Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
454 Results
Feb 2024: Deepfake Scam Imitating CFO
Threat Alert: Deepfake Scam Targeting Financial Transactions An employee attended a video conference call with seemingly authentic colleagues, all of whom were later revealed to be deepfake representations. The worker, initially suspicious of a phishing email, was convinced by the realistic appearance and voices of the deepfake participants during the video call. Subsequently, the employee authorized a large financial transaction, thinking it was a legitimate request initiated by the CFO. Key Actions (at Wo
May 2023: URL Shortening Service Widely Abused in Attacks
Threat Alert: What to Watch For Cybercriminals have started using the URL shortening service clck[.]ru in widespread phishing attacks in April. The nature of these attacks and the lures used vary greatly.
June 2023: Phishing Attacks Abuse Valid Web Traffic Tool
Threat Alert: What to Watch For Cybercriminals have launched phishing attacks abusing legitimate tools that are used to direct web traffic. Phishing lures contain an embedded URL that leads to a lookalike Google Chrome update site. Downloading the fake Google Chrome update installs a legitimate tool used for remotely monitoring and supporting computers.
Feb 2023: Phishing Attacks Distribute IRS Notice-Themed Lures
Threat Alert: What to Watch For Cybercriminals have launched a series of phishing attacks using timely tax-themed lures. While the email from field says “Irs notice” and then the name of the organization, the sending address is a Madwire account. The phishing emails contain an HTML attachment allegedly containing delivery details about a tax related USPS letter.
Oct 2023: Extortion-Themed Phishing Lures Spread Malicious Software
Threat Alert: Extortion-Themed Lure Spreads Malware Cybercriminals have launched a series of phishing attacks using extortion-themed lures regarding alleged explicit photos of the recipient. The messages come from compromised Flickr accounts and contain malicious URLs labeled to appear as explicit or vulgar. The messages threaten to share the photos and claim to have additional explicit images of the reci
Mar 2023: Attacks Use Silicon Valley Bank-Related Lures
Threat Alert: What to Watch For Following the collapse of Silicon Valley Bank (SVB), cybercriminals have launched phishing attacks to take advantage of the high-profile event. One widespread lure impersonates Circle, the peer-to-peer payments company that manages the cryptocurrency USDC. The lure encourages recipients to click an offer link to redeem a one-to-one exchange between the cryptocurrency USDC and the U.S.
IT Security Risk Assessment
Overview UCSF is required by a number of policies, laws, and regulations to assess the security risk of information systems that handle UCSF data. What is an IT security risk assessment at UCSF? The IT security risk assessment process collects information about each of our information systems and scores their security compliance. The process measures the security aspects of all computing devices associated with the system including servers, desktop computers and laptops, mobile devices, network hardware, and other related technologies.
- Faculty
- Staff
- Technical Partner
- Security
Mar 2023: Global Phishing Campaigns Using Tax Season Lures
Threat Alert: What to Watch For Cybercriminals have launched numerous, different phishing attacks using timely tax-themed lures. As multiple attacks are leveraging this topic, the lures will appear different.
Apr 2023: Okta-Themed Lures Harvest Microsoft Credentials
Threat Alert: What to Watch For Cybercriminals have launched Okta-branded phishing attacks encouraging recipients to follow a link to resynchronize their Okta and Microsoft accounts. Clicking on the link leads to a credential phishing kit that redirects the user to a lookalike Microsoft login page.
ProofPoint Quarantine FAQs
- Affiliate
- Faculty
- Staff
- Student
- Technical Partner
- Volunteer