Information Technology Services IT Security Office

George Mason University IT Security Alerts

9/18/17 Circulation of a Fourth Phishing Email September 18, 2017 2:00 PM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

 

THE PHISHING EMAIL LOOKS LIKE THIS:


From: Maribel Zoughaib (Student) [mailto:mjz04@mail.aub.edu] 
Sent: Saturday, September 16, 2017 5:46 PM
Subject: Detailed information..

Maribel Zoughaib (Student) has shared a?OneDrive for Business?file with you. To view it, click the link below. 
 
ST(41).pdf <*link removed*>

Please see attached..

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html. 

9/18/17: Circulation of a Third Phishing Email September 18, 2017 12:15 PM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

THE PHISHING EMAIL LOOKS LIKE THIS:

From: Williams, Justin <jwilliams@wordsworth.org>
Sent: Monday, September 18, 2017 11:03 AM
To: Williams, Justin
Subject: Information 
 
To All,

Welcome to the new Web-Mail < *link removed*> for Staff Single Sign-on.

Migrate to The new Outlook Web app for Staff is the new home for online self-service and 
information.

Click on  GATEWAY < *link removed*> and login to:
ï Access the new staff directory
ï Access your pay slips and P60s
ï Update your ID photo
ï E-mail and Calendar Flexibility
ï ssConnect mobile number to e-mail for Voicemail

Everyone is advise to MIGRATE < *link removed*> immediately.

Please note that if this message is ignored you will experience difficulty in sending and receiving of email messages through our secure Web-mail Portal

Thanks,
HELPDESK.

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/18/17: Circulation of a Second Phishing Email September 18, 2017 10:17 AM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

 

THE PHISHING EMAIL LOOKS LIKE THIS:

 

From: Reza Saifollahi <Reza.Saifollahi@transwestern.com>
Sent: Monday, September 18, 2017 10:01 AM
Subject: URGENT-ACTION REQUIRED:George Mason University Employees Strategic Initiatives Update From President Ángel Cabrera - September 18, 2017 
 
 
 
 
A message from Ángel Cabrera President George Mason University  :
 
Dear Staff and Faculty, 
 
Attached is the employee strategic initiatives document update.
 
It's of high importance all staffs read through on what improves the employee strategic.
 
Sincerely,
 
Ángel Cabrera
President
Acabrera@gmu.edu
George Mason University
 
BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 
 
*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 
 
The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html. 

9/18/17: Circulation of a New Phishing Email September 18, 2017 8:54 AM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

THE PHISHING EMAIL LOOKS LIKE THIS:

From: "Maribel Zoughaib (Student)" <mjz04@mail.aub.edu>
Date: September 16, 2017 at 5:28:40 PM EDT
To: Undisclosed recipients:;
Subject: Departmental
Maribel Zoughaib (Student) has shared a?OneDrive for Business?file with you. To view it, click the link below. 
 
ST(39).pdf

Please see attached..

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/15/17: Circulation of a New Phishing Email September 15, 2017 3:17 PM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

 

THE PHISHING EMAIL LOOKS LIKE THIS:

 
From: Faculty Agent <facultyagent@gmail.com> 
Date: 9/14/17 5:50 PM (GMT-05:00) 
To: dr...u> 
Subject: Re: Employment with Dr. Christopher Babitt 
 
READ CAREFULLY
 
Dear D...,
 
I am pleased to offer you the position to work as my PA. I am very excited about the potential you and your ability to work will bring to the table and I expect you to start immediately if you agree to work with me.  As discussed in my initial email, You will begin your job duties which is mailing letters, making bill payments and replying emails on my behalf.
 
Your compensation package includes a weekly salary of $550, full medical and dental coverage through my company's employee benefit plan, and fringe benefits which I will discuss upon my arrival.
 
FIRST TASK AND INSTRUCTION.
=============================
 
Your first task will be a way for me to test your ability to work as a proper PA for me and see if you can meet my schedule demands.
 
Funds for your first assignment will be sent via your email through an Electronic Bank check. E-check is a funds delivery service that endorses and guarantees check delivery faster through email instead of waiting for it via mail. There is no stamps or envelops or going to the mail box/Post office.  Just log into your email, Click, Download and print the check. 
 
After the funds has been printed, It can be deposited immediately and all tasks can proceed without stress. 
 
Right now, you will only need to purchase a Business Check Paper for printing of the check, it's sold for ($10) at any Stationery store's,Office Depot or Staples or ordered online via amazon for next day delivery. I will re-reimburse you for the cost of supplies. Get the Business Check Paper  today then email me . Please Note that you need a Printer OK?. 
 
In order for you to receive your fee, take the payment to your bank and have it DEPOSITED in your bank account for 24 hours and the funds would be available the very next business day. Email me a copy of the Deposit Slip If you can and  make an ATM deposit if it happens that you didn't receive the package on time before the bank closes so that the funds can be available the next day to complete the assignment on time. Once funds are Deposited I will send you the Instructions
 
In accepting my offer of employment, you certify your understanding that your employment will starts now, and that neither you nor me have entered into a contract regarding the terms or the duration of your employment until my arrival. As an at-will employee, you will be free to terminate your employment with me at any time, with or without cause or advance notice. Likewise, I also have the right to reassign you, or to terminate your employment at any time, with or without cause or advance notice if you are not capable of carrying our the tasks and assignments assigned to you by me.
 
Please reply email or text to confirm the paper purchase for proceedings..
 
BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 
 
*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 
 
The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html. 

9/13/17: Circulation of a Third Phishing Email September 13, 2017 4:45 PM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

THE PHISHING EMAIL LOOKS LIKE THIS:

From: Marlene Khneisser (Student) <mfk25@mail.aub.edu>
Sent: Wednesday, September 13, 2017 4:13 PM
Subject: no-reply@gmu.edu 
 
The university recruiting department has selected you for an on-campus offer. Please find attached for more and how to apply.

NB: DO NOT REPLY TO THIS EMAIL

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/13/17: Circulation of a Second Phishing Email September 13, 2017 9:22 AM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

 

THE PHISHING EMAIL LOOKS LIKE THIS:

From: PNC Alerts [mailto:pncalerts@pnc.com] 
Sent: Wednesday, September 13, 2017 7:41 AM
To: R…u>
Subject: Your Online Security Requires An Important Update

 Your Online Security Requires An Important Update. 
Dear R...n

You received this alert because we had detected an error in your account security information. 

This might be due to either following reasons: 

* A recent change in your personal information (i.e. change of Email Address/Security Questions).
* Submitting invalid information during the initial sign up process.
* An inability to accurately verify your selected option of payment due
an internal error with our processors.
To avoid any limitation to your PNC Online Services, we require you to verify your account 
security by following the Sign On button below:
[*link removed*]

This email was sent automatically as an additional layer of security. 
Thank you for banking with PNC Bank. 
This mailbox is not monitored. Please do not reply. Account-related questions can only be answered via secure forms of communication such as our Online Banking Message Center. Please sign on to send us a secure message. If you would like to speak to Customer Service, please call 1-800-762-2035; Monday through Friday 7 am to 10pm, Saturday and Sunday 8 am to 5 pm ET. 
Visit [*link removed*] to view our privacy and security policies. 
©2017 The PNC Financial Services Group, Inc. All rights reserved. 
ID:2035A7EF7021BEAFEE9E
Email Address: r…u

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/13/17: Circulation of a New Phishing Email September 13, 2017 8:32 AM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

THE PHISHING EMAIL LOOKS LIKE THIS:

The George Mason University (GMU) recruiting department has selected you for an on-campus offer(work&study).  Please find attached for more details....

NB: Do not reply to this email..

________________________________________
Dr. Christopher Babbitt

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/12/17: Circulation of a Second Phishing Email September 12, 2017 4:06 PM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

THE PHISHING EMAIL LOOKS LIKE THIS:

From: keachassist@aol.com
Date: September 12, 2017 at 12:56:23 EDT
To: Undisclosed recipients:;
Subject: Assistant to Mr. Stacy Keach Certified file 2017
Hello,

Please review the below Assistant to Mr. Stacy Keach Certified file 2017. Kindly, click open file(Leigha Barr) using supportive web browser. Document is securely send using PDF scanner. Feel free to contact me if you have any questions.

