022 at 1:32 PM
Subject: Various above

The department of Electrical Engineering and Computer science at Rice University is looking for interested student who would like to work as a research assistant, and also receive a $350 pay weekly. Students from any department at the institution who are ever ready can apply, mind you task are done remotely. To continue with this application please contact

Professor Vladimir Braverman at +1(432)603-0012 via text message stating your full name, email address, years of study and department to receive further application requirement.

Best Regards
C/O Vladamir Braverman
Title: Professor Electrical Engineering and Computer science,
RICE UNIVERSITY

_______________________________________________________

07/11/2022

Subject: “STUDENT RESEARCH ASSISTANCE VACANCY"

From: Bryson Cooper <brycooper042@gmail[.]com> or Neel Brinda <neelbrinda923@gmail[.]com>
Date: Sat, July 9, 2022 at 9:59 AM
Subject: STUDENT RESEARCH ASSISTANCE VACANCY
To: undisclosed-recipients

Hello,

The department of Electrical Engineering and Computer science at Rice university is looking for interested student or graduate students who would like to work as a research assistant, and also receive a $350 pay weekly. Students or graduate student from any department at the institution who is ever ready can apply, mind you task are done remotely. To continue with this application please contact

Professor Genevera Allen at +1(725)745-1513 via text message stating your full name, email address, years of study and department to receive further application requirement.

Best Regards
C/O Genevera Allen
Title: Associate professor Electrical Engineering and Computer science,
RICE UNIVERSITY

_______________________________________________________

Other Scams

If you receive any other kind of scamming or phishing message, please send a ticket to helpdesk@rice.edu.