Phish Checker & Mobile Security Checklist
DO NOT RESPOND TO THE CONFIRMED PHISHING ATTACK EMAILS LISTED BELOW (DO NOT CALL PHONE NUMBERS PROVIDED IN PHISHING EMAILS; REFRESH YOUR BROWSER TO SEE
THE LATEST ATTACKS)
Professional cybercriminals want your money, data, identity, and access to your home
and ETSU networks. Be suspicious of emails with [EXTERNAL] or [SUSPECTED SPAM] tags. Report suspicious emails with the Phish Alert Report button in the Outlook toolbar. Data are archived after 60 days. Scroll down for additional mobile device security tips. In many cases, sender emails
shown are compromised accounts.
| DATE - TOPIC | EMAIL SENDER | EMAIL SUBJECT LINE(S) |
TYPE OF CRIME |
| 04/24/2024 - HR PAYROLL SPOOF; CREDENTIAL THEFT | Caydee Johnson - cjohnson@cboces.org | HR Employee Payroll Benefit Routine. | Credential Theft, Payroll Rerouting, Escalation Attack, Bank Fraud |
| 04/24/2024 - HVAC BILLING SPOOF | Keith Morrow - website@farmaciaita.com.br | HVAC Invoice - 209073 | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 04/24/2024 - PAYPAL BILLING SPOOF | ellena williasms - ellenawill_012@icloud.com | Official receipt:HBG263ASQ986RF45GH0 | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 04/24/2024 - LIFELOCK BILLING SPOOF | Lloyd Madaras - lloydmadarasnwek@gmail.com | (no subject heading) |
Credit Card Fraud; Billing Fraud; Bank Fraud |
| 04/20/2024 - PET SITTER JOB FRAUD | josefina sepulveda - jossepulvedas@udd.cl OR lisarmcclelland@zohomail.com | EAST TENNESSEE STATE UNIVERSITY- EXTRA FLEXIBLE PAYMENT FOR STUDENT | Job Fraud; Overpayment Fraud Scheme |
| 04/17/2024 - MCAFEE BILLING SPOOF | Jessica Roman - jesentaikoli@gmail.com | Your recently paid Order no is 46227598 will be processed shortly | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 04/15/2024 - FAKE ADMINISTRATIVE SHARED DOCUMENTS SENT FROM COMPROMISED GMAIL ACCOUNTS USING GOOGLE DOCS | ETSU is being hit with waves of emails from drive-shares-dm-noreply@google.com - purporting to be various administrative document links - we are blocking as they arrive. | Various subjects - emails contain shared documents sent from drive-shares-dm-noreply@google.com | Credential Theft |
| 04/14/2024 - FAKE JOB SPOOF; BANK FRAUD SCHEME | Mr.Peter Cole - controlgestion@sedatu.gob.mx | Personal Assistant Job | Fraudulent Job Offer; Bank Credential Theft; Overpayment Scheme |
| 04/14/2024 - SHIPPING FRAUD SCAM; FREE PIANO SCAM | alansmith2063@gmail.com or k.mckenzie2763@gmail.com | Piano Donation for Interested ETSU Employee | Shipping Fraud; Credit Card Fraud |
| 04/11/2024 - FAKE JOB SPOOF; BANK FRAUD SCHEME | From various senders including a compromised ETSU account (do not respond to robertburgos001@zohomail.com OR Lurindajones001@zohomail.com ) | ERRAND ASSISTANT JOB REMOTE or East Tennessee State University FLEXIBLE OFFER GREAT
NEWS!!! |
Fraudulent Job Offer; Bank Credential Theft; Overpayment Scheme |
| 04/10/2024 - SHIPPING FRAUD SCAM; FREE PIANO SCAM | Kaylee Donahue - drrek@optonline.net | A new home for piano | Shipping Fraud; Credit Card Fraud |
| 04/09/2024 - SENIOR ADMIN SPOOF; SHIPPING FRAUD SCAM | (Senior Administrator's name) - donjohn014677@gmail.com | Own A Snap-On Tools And Accessories | Senior Admin Spoof; Bank Fraud; Gift Card Scam |
| 04/09/2024 - FAKE JOB SPOOF | Hector Guevara Morales - de155325@miescuela.pr | CHECK THIS OUT!! | Credential Theft; Job Fraud; Overpayment Scam; Bank Fraud |
| 04/05/2024 - SENIOR ADMIN SPOOF | Senior ETSU Admin name - myofficemail0503@gmail.com | Recipient's first name appears in subject line |
Senior Admin Spoof; Gift Card Scam |
| 04/05/2024 - ETSU ADMIN SPOOF; SHIPPING FRAUD | (admin name) - wwestern474@gmail.com (also, do not respond to brooksmargret2@gmail.com or charlottebaily007@outlook.com) | Resumption Good News (THERE IS NO FREE PIANO) |
Shipping Fraud; Credit Card Fraud |
| 04/05/2024 - SENIOR ADMIN SPOOF | (Senior Admin Name) - bollpove@gmail.com | FOLLOW-UP: RECONFIRMATION NEEDED!!! | Senior Admin Spoof; Gift Card Scam |
| 04/02/2024 - GEEKSQUAD BILLING SPOOF | Bill BestBuy James Mcknight - kellygourdine105@gmail.com | Your Invoice 3078290241 Payment Update - Read Now!799 GHW4EKAcH8mGVGL | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 04/02/2024 - GEEKSQUAD BILLING SPOOF | Khang Pham - kpham1@keuka.edu | Όrder Placed Confirmation: Your Item is ready. | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 04/02/2024 - GEEKSQUAD BILLING SPOOF | QASIM AHMAD JAN - qasimjan@stu.khas.edu.tr | Thank You for Your Όrder! Processing Begins. | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 04/01/2024 - GEEKSQUAD BILLING SPOOF | Igli Naim Doçi - idoci@uet.edu.al |
Receípt fọr Όrder Nuʍber 7841200! | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 04/01/2024 - GEEKSQUAD BILLING SPOOF | Mohammed Mahmoud - mohammed.mahmoud@phynv.au.edu.eg | Yọur prọduct ís ready | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 03/28/2024 - GEEKSQUAD BILLING SPOOF | DAVID LEONARDO QUIROZ QUISPE - davidquiroz564@aulaacad.pitagoras.edu.pe | Thank You for Your Όrder! Processing Begins. | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 03/27/2024 - NORTON LIFELOCK SPOOF- BILLING FRAUD | lawrence javier - ochoabraylen315@gmail.com or athanialarellano844@gmail.com | Payment Confirmation: Important Update | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 03/27/2024 - PAYPAL SPOOF- BITCOIN FRAUD | Nicole Reece - nicole_reece467@icloud.com | Statement_Receipt_No#9563250{[INV#ZIDTTYJUFGHFG]} | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 03/27/2024 - SENIOR ADMIN SPOOF | VITAL TASK!!! - companytaskdirective@gmail.com | (Senior Admin Name) |
Senior Admin Spoof; Gift Card Scam |
| 03/27/2024 - GEEKSQUAD BILLING SPOOF | KHUN NAT - khun.nat@ubb.edu.kh | Όrder Number 6484513 is ready | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 03/22/2024 - BESTBUY/GEEKSQUAD BILLING SPOOF | Nguyễn Ngọc Đông - nguyenngocdong@hcma.edu.vn | Payment compIeted for the Όrder | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 03/21/2024 - PAYPAL/NORTON BILLING SPOOF | Nada Bobrow- nadanhcbobrow@hotmail.com |
Your Recent Purchase - Order ID: 83493849834 | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 03/20/2024 - SOCIAL SECURITY SPOOF (do not call the 888 number in the email!) |
US SSN GOV DEPT- 054 - danywalson29@gmail.com |
US SSN GOV DEPT- 054 <danywalson29@gmail.com> |
Government Spoof - Fine Fraud |
| 03/20/2024 - INHERITANCE SPOOF | Spencer - tvn.s.2023@gmail.com |
Your bequest- | Bank Fraud |
| 03/19/2024 - FAKE WORK FROM HOME JOB FRAUD | Muneera Alkuwari - muneera241338@ccq.edu.qa | DON’T MISS OUT ON FLEXIBLE OPPORTUNITY | JobFraud; Bank Fraud; Overpayment Scheme; Gift Card Scam |
| 03/18/2024 - FAKE INTERNSHIP JOB FRAUD | WILSON BREANNA - franklygonzalez47@gmail.com OR officialsupervisor158@gmail.com |
INTERNSHIP OFFER | JobFraud; Bank Fraud; Overpayment Scheme; Gift Card Scam |
| 03/15/2024 - FREE PIANO SCAM | Ruth Lennon - saintlucyao@gmail.com or ruthlennon1957@hotmail.com | It's A Piano Instrument Gift. | Shipping Fraud; Credit Card Fraud |
| 03/14/2024 - PET SITTER JOB FRAUD - BANK FRAUD | CLARA UPCHURCH - cupchurch3559@northwestms.edu |
Are you available to work part time as a petsitter? | JobFraud; Bank Fraud; Overpayment Scheme |
| 03/14/2024 - GEEK SQUAD BILLING FRAUD | Dawid Stachura - dawidstachura@potworow.onmicrosoft.com |
Your Όrder is Now Being Processed. | Credit Card Fraud; Billing Fraud; Bank Fraud |
| 03/14/2024 - SENIOR ADMIN SPOOF TEXT MESSAGE | SENT FROM 1-469-819-7960 (PHONE TEXT ALERT!!! - SENIOR ADMIN SPOOF) |
SMS TEXT MESSAGE SPOOFING A SENIOR ADMIN |
Likely a Gift Card Scam |
| 03/14/2024 - PET SITTER JOB FRAUD - BANK FRAUD | TORRES MACHACA DANIEL ANTHONY - d.torres.machaca@isur.edu.pe |
Are you available to work part time as a petsitter? | JobFraud; Bank Fraud; Overpayment Scheme |
| 03/13/2024 - PET SITTER JOB FRAUD - BANK FRAUD | MAMANI ARIZACA FLOR MARICIELO - f.mamani.arizaca@isur.edu.pe OR MORALES MAMANI ALICIA
CATHERINE - a.morales.mamani@isur.edu.peOR MAYTA PAREDES LISBETH GIMENA - l.mayta.paredes@isur.edu.pe |
>>>> Pet Sitter Wanted <<<<<< OR >>>> Pet Sitter Needed <<<<<< |
JobFraud; Bank Fraud; Overpayment Scheme |
| 03/13/2024 - SPOOF OF MULTIPLE ETSU ADMINISTRATORS | (Spoofed ETSU administrators) - usofdeanedu@gmail.com | Available | Gift Card Scam |
| 03/12/2024 - UNICEF JOB SPOOF - BANK FRAUD | Cuny Moga, Pedro - pcuny.hj23.ics@gencat.cat |
Request for Assistance | Job Fraud; Bank Overpayment Scheme; Theft; Credential Theft |
| 03/12/2024 - PAYPAL BILLING SPOOF | Notification_BOQRetail_Offices 697895 - bronnyjc319@gmail.com |
Thank you for Items OFK70G4XTRCN | Credit Card Fraud; Billing Fraud |
| 03/12/2024 - GEEK SQUAD BILLING SPOOF | Man To CHOW - mtchowab@connect.ust.hk |
Confirmation: Your Order is in the Queue. | Credit Card Fraud; Billing Fraud |
| 03/12/2024 - GEEK SQUAD BILLING SPOOF | CAMILA ANAHÍ GUILLEN LARICO - 74054451@bryce.edu.pe |
Thank You for Your Order! Processing Begins. | Credit Card Fraud; Billing Fraud |
| 03/12/2024 - GEEK SQUAD BILLING SPOOF | Sonia Petruzzi- soniafrancescapetruzzi@iccavenagodibrianza.onmicrosoft.com |
0rder Number 651132 is ready | Credit Card Fraud; Billing Fraud |
| 03/12/2024 - GEEK SQUAD BILLING SPOOF | Ruben Alexander Flores - s105732@brainline.com |
Payʍent cọʍpļeted fọr the Ọrder | Credit Card Fraud; Billing Fraud |
| 03/12/2024 - GEEK SQUAD BILLING SPOOF | VARGAS MU�IZ ELKYN JUSTIN - elkyn.vargas@bgarelli.edu.ec |
0rder lD is 1805463 | Credit Card Fraud; Billing Fraud |
| 03/12/2024 - GEEK SQUAD BILLING SPOOF |
Abeer Salah Alsoub - a.alsoub@bau.edu.jo |
Ọrder pÍaced successfuļļy | Credit Card Fraud; Billing Fraud |
| 03/11/2024 - SPOOF OF ETSU ADMINISTRATOR | Urgent task!!!! - firmtask875@gmail.com |
Dr.brian Noland |
Gift Card Scam |
| 03/11/2024 - SPOOF OF ETSU ADMINISTRATOR | (Spoofed ETSU administrator) - execrdrct3@gmail.com | Task | Gift Card Scam |
| 03/07/2024 - SPOOF OF ETSU ADMINISTRATOR |
(Spoofed ETSU administrator) - morganbetty193@gmail.com |
REQUEST | Gift Card Scam |
| 03/06/2024 - ZELLE BILLING SPOOF | zelle - zellereceipts85we@outlook.com |
Transaction Confirmation | Credit Card Fraud; Billing Fraud |
| 03/06/2024 - HR SPOOF | Cook, Mars - mars.cook.966@my.csun.edu |
IMPORTANT MEMO FROM HR: ASSESSMENT REPORTS FOR FACULTY AND STAFF 2024 | Credential Theft; Escalation Attack; Data Exfiltration; Ransomware Attack |
| 03/05/2024 - FREE PIANO SHIPPING CHARGES FRAUD | (spoofed ETSU Administrator) - luvleee77@optonline.net |
Free Baby Grand Piano Offer | Shipping Fraud; Credit Card Fraud |
| 03/04/2024 - PAYPAL MERCHNANT BILLING SPOOF | Derrick - dajkberobm@gmail.com |
Important Account Update: PayPal Business Account Verification and Fee Notification | Credit Card Fraud; Bank Fraud; Credential Theft |
| 02/28/2024 - FREE BABY GRAND PIANO SCAM | Ruth Lennon - loprestib062@gmail.com |
Giving Out Yamaha Baby Grand. | Credit Card Fraud; Shipping Fraud |
| 02/26/2024 - SPOOFED PAYPAL/BITCOIN BILLING FRAUD | Reza Hendick - reza_hend78@icloud.com |
Receipt Order #90746 | Credit Card Fraud; Bank Fraud; Credential Theft |
| 02/26/2024 - SPOOF OF ETSU ADMINISTRATOR | (spoofed ETSU Administrator) - (spoofed Admin's name) .etsu.edu@gmail.com | Re: | Theft of sensitive business information. |
| 02/26/2024 - SPOOF OF COLLEGE OF NURSING ADMINISTRATOR | (spoofed ETSU Administrator) - (spoofed Admin's name) .etsu.edu@gmail.com |
Available | Gift Card Scammers |
| 02/26/2024 - SPOOFED JETBLUE/PAYPAL BILLING FRAUD | Maranda Falb - justinhendersonobucga42@gmail.com |
Get Ready! Your Booking Is Confirmed and Locked In !! #72203871 | Credit Card Fraud; Bank Fraud; Credential Theft |
| 02/26/2024 - SPOOFED ETSU ADMINISTRATOR; GIFT CARD SCAM | (Spoofed ETSU Administrator) admiindomaiin@gmail.com | RE: (spoofed ETSU Administrator's Name) |
Gift Card Scam |
| 02/22/2024 - SPOOFED ETSU ADMINISTRATOR; GIFT CARD SCAM | (spoofed ETSU Administrator) emelygolobujt18@gmail.com OR carolinemonroe862@gmail.com | various (hello, hi, urgent - see gmail account under email sender) |
Gift Card Scam |
| 02/22/2024 - SPOOFED JETBLUE/PAYPAL BILLING FRAUD | Leanora Baucher - claralingerddmj@gmail.com |
Complete Your Payment for Your jetBlue® Purchase ✈️ | Credit Card Fraud; Credential Theft |
| 02/22/2024 - SPOOFED MCAFFEE BILLING FRAUD | 0rder X - 0rderlnfo2453@ceslas.mx |
Ọrder ÍD ís 3451000 | Credit Card Fraud; Escalation Attack; Credential Theft; Malware |
| 02/22/2024 - SPOOFED MCAFFEE BILLING FRAUD | Elghaly, Albatoul - 18alelg@ngsdubai.ae |
Thanks fọr pļacíng Ọrder | Credit Card Fraud; Escalation Attack; Credential Theft; Malware |
| 02/22/2024 - SPOOFED MCAFFEE BILLING FRAUD | Yousef Abdelrahman Mansour Sanad - 21yoman@ngsdubai.ae (numerous emailsfrom ngsbudai.ae) |
Your item is ready or Thanks fọr pļacíng Ọrder or 0rder Number 12085013 is ready
or Payʍent cọʍpļeted or 0rder Confirmation: Your Purchase is Being Prepared. |
Credit Card Fraud; Escalation Attack; Credential Theft; Malware |
| 02/22/2024 - SPOOFED MCAFFEE BILLING FRAUD | Andy J Lawrence - wdfewfrwe3@gmail.co |
Renewal Confirmation: Thank You for Staying 2TD0M | Credit Card Fraud; Escalation Attack; Credential Theft; Malware |
| 02/20/2024 - SPOOFED NORTON TRANSACTION FRAUD | Sherry Kimura - stacihiggs217@gmail.com |
Payment Confirmation | Credit Card Fraud; Escalation Attack; Credential Theft; Malware |
| 02/20/2024 - SPOOFED ZELLE TRANSACTION FRAUD | Jason (jasonterry85a@outlook.com) |
Transaction Receipt | Credit Card Fraud |
| 02/15/2024 - MCAFEE BILLING SPOOF | (attacker using mixed prefixes) @opulasoft.com | Yọur ọrder ís ready OR 0rder PIaced: Your Items are Being Prepared. |
Credit Card Fraud; Escalation Attack; Credential Theft; Malware |
| 02/15/2024 - MCAFEE BILLING SPOOF | do-not-repIy - 84054donotrepiy@opulasoft.com | Hurray! Prọduct cọnfírʍed | Credit Card Fraud; Escalation Attack; Credential Theft; Malware |
| 02/15/2024 - SPOOF OF ETSU ADMINISTRATOR | (spoofed administrator) myonlineboxoffice@gmail.com | Let me know if you are free right now. | Social Engineering; Gift Card Theft Scheme |
| 02/20/2024 - SPOOFED ZELLE TRANSACTION FRAUD | Timothy - t4655715@gmail.com | Zelle Transaction Receipt | Credit Card Fraud |
| 02/20/2024 - SPOOFED MUSIC APP SUBSCRIPTION FRAUD | APP Notify |Payment Receipt| M0333 - gabrielsalt428@gmail.com | Thank you for your payment | Credit Card Fraud; Mobile Device Intrusion |
| 02/15/2024 - SPOOFED DATING SERVICE | proxannyulia@gmail.com | Hi Edward | Identity theft; Fraud; Catfishing; Extortion |
| 02/15/2024 - SPOOF OF COLLEGE OF CLINICAL AND REHABILITATIVE HEALTH SCIENCES ADMINISTRATOR | suongives0@gmail.com | Are you free now ? | Gift Card Scammers |
| 02/15/2024 - SPOOF OF COLLEGE OF EDUCATION ADMINISTRATOR | jw560283@gmail.com | Are you available now ? Are you accessible now? Are you free now? |
Gift Card Scammers |
| 02/15/2024 - SPOOF OF COLLEGE OF PUBLIC HEALTH ADMINISTRATOR | enb07492@gmail.com | Are you available now ? | Gift Card Scammers |
| 02/15/2024 - SPOOF OF COLLEGE OF ARTS & SCIENCES ADMINISTRATOR | cnirajl817@gmail.com | Are you available now ? | Gift Card Scammers |
| 02/15/2024 - SPOOF OF GATTON COP ADMINISTRATORS | dganaiayanaia@gmail.com OR jbjacob1167@gmail.com or maribelfblanco75@gmail.com | NUMEROUS - "Are you free now," "Kindly provide me your available cell number," "Are
you accessible now," "Did," "Are you available now?" |
Gift Card Scammers |
| 02/15/2024 - FAKE ERRAND JOB OFFER (Do NOT Share Banking Information!!!) | Athari Sohail T S Al-Katheeri - aa2008568@student.qu.edu.qa or Ali Hamad A S Al-Sifran
- aa2008568@student.qu.edu.qa (they are rapidly name switching between about 10 names)
- Do NOT email lurindajones001@zohomail.com |
East Tennessee State University FLEXIBLE OFFER GREAT NEWS!!! | Overpayment Scheme; Bank Fraud; Theft |
| 02/15/2024 - ANTIVIRUS SUBSCRIPTION BILLING SPOOF | rowena petersen - rowenapetersennrii85@gmail.com | You've completed your payment====MDKIHG======08654=====YDBGR=====08754 | Credit Card Fraud; Credential Theft; Escalation Attack |
| 02/14-15/2024 - UNICEF JOB SPOOF | Criado Lluelles, M. Eva - ecriado.lleida.ics@gencat.cat | Request for Assistance | Job Fraud; Bank Fraud |
| 02/14/2024 - FEED AMERICA JOB SPOOF | Allan Gour - allan.gour@gov.tt | Job Offer | Bank Fraud; Overpayment Scam |
| 02/14/2024 - ZELLE DIGITAL PAYMENT SPOOF | Karen - carryhazen696@gmail.com | Payment confirmation | Credit Card Fraud; Bank Fraud |
| 02/14/2024 - SECURITY SUBSCRIPTION BILLING SPOOF | payton farrell - paytonfarrellgmvz4962@gmail.com | "Oops, they took your money… but don't worry, it's just a friendly robbery!" | Credit Card Fraud; PII Theft; Credential Theft; Escalation Attack |
| 02/14/2024 - LIFELOCK BILLING SPOOF | Prof. Kaylie Trantow - anglessslos577@gmail.com | It has been confirmed that you will receive an E-Bill -HGXKBPMSZHYPGY | Credit Card Fraud; PII Theft; Credential Theft; Escalation Attack |
| 02/14/2024 - FAKE EMPLOYEE REVIEW SCAM | Robert Armstrong - robert.armstrong@austinisd.org | 2024 ASSESSMENT REVIEW REPORTS FOR FACULTY & STAFF | Credential Theft; Escalation Attack |
| 02/14/2024 - FAKE ANTIVIRUS SOFTWARE BILLING | eugenia moss - eugeniamossxssp954@gmail.com | Payment successfully received #MDFK-0754-YFBJ | Credit Card Fraud; Credential Theft; Escalation Attack |
| 02/08/2024 - FAKE EXPRESSVPN BILLING SCAM; OVERPAYMENT SCHEME | Araceli Divincenzo - walterbutler2741@gmail.com | Expressing Our Gratitude for Your recent Order MG-45899 | Credit Card Fraud; Credential Theft; Escalation Attack |
| 02/08/2024 - FAKE UNICEF JOB SCAM; OVERPAYMENT SCHEME | Aguilar-Galindo Jimenez, Angel - aaguilarg.mn.ics@gencat.cat | Request For Assistance | Job Fraud; Bank Fraud |
| 02/08/2024 - FAKE JOB SCAM; OVERPAYMENT SCHEME | NATHALY RICARDINA JUGO MARTINEZ - nathaly.jugo@usil.pe | Dog Sitting Opportunity | Job Fraud; Bank Fraud |
| 02/08/2024 - MCAFFEE A/V BILLING SPOOF | Roxana Castaneda - shakilkhan8921@gmail.com | Shipment Alert GS162881MC | Credit Card Fraud; Credential Theft; Escalation Attack |
| 02/07/2024 - ANOTHER FREE PIANO SCAM; SPOOF OF ETSU SENIOR ADMINISTRATOR | Green Adam - andrea.coreservices@gmail.com or lynnlawton456@gmail.com or lingardtorrey@gmail.com or kimber.coreservices@gmail.com | EAST TENNESSEE STATE UNIVERSITY (or the subject may be simply "v") |
Shipping Fraud; Credit Card Fraud |
| 02/07/2024 - PAYPAL/BITCOIN BILLING SPOOF | Dannie Havens - rt.orcur.abiturfa92@icloud.com | Transaction Successful #**JC4Q6VB4** | Credit Card Fraud; Credential Theft; Escalation Attack |
| 02/07/2024 - GEEK SQUAD BILLING SPOOF | leo daniel - trumanvazquezrykk09@gmail.com | Order Confirmation and Details #ODL1400236985739 | Credit Card Fraud; Credential Theft; Escalation Attack |
| 02/01/2024 - MCAFEE AV BILLING SPOOF | janet_braham1154@icloud.com | Thank you for your Renewal ! | Credit Card Fraud; Credential Theft; Escalation Attack |
| 01/31/2024 - HR ASSESSMENT SPOOF | Miguel Benavides - miguel.benavides@austinisd.org | ASSESSMENT REPORT FOR ALL STAFF MEMBERS 2024 | Credential Theft; Escalation Attack |
| 01/31/2024 - GEEK SQUAD BILLING SPOOF | Spoofed ETSU Administrator - abdallaal7703@gmail.com | Your Ticket No. 64921787 payment is processed | Credit