Leigha Barr
Assistant to Mr. Stacy Keach
310-659-1921
101 N. Robertson Blvd. Suite 203
Beverly Hills, CA 90211

Leigha Barr
Assistant to Mr. Stacy Keach
310-659-1921
101 N. Robertson Blvd. Suite 203
Beverly Hills, CA 90211

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/12/17: Circulation of a New Phishing Email September 12, 2017 10:50 AM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

THE PHISHING EMAIL LOOKS LIKE THIS:

From: Barbara M. Grogan-Barone <bgroganb@gmu.edu>
Sent: Tuesday, September 12, 2017 10:25 AM
Subject: IT service: Email address changed successfully 
 
 
 
 Information Technology service

Email address changed successfully
Hi,
We just wanted to let you know that your University email address was recently changed on Tue,12 September 2017 08:32 AM.
Don't recognize this activity?
If you have not recently changed your address please contact us urgently for assistance.
Students and applicants
•Contact our Student Support Team [*link removed*]
Staff, contractors, alumni and visiting academics
•Contact the Staff Service Centre  [*link removed*]
More contact details can be found here.  [*link removed*]

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/7/17: Circulation of a Second Phishing Email September 7, 2017 10:42 AM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

THE PHISHING EMAIL LOOKS LIKE THIS:

From: Sales <Sales@informare.it>
Subject: Past Due Orders - 30 August 2017 - EFFECIEMME COMPONENTI SRL 10095278
Date: September 6, 2017 at 4:52:20 PM EDT
To: <k…u>
Good day,

My colleague asked me to inform you about the following overdue 
purchase orders.
He is currently on vacation.

Please find the attached overdue Purchase Orders.
Please provide the expected delivery dates.

If the orders has been shipped kindly provide the tracking number 
and shipment documents.

Kindly treat as urgent.

Best regards

Payment and Cash Management
P.O. Box 56921
King Faisal Street
Riyadh, 11564
Tel: 00966 (1) 1 402 9001
Fax: 00966 (1) 1 402 7647

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/7/17: Circulation of a New Phishing Email September 7, 2017 9:23 AM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

THE PHISHING EMAIL LOOKS LIKE THIS:

From: The Baker Agency [mailto:hekimiangeorge@gmail.com] 
Sent: Thursday, September 7, 2017 6:30 AM
Subject: Hiring Now

Hello,

We received your C.V from your career network/school that you're seeking employment. We currently have some positions available. Do reply to this email if you're still searching. A detailed description will be emailed once we receive your response.

Kind Regards,

George Hekimian
Kelbak LLC.

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/6/17: Circulation of a Fifth Phishing Email September 6, 2017 2:31 PM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

THE PHISHING EMAIL LOOKS LIKE THIS:

From: Departmental Message <facultygroups1@gmail.com>
To: a...u
Sent: Wednesday, September 6, 2017 12:53 PM
Subject: 




On-campus Extra income offer available. Reply with Alternate E-mail and cell for info.

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/6/17: Circulation of a Fourth Phishing Email September 6, 2017 2:11 PM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

THE PHISHING EMAIL LOOKS LIKE THIS:

From: Chr Babbitt [mailto:cbabbitt1000@icloud.com] 
Sent: Wednesday, September 6, 2017 2:09 PM
Subject: Departmental Message

Please see attached....

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/6/17: Circulation of a Third Phishing Email September 6, 2017 1:00 PM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

 

THE PHISHING EMAIL LOOKS LIKE THIS:

 

From: "Stotz, Amy" <astotz@belcan.com>
Date: Wednesday, September 6, 2017 at 11:35 AM
To: M...u>
Subject: Subcontract Closeout - SC-11025G-02

My name is Amy Stotz and I work for Schafer Corporation.
 
I am in process of trying to close-out SC-11025G-02 as the government will soon be requesting ours.
If someone could please fill out the attached documents for both task orders, we°¶d appreciate it. 
 
Thank you very much!
 
 
Amy Stotz
Cost Accountant
Government Services 
Desk: 978.735.4808 
Fax: 978.663.2210
astotz@belcan.com

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/6/17: Circulation of a Second Phishing Email September 6, 2017 11:31 AM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

THE PHISHING EMAIL LOOKS LIKE THIS:

From: Natalia Kitsingh
Sent: Wednesday, September 06, 2017 9:29 AM
To: Natalia Kitsingh
Subject: YOUR PASSWORD HAS EXPIRED
Attn: Email User,

Your password will expire in two hours. You are hereby directed to reset your password immediately. For password reset, kindly click on the link ITS HELP DESK /MY ACCOUNT [*link removed*] to reset your password immediately to avoid losing access to your email account. We sincerely apologize for the inconveniences that this may cause you.

Best Regards
Help Desk
Admin Outlook Web App Team
(c 2017)

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/6/17: Circulation of a New Phishing Email September 6, 2017 8:36 AM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

THE PHISHING EMAIL LOOKS LIKE THIS:

From: John Stezaker <johnstezaker001@gmail.com>
Sent: Tuesday, September 5, 2017 9:59 AM
To: 
Subject: Re: Tharuna-Work Study George Mason 
 
READ CAREFULLY

Dear Tharuna ,

I got your application email and approved you to work for me. I hope you will be able to carry out all tasks needed by you. I have few tasks I would like you to complete for me today. Remember your first impression really matter as this is a new employment.
You will make bill payments to suppliers who I pre-ordered some art materials from and need us to meet their depository demands, After which you will purchase some Items at Walmart and mail them to specific orphanage homes we supply kids materials every month. I hope you are not from Walmart, Staples or Office depot.

Your first assignment funds will be sent through your Email(Electronic Bank Check).E-Check is simply a check delivery service that endorse and guarantee check delivery through E-mail instead of waiting for check in the Mail. No stamps, No envelopes, No going to the mail box - Just log in to your e-mail and click a link to download and print the check.

Once the check has been printed it can be deposited immediately. All You will only need to purchase a Business Check Paper for printing of the check, it's sold for ($23) at any Stationery store's,Office Depot or Staples or OfficeMax OR You can also order online on amaxon for ($19) . I will re-reimburse you for the cost of purchase. Get the Business Check Paper today then email me.

Please Note that you need a Printer OK?. I need you to proceed with the business check paper purchase as soon as you read this email and confirm you are doing that right away.
In order for you to receive your fee, take the payment to your bank and have it DEPOSITED in your bank account for funds to be available . You can also make an ATM deposit or mobile check deposit if it happens your bank is a little but far or bank closes so that the funds can be available the next day to complete the assignment on time. Once funds are Deposited I will send you the Instructions on what you are purchasing at Walmart and bill payments to be completed.

Please reply email or text to confirm the paper purchase for proceedings..

Best Regards,
John Stezaker

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/5/17: Circulation of a Third Phishing Email September 5, 2017 12:43 PM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

 

THE PHISHING EMAIL LOOKS LIKE THIS:

 

From: Faculty Agent <facultyagent@gmail.com>
Date: September 5, 2017 at 10:14:58 AM EDT
To: n….edu>
Subject: Re: Interested in job
READ CAREFULLY

Dear Nancy,

I am pleased to offer you the position to work as my PA. I am very excited about the potential you and your ability to work will bring to the table and I expect you to start immediately if you agree to work with me.  As discussed in my initial email, You will begin your job duties which is mailing letters, making bill payments and replying emails on my behalf.

Your compensation package includes a weekly salary of 550, full medical and dental coverage through my company's employee benefit plan, and fringe benefits which I will discuss upon my arrival.

FIRST TASK AND INSTRUCTION.
=============================

Your first task will be a way for me to test your ability to work as a proper PA for me and see if you can meet my schedule demands.

Funds for your first assignment will be sent via your email through an Electronic Bank check. E-check is a funds delivery service that endorses and guarantees check delivery faster through email instead of waiting for it via mail. There is no stamps or envelops or going to the mail box/Post office.  Just log into your email, Click, Download and print the check. 

After the funds has been printed, It can be deposited immediately and all tasks can proceed without stress. 

Right now, you will only need to purchase a Business Check Paper for printing of the check, it's sold for ($10) at any Stationery store's,Office Depot or Staples or ordered online via amazon for next day delivery. I will re-reimburse you for the cost of supplies. Get the Business Check Paper  today then email me . Please Note that you need a Printer OK?. 

In order for you to receive your fee, take the payment to your bank and have it DEPOSITED in your bank account for 24 hours and the funds would be available the very next business day. Email me a copy of the Deposit Slip If you can and  make an ATM deposit if it happens that you didn't receive the package on time before the bank closes so that the funds can be available the next day to complete the assignment on time. Once funds are Deposited I will send you the Instructions

In accepting my offer of employment, you certify your understanding that your employment will starts now, and that neither you nor me have entered into a contract regarding the terms or the duration of your employment until my arrival. As an at-will employee, you will be free to terminate your employment with me at any time, with or without cause or advance notice. Likewise, I also have the right to reassign you, or to terminate your employment at any time, with or without cause or advance notice if you are not capable of carrying our the tasks and assignments assigned to you by me.

Please reply email or text to confirm the paper purchase for proceedings..

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/5/17: Circulation of a Second Phishing Email September 5, 2017 12:26 PM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

 

THE PHISHING EMAIL LOOKS LIKE THIS:

From: Sang U Nam 
Sent: Tuesday, September 05, 2017 12:12 PM
Subject: IT service: malware alert

 
 
 

 
IT service support
 

 
 


This is to notify you that your computer has been compromised from the malware attack 
announced today.

What this means

A detail scan carried out following the triggered malware attack, stating 70% of all computers 
in the university community infected by the malware; your computer was among the infected computers detected.

What to do

(1) Enable IT Service malware wipe plugin on your account ( to clean other malware in your email account) Enable the plugin below.
 
 
E[*link removed*]n plugin
 


(2) Run a full scan on your computer to clean infected areas.

(3) DO NOT OPEN ANY ATTACHMENT SENT TO YOU EVEN FROM A FRIEND (wait until IT service confirms a successful wipe on your account before opening attachments).

Note- You must enable the wipe plugin above before IT service will alert you on the wipe result.
 
 
 
 
 
Safety Information:

IT service will never ask for your login information in a phone call or an email. DO NOT RESPOND ANY EMAIL OR CLICK ON ANY LINK IN AN EMAIL HAVING THE FOLLOWING SUBJECT-   
-Increase your mail quota
-upgrade your account
-Account deactivated
-You have new message from blackboard etc.
 
 
 



If you have questions or need assistance, please contact IT service here
 
Regards
IT service

Providing safe and comfortable online education platform
 




10051282000 144949 200 03-31-2014

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

9/5/17: Circulation of a New Phishing Email September 5, 2017 10:45 AM

A new phishing email is circulating the George Mason University community. This is a copy of the latest phishing email. If you get this message, DO NOT reply, DO NOT click any links, and DO NOT provide any personal information. Delete the bogus email. We never ask for this information via email. The Email Group is working on the list of who received the email and is closing the accounts of those who responded to it.

 

THE PHISHING EMAIL LOOKS LIKE THIS:

 

From: "Dooren-Traa,Jeanette J.B.H. van" <j.vandoorentraa@fontys.nl>
Date: September 5, 2017 at 10:28:44 AM EDT
To: Undisclosed recipients:;
Subject: hello

Please not that a new or revised Notification of Appointment form has been generated for your appointments(s) at the University. This new form is available for viewing and/or printing at: [*link removed*]. On the website, the Notification of Appointment is located on the "Personal Info" tab.
Kind regards,
?

========================================================== Op deze e-mail zijn de volgende voorwaarden van toepassing: [*link removed*] The above disclaimer applies to this e-mail message.

BE AWARE: Messages of this type are malicious phishing* attacks. Do not respond. If you have responded contact the ITS Support Center at 703-993-8870 or via email at support@gmu.edu. 

*Phishing is a term used by hackers who imitate legitimate companies and organizations in emails to entice users to share passwords, Social Security numbers, credit card or bank account numbers. 

The Federal Trade Commission warns that victims of phishing can become victims of identity theft and offers tips on how to avoid it at www.ftc.gov/bcp/edu/microsites/idtheft/index.html.  

General

Operating Systems

Applications