Recently the Division of Information Technology (DoIT), detected a new phishing campaign targeting the UMBC community. The perpetrators are alerting recipients that their accounts have been disconnected from the umbc.edu server. Below is an example of the message.
From: SUPPORT <email@example.com>
Date: Wed, Jun 15, 2022 at 2:43 PM
Subject: AUTHENTICATION NOTICE!!!
Please note that this email is not legitimate. If we realized something was wrong with your account, we would have sent a notification via RT. Also note that the From address is not affiliated with UMBC <firstname.lastname@example.org>. The ".jp" at the end means the sender's email provider is in Japan.
If you have received any message similar to the one listed above, please forward it with its headers to email@example.com. For instructions, visit: https://wiki.umbc.edu/pages/viewpage.action?pageId=1867970.
Receive any suspicious emails?
Forward it to firstname.lastname@example.org along with the email headers. For instructions, visit: https://wiki.umbc.edu/pages/viewpage.action?pageId=1867970.
Follow us on myUMBC:https://my3.my.umbc.edu/groups/itsecurity.