UCSF IT Technology

Cybercriminals have launched a series of phishing attacks using timely tax-themed lures.  While the email from field says “Irs notice” and then the name of the organization, the sending address is a Madwire account. The phishing emails contain an HTML attachment allegedly containing delivery details about a tax related USPS letter.

Cybercriminals have launched a series of phishing attacks using the threat of employee transfers and terminations as a lure.

Cybercriminals are abusing Google Ads to have links to malicious web pages appear at the top of Google’s search results as sponsored links. These malicious links are tagged as “Ad” by Google.  These web pages are made to imitate the software download pages for popular software utilities and applications.

Cybercriminals have launched a series of phishing attacks using timely email phishing lures related to annual compensation reviews and bonuses.  The phishing emails encourage recipients to click a lure to confirm a payment-related change.

Cybercriminals have launched a series of phishing attacks using an emailed fax of an alleged paycheck as a lure.

Cybercriminals have launched a series of phishing attacks using the promise of a paid Christmas bonus as a lure.

Scammers are tampering with physical gift cards in retail store locations.

Recent email-based attacks have used compromised Microsoft OneDrive accounts to send phishing emails. These emails encourage recipients to click a link to view a shared document. The OneDrive links lead targets to shared PDF documents containing quick response (QR) codes.