DoIT has recently been notified of a job scam coming from a compromised UMBC email account, below is an example of that message that was being sent. The subject line of the job scam email is “_Available.” The name and email address of the From and To users were removed for privacy reasons.
From: COMPROMISED ACCOUNT <@umbc.edu> Date: Mon, 14 Sep 2020 Subject: _Available To: <@umbc.edu> For an opportunity to work remotely as an assistant write to sign up. Regards, COMPROMISED ACCOUNT |
Please note that the email above is coming from a UMBC email account, but within the email headers it shows that the reply-to is set to a <charlenabolinlyco21@gmail.com>. This means that if the user tries to respond to this email they would not be emailing the compromised UMBC account but instead the scammer directly at <charlenabolinlyco21@gmail.com>.
If you do receive this or a similar email that you suspect is a scam, please do not click on any URL or reply. Either of those actions confirms to the sender that your email address is valid. Please forward the message (with the email headers) to security@umbc.edu.
How do I forward full email headers?
https://wiki.umbc.edu/pages/viewpage.action?pageId=1867970
To read more articles published by DOIT visit: