Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
402 Results
Jul 2023: HR Themed Phishing Attacks
Threat Alert: What to Watch For Cybercriminals have launched series of phishing attacks claiming to be from the recipient’s HR department. The lures use a variety of sender names like HR Alerts or HR Department; however, the actual sending address is not associated with a recipient’s company or HR department.
Mar 2023: Invoice-Themed Phishing Lures Spreading Malware
Threat Alert: What to Watch For Cybercriminals have launched phishing attacks using malicious invoice-themed attachments to spread malicious software (malware). The phishing attacks hijack legitimate email threads to deliver the phishing lures to further increase the believability of the attacks.
Enrolling in Grammarly
Enrolling in GrammarlyNOTE: The UCSF Editorial Style Guide is available for use when writing for UCSF publications or websites. It outlines commonly used terms, punctuation, and editorial style to improve clarity and readability; it is based on the broadly recognized standards of the Associated Press Style.
- Faculty
- Staff
- Student
- Email & Collaboration
Oct 2023: Israel-Palestine Humanitarian Crisis Donation Scam
Threat Alert: Israel-Palestine Humanitarian Crisis Donation Scam
Feb 2023: Phishing Attacks Use Earthquake-Themed Lures
Threat Alert: What to Watch For Cybercriminals have launched multiple phishing attacks attempting to take advantage of the humanitarian crisis in Turkey and Syria following the earthquake. These attacks are intended to steal recipient’s funds or to lead to the installation of malicious software (malware). As multiple attacks are exploiting this crisis, lures will appear different.
Apr 2023: Tax-Themed Lures Distribute Malware
Threat Alert: What to Watch For Cybercriminals have launched a series of phishing attacks using a timely tax-themed lure. The lures imitate the sharing of 2022 tax documents via a Citrix ShareFile link. The lures note that the download expires on April 18, 2023, the tax-filing deadline in the United States.
Server Management & Monitoring
- Affiliate
- Faculty
- Staff
- Student
- Volunteer
Account Login & Password
DescriptionActive Directory (AD) is a Microsoft-based technology that provides a variety of network services, including:Lightweight Directory Access Protocol (LDAP)Kerberos-based authenticationDNS-based namingA central location for network administration and delegation of authorityUsing Active DirectoryYour UCSF AD account provides access to many systems:
- Affiliate
- Faculty
- Staff
- Student
- Technical Partner
- Volunteer
- Access & Identity
Feb 2024: Deepfake Scam Imitating CFO
Threat Alert: Deepfake Scam Targeting Financial Transactions An employee attended a video conference call with seemingly authentic colleagues, all of whom were later revealed to be deepfake representations. The worker, initially suspicious of a phishing email, was convinced by the realistic appearance and voices of the deepfake participants during the video call. Subsequently, the employee authorized a large financial transaction, thinking it was a legitimate request initiated by the CFO. Key Actions (at Wo
May 2023: URL Shortening Service Widely Abused in Attacks
Threat Alert: What to Watch For Cybercriminals have started using the URL shortening service clck[.]ru in widespread phishing attacks in April. The nature of these attacks and the lures used vary greatly.