Office of the Chief Information Security Officer

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. From: "admin . @ ucla.edu<mailto:   admin @  ucla.edu>" <marc.lazzari@@@safti[.]fr<mail to:  marc.  lazzari @  safti[.]fr>>

Subject: ATTENTION!!!

Date: May 2, 2019 at 12:28:46 PM PDT

To: <i@ . i.  net<mailto:   i@@@i.net>>

Take note of this important update that our new UCLA web mail has been improved with a new messaging system from WebAdmin which also include faster usage on email, shared calendar,web-documents and the new 2019 anti-spam version.

Please use the link below to complete your update for our new  UCLA improved MailBox.

Click  to update

UCLA Technical Support

192.168.0.1

Copyright @ 2019 All rights reserved.

www .  .ucla.edu

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. Hello

My name is Dr Josh Brolin and I work as a Health & Biomedical Sciences Building (HBSB), for the department of Disability Resources and Educational Services (DRES). I provide individual and group therapy, coaching, assessment and academic screenings to support students with disabilities (physical, chronic, psychiatric, and invisible) registered with DRES. A large percentage of the students served by the mental health unit have psychiatric disabilities or co-morbid psychiatric disabilities and need mental health support to be successful at the university. In addition, many University of students with academic difficulties and no prior diagnosis are seen and assessed through the academic screening and assessment process...

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. From: HUMAN RESOURCES <careerstudentprogram 21 @@@gmail[.]com>

Sent: Monday, May 6, 2019 10:57:41 AM

To: <Redacted>

Subject: PART TIME OPEN JOB POSITION CISCOsystems

UCLA student

This mail is sent to you as to an open employment position at CISOsystems inc. You have been chosen to partake in the current  Student Empowerment Program set up by CISCO/PATHWAYS and other Governmental Agencies to enable Hard working and planned Students to contribute their Quota in the New Government Policies to redesign the Labor Market by Increasing Production Outputs and institutionalizing the Economy .

This Program/Position is completely School oriented and is relied upon not to prevent you from school and different exercises which is Priority. It is Accompanied with a good week to week wages and reasonable working hours .

YOU ARE REQUIRED TO REPLY TO THIS MAIL WITH YOUR PERSONAL EMAIL ADDRESS / PHONE NUMBER IF YOU WISH TO PROCEED WITH THE JOB OFFER IN ORDER TO RECEIVE FULL JOB DESCRIPTION

Best,
Dylan Filipe
HR Recruit Manager/Consultant
CISCOsystems®

Below is an example of a phishing email that was sent out recently. If you receive this message, please do not respond to it and do not click on any links. From: Gregory Broomfield
Sent: None
Subject: Tutor

Hello,

How are you doing today? My name is Gregory Broomfield. I came across your e-mail at the University of California Los Angeles, Department of Physics and Astronomy  under People's portal. I seek for a private tutor for my Daughter. I would like to know if you would be available for the job and I would provide you with more details my daughter.

I would also like the lessons to be at your location. Kindly let me know your policy with regard to the fees, cancellations, location and make-up lessons. Also, get back to me with your area of specialization and any necessary information you think that might help.

Once you confirm your availability, I would provide you with more helping details.  The lessons can start by 31st of August.

Looking forward reading from you.

Best regards,

Gregory.

Below is a sample phishing email that was recently sent out. If you received this, please do not respond to it and do not click on any hyperlinks. From: Muckey, Chris [mailto : cmuckey@@aroundcampus.com]
Sent: Thursday, December 01, 2016 2:54 PM
To: Lundy, Bill
Subject: Free Chick-Fil-A for All UCLA Students & Faculty

Hello There!
 
Chick-Fil-A is giving a free chicken sandwich to all UCLA students and Faculty!
 
Simply download the free UConnection app, create an account with your ucla.edu email address, and head to Chick-Fil-A every Monday; you can go as many times as you want! You can also save at over 20 other restaurants and bars in Westwood...
 

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. From: Chase  <redacted>
Sent: Sunday, July 8, 2018 10:43 AM
To: Recipients
Subject: Your Chase Online: Action Required

We recently reviewed your account, and we are suspecting that your account may have been accessed from an unauthorized computer.
Please review your online preference to avoid restriction on your online account. Please Click Review

Thank you,
Chase Security Department

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. From: Widmaier,Chelsea N <redacted> 
Sent: Wednesday, September 12, 2018 6:23 PM
Subject: FW!!!Good Afternoon*****

I am Edward R. Carr  a geographer and anthropologist whose career and research focus on exploring alternative ways of achieving meaningful and enduring improvements to human well-being. I worked in rural sub-Saharan Africa on issues of development and global change among various rural communities. My scholarship and teaching encourage students and development professionals to reexamine the sometimes-damaging preconceptions embedded in development theory; in my book Delivering Development: Globalization?s Shoreline and the Road to a Sustainable Future, I demonstrates how these commonly held beliefs about globalization and development have failed the global poor, and how to redefine what assistance to developing communities really means in an ever-changing world.

You have been selected to work with me through the  UCLA   HR departments as my

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. From: Richard Burr <email address redacted>
Sent: Saturday, July 21, 2018 1:15 AM
Subject: shipping/delivery Company/agent,

I am Richard Burr Head of Inspection Unit United Nations Inspection
Agency in Harts field-Jackson International Airport Atlanta, Georgia.

During our investigation, I discovered an abandoned shipment through a
Diplomat from United Kingdom which was transferred from JF Kennedy
Airport to our facility here in Atlanta, and when scanned it revealed
an undisclosed sum of money in 2 Metal Trunk Boxes weighing
approximately 110kg each. ...

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. From: [redacted] 
Sent: Saturday, January 26, 2019 2:07 PM
To: [redacted]
Subject: Security Notice. Someone have access to your system.
 
Hello!
 
I have bad news for you.
09/10/2018 - on this day I hacked your OS and got full access to your account [redacted]
On this day your account [redacted]  has password: [redacted]
 
So, you can change the password, yes.. But my malware intercepts it every time.
 
How I made it:
In the software of the router, through which you went online, was a vulnerability.
I just hacked this router and placed my malicious code on it.
When you went online, my trojan was installed on the OS of your device...

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. From: [redacted]@truvista.com

Sent: Thursday, December 20, 2018 12:05 AM

To: N\A

Subject: good news

Sensitivity: Normal

<The pdf is in image format>

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. From: NEW-PART-TIME-WORK@NEWJOB[.]ORG
Sent: Wednesday, December 12, 2018 8:32 AM
To: <Redacted>
Subject: NEW-PART-TIME-WORK@NEWJOB[.]ORG has shared Directory - Radford University

Survey Evaluation Job in your city for $500. click the jotform link below to apply: hxxps://form.myjotform.com/83197988260573 Taylor Mckee

Directory - Radford University
hxxps://www.radford.edu/content/radfordcore/home/directory.html#kHqjtyslEVRioIc…

---
NEW-PART-TIME-WORK@NEWJOB[.]ORG shared this using Po.st

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. From: noreply@qumailserver.com
Date: Mon, Nov 19, 2018 at 10:52 AM
Reply-To:
To: <Redacted>
 
Steven Jonas is participating in a science team leadership development program. As part of that program, Steven Jonas is receiving a number of 360 degree surveys to provide developmental feedback regarding his or her leadership. You have been nominated as someone who has sufficient experience with Steven Jonas to be able to provide relevant and accurate feedback.
 
Please click the link below to access the survey...

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. From: SURVEY-EVALUATION-JOB@TMS.ORG [mailto:SURVEY-EVALUATION-JOB@TMS[.]ORG] Sent: Friday, November 23, 2018 11:08 PM To: (Redacted) Subject: SURVEY-EVALUATION-JOB@TMS.ORG has shared Directory - Radford University Survey Evaluation Job in your area for $500. click the jotform link below for registration: hxxps[:]//form.myjotform[.]com/83197988260573 Clara Baran Directory - Radford University hxxps[:]//www.radford[.]edu/content/radfordcore/home/directory[.]html#xCbEmAoofrES... --- SURVEY-EVALUATION-JOB@TMS[.]ORG shared this using Po.st

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. Subject: 1 New Unread Email

From: UCLA CS Department  

Date: Tue, Nov 27, 2018 at 9:19 AM

1 New Unread Email 

Click  Here  To Read 

UCLA CS Department

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. From: <REDACTED> 
Sent: Wednesday, November 28, 2018 7:45 AM
To: <REDACTED>
Subject: Re: IT-Service Desk

Important Notice from IT Help Desk Team, we are updating all Faculty/Staff and Employees 

mailbox to new Outlook Web App/Owa for 2018 version. 

kindly click on Outlook Web Access to update the new version.  

IT Help-desk/support Desk

© Copyright 2018 Microsoft

All right Reserved

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlink. From: SURVEY-EVALUATION-JOB@TMS.ORG [mailto:SURVEY-EVALUATION-JOB@TMS[.]ORG] Sent: Friday, November 23, 2018 11:08 PM To: (Redacted) Subject: SURVEY-EVALUATION-JOB@TMS.ORG has shared Directory - Radford University Survey Evaluation Job in your area for $500. click the jotform link below for registration: hxxps[:]//form.myjotform[.]com/83197988260573 Clara Baran Directory - Radford University hxxps[:]//www.radford[.]edu/content/radfordcore/home/directory[.]html#xCbEmAoofrES... --- SURVEY-EVALUATION-JOB@TMS[.]ORG shared this using Po.st

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks.
From: AppIe <eid5512000015990@iinet.com.au>

Date: Friday, November 2, 2018 at 6:11 PM

To: REDACTED

Subject: BiIIing ProbIem

[IMAGE]

Important, Please Check Your Apple account!

Hi Customer,

Recently, we have detected suspicious behaviour regarding your account activity. For your security, we have restricted access to your Apple account, you can release those limitations by completing a simple verification form available on the button bellow .

Confirm Now<https:REDACTED&gt;

Thanks for according us your time, please note that your security is our priority .

Feel Free to contact us

this eMail is secured by us

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. TEXT OF PHISHING EMAIL
From: Unread Skype Messsage -no-reply4398467whgdfyu37823tesdyu7832geayudty37827843gws67
Sent: Thursday, October 11, 2018 8:57 AM
To <REDACTED>
Subject: Skype Message - Board Meeting Scheduled

Dear <REDACTED>.ucla.edu,

A meeting was schedule with you on skype.
Proceed here to view and confirm or cancel scheduled appointment.
Regards,
Skype © 2018

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks. From: ucla.edu [REDACTED]
Sent: Saturday, September 01, 2018 6:49 AM
Subject: Switch to the new interface or lose access to your email

Hi,

Very soon you will not be able to access your email account with the old web-mail page, so we are providing you with new web-mail link to try it out.
Click the link and sign in to star using the new web-mail now:

Thanks

Below is a sample phishing email that was recently sent out. If you receive this, please do not respond to it and do not click on any hyperlinks.
From: <REDACTED>
Sent: Tuesday, October 09, 2018 4:02 AM
To: <REDACTED>
Subject: Action Required: Email Account Synchronization Failed

Hello <REDACTED>.ucla.edu,
Your INBOX and SENT folder cannot synchronize incoming and outgoing messages,you are required to synchronize your email account to restore normal email delivery.
Synchronize <REDACTED>.ucla.edu

Sincerely,
Finance Email Exchange
This is a mandatory service communication for <REDACTED>.ucla.edu.
This message was sent from an unmonitored e-mail address. Please do not reply to this message.
Privacy | Legal