April 16, 2021
Cybercriminals use LinkedIn’s public-facing service to collect information about LinkedIn members, the same information LinkedIn displays to non-members to include members’ names and job titles. Phishers are using this information to send malicious email messages to LinkedIn members under the guise of an employment opportunity. Currently, the phishers are attaching Zip files with names that…
March 25, 2021
This week there are at least two phishing campaigns impersonating the IRS that are targeting the UW community. If you see an email with the subject Your Payroll Direct Deposit or Recalculation of Your Tax Refund Payment, delete it. In this case, there is no need to report these particular messages to our service center…
February 25, 2021
The IRS released two notices last week regarding tax season scams. The first, for tax filing professionals, described a phishing scheme in which scammers impersonated the IRS and requested verification of the filer’s Electronic Filing Identification Number (EFIN) and driver’s license. This information could be used to submit fraudulent returns using the tax professional’s identity….
December 19, 2020
SolarWinds Supply Chain Attack Leads to Dozens of High-Profile Compromises This week it was revealed that malicious updates from a widely used IT solutions vendor, SolarWinds, were leveraged in advanced cyberattacks against high-profile organizations that include the cybersecurity vendor FireEye, the U.S.Departments of Commerce, Defense, Homeland Security, and Treasury, the U.S. Postal Service, and the…
October 31, 2020
The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the U.S. Department of Health and Human Services (HHS) have warned of an “increased and imminent threat” of ransomware to U.S. hospitals and healthcare providers. Their 10/28 alert and a Ransomware Guide, including best practices, is linked below along with UW…
September 18, 2020
A company by the name of ZoomInfo has been sending unsolicited emails to the UW community, ostensibly to notify recipients of their privacy policies. An example is posted below. Zoominfo develops customer contact lists that other companies use to support sales and marketing campaigns. Lists are developed by crawling websites for an individual’s contact information….