Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
What is Phish Alarm? Phish Alarm is a tool that is available to all users at UCSF. With the click of a button, users can report a phishing or malicious message. As described here, the Report Phish button is available for both PC and Mac Outlook clients as well as on Outlook Web Access (email.ucsf.edu) and the Outlook Mobile App.
New Phishing Threats
Please note that this is not an all inclusive list of all of the phishing threats but rather ones that are typical of current threats and the ones you are more likely to see. Be diligent with all communications. Mar 2023: Vishing Calls Impersonate Loved Ones in Distress Mar 2023: Twitter Scam Impersonates Bank Support Staff
Protect UCSF and Myself from Phishing and Other Similar Scams
Information you need to know WHAT YOU SHOULD DO IF YOU RECEIVE A RANDOM EMAIL OR CALL THAT ASKS FOR YOUR PRIVATE INFORMATION:
- Technical Partner
Avoid Being Phished - Quick Tips
How can I avoid phishing attacks? Phishing messages are becoming more targeted, sophisticated and even harder to recognize. Look for signs of phishing These include emails with suspicious links or attachments, plus:
Mar 2023: Attacks Use Silicon Valley Bank-Related Lures
Threat Alert: What to Watch For Following the collapse of Silicon Valley Bank (SVB), cybercriminals have launched phishing attacks to take advantage of the high-profile event. One widespread lure impersonates Circle, the peer-to-peer payments company that manages the cryptocurrency USDC. The lure encourages recipients to click an offer link to redeem a one-to-one exchange between the cryptocurrency USDC and the U.S.
Security Incident Response & Investigation
- Technical Partner
Mar 2023: Invoice-Themed Phishing Lures Spreading Malware
Threat Alert: What to Watch For Cybercriminals have launched phishing attacks using malicious invoice-themed attachments to spread malicious software (malware). The phishing attacks hijack legitimate email threads to deliver the phishing lures to further increase the believability of the attacks.
Feb 2023: Phishing Attacks Use Earthquake-Themed Lures
Threat Alert: What to Watch For Cybercriminals have launched multiple phishing attacks attempting to take advantage of the humanitarian crisis in Turkey and Syria following the earthquake. These attacks are intended to steal recipient’s funds or to lead to the installation of malicious software (malware). As multiple attacks are exploiting this crisis, lures will appear different.