Search | UCSF IT

35 Results

Phish Alarm

What is Phish Alarm? Phish Alarm is a tool that is available to all users at UCSF. With the click of a button, users can report a phishing or malicious message. As described here, the Report Phish button is available for both PC and Mac Outlook clients as well as on Outlook Web Access (email.ucsf.edu) and the Outlook Mobile App.

Faculty
Staff
Student
Security

Other Content

Mar 2023: Malicious OneNote Attachment Lures

Threat Alert: What to Watch For

Other Content

New Phishing Threats

Please note that this is not an all inclusive list of all of the phishing threats but rather ones that are typical of current threats and the ones you are more likely to see. Be diligent with all communications. Mar 2023: Vishing Calls Impersonate Loved Ones in Distress Mar 2023: Twitter Scam Impersonates Bank Support Staff

How-To

Protect UCSF and Myself from Phishing and Other Similar Scams

Information you need to know WHAT YOU SHOULD DO IF YOU RECEIVE A RANDOM EMAIL OR CALL THAT ASKS FOR YOUR PRIVATE INFORMATION:

Affiliate
Faculty
Staff
Student
Technical Partner
Security

How-To

Avoid Being Phished - Quick Tips

How can I avoid phishing attacks? Phishing messages are becoming more targeted, sophisticated and even harder to recognize. Look for signs of phishing These include emails with suspicious links or attachments, plus:

Other Content

Mar 2023: Attacks Use Silicon Valley Bank-Related Lures

Threat Alert: What to Watch For Following the collapse of Silicon Valley Bank (SVB), cybercriminals have launched phishing attacks to take advantage of the high-profile event. One widespread lure impersonates Circle, the peer-to-peer payments company that manages the cryptocurrency USDC. The lure encourages recipients to click an offer link to redeem a one-to-one exchange between the cryptocurrency USDC and the U.S.

Service

Security Incident Response & Investigation

Affiliate
Faculty
Staff
Student
Technical Partner

Other Content

Mar 2023: Invoice-Themed Phishing Lures Spreading Malware

Threat Alert: What to Watch For Cybercriminals have launched phishing attacks using malicious invoice-themed attachments to spread malicious software (malware). The phishing attacks hijack legitimate email threads to deliver the phishing lures to further increase the believability of the attacks.

Other Content

Feb 2023: Phishing Attacks Use Earthquake-Themed Lures

Threat Alert: What to Watch For Cybercriminals have launched multiple phishing attacks attempting to take advantage of the humanitarian crisis in Turkey and Syria following the earthquake. These attacks are intended to steal recipient’s funds or to lead to the installation of malicious software (malware). As multiple attacks are exploiting this crisis, lures will appear different.

Other Content

Mar 2023: Global Phishing Campaigns Using Tax Season Lures

Threat Alert: What to Watch For Cybercriminals have launched numerous, different phishing attacks using timely tax-themed lures. As multiple attacks are leveraging this topic, the lures will appear different.