Site Search

Current Announcements

FROM: University Technology Services RE: UTech Security Awareness Bulletin - Fake CalU E-Mail Account Verification Messages
5/16/2014 8:55:41 AM
To: Students, Faculty, Staff

From: UTech Security
RE: UTech Security Awareness Bulletin - Fake CalU E-Mail Account Verification Messages

Recently, a flood of fake account verification messages have been circulating through e-mail. These messages claim to originate from California University of Pennsylvania, and attempt to trick the user into clicking on a link which leads to a malicious website. DO NOT click this link.

Phishing is the act of sending an e-mail to a user falsely claiming to be another trusted user or company in an attempt to steal their credentials. The e-mail can contain a link to a fake web site that asks the user to enter personal information such as username, password, credit card number, etc.

There are several signs you should look for to identify a phishing e-mail:

  • Any e-mail asking for your name, birth date, social security number, e-mail username, e-mail password, or any other type of personal information, no matter who the e-mail appears to be from, is almost certainly a scam.  California University of Pennsylvania and most other businesses do not send unsolicited e-mail requesting personal or financial information.
  • E-mails that are poorly worded, have typos, or have phrases such as "this is not a joke" or "forward this message to your friends" are generally scam e-mails.
  • Phishing mail often includes official-looking logos and other identifying information taken directly from legitimate Web sites, and it may include convincing details about your personal information that scammers found on your social networking pages.
  • A few phrases to look for if you think an e-mail message is a phishing scam are:
    • "Verify your account."
    • "If you don't respond within 48 hours, your account will be closed."
    • "You have won the lottery.”

How to avoid being a victim:

·         Verify the URL (web address) of a website before clicking on a link. Malicious websites may look identical to a legitimate site, but the URL may use a variation of spelling or a different name.

·         Don’t send sensitive information over the Internet before checking a website’s security.

·         Do not reveal personal or financial information, and do not respond to e-mail solicitations for this information. This includes following links sent in e-mail.

·         Never respond to suspicious e-mails or click on links inside suspicious messages.

Note: California University of PA will NEVER ask you for a password or account information via e-mail.