Today, UMBC’s Division of Information Technology, DoIT, received a notification of a phishing campaign targeting the College of Natural and Mathematical Sciences (CNMS). The actors claim to provide a Summer Employee Benefit plan. Below is an example of the message.
From: Greta Motter <gmotter@moore.edu> Date: Tue, May 17, 2022 at 10:10 AM Subject: 2022 Employee Benefits Program To: Employee@benefits.com <Employee@benefits.com> I would like to inform you about the Summer 2022 Employee Benefits plan, which will be available to provide financial assistance to employees and their families during the summer break.
Because of the COVID-19 pandemic, the last few years have been difficult for every family. The purpose of the Employee Benefits Plan will be to provide cash assistance to employees and their families up to the amount of $4,400.
The Employee Benefits plan is accepting new applications until the end of the month. Applications can be submitted via the Summer 2022 Benefits Plan page.
Sincerely,
Greta Motter Employee Assistance Personnel |
The recipients of the message appear to have been taken from the CNMS staff directory (https://cnms.umbc.edu/directory/).
Please note that this message appears to have been sent from a compromised account at the Moore College of Art. It is unlikely that anyone at that institution is involved with employee benefits at UMBC. Alwars examine unexpected or unusual messages carefully for inconsistencies that may indicate fraud. If you find something questionable, please message with full headers to security@umbc.edu For instructions, visit: https://wiki.umbc.edu/pages/viewpage.action?pageId=1867970 .
______________________________________________________________________________________________________________________________________
Receive any suspicious emails?
Forward it to security@umbc.edu along with the email headers. For instructions, visit: https://wiki.umbc.edu/pages/viewpage.action?pageId=1867970 .
Follow us on myUMBC: https://my3.my.umbc.edu/groups/itsecurity