Skip to Main Content

QR Code Phishing Campaign - myUCLA-Health_MEDNET profile contact.

The UCLA Information Security Office is aware of a phishing campaign attempting to coerce recipients into scanning a QR code to deceive users into providing information posing as a Microsoft two-factor enrollment process for UCLA. 

This is not a legitimate e-mail and recipients should not provide any information or scan the QR code from the sender.

 

A close inspection of the email quickly alerts you to a possible scam with several clues:

Unusual QR code request - The email prompts users to scan a QR code as the first step to verify their account information.

Suspicious sender - The sender's email address is neither from Microsoft nor UCLA. 

Email body is an image file - The entire body of the email is a single image, with no clickable texts or links such as the "Did you find this email helpful?" and Privacy Statement portions. 

QR code phish2

Subject: myUCLA-Health_MEDNET profile contact.

Body:

Welcome to the UCLA Health Mednet Two-Factor enrollment process.

You are hereby required to confirm if your profile contact details remain the same or need to be updated for the new academic year.

Scan QR code below with your smartphone camera to continue.

Report Scams 

If you receive a suspicious email, do not click on any links, open any attachments, send payment, or supply any credentials. Please do not reply to the email and immediately contact security[@]ucla.edu and report it to your IT team.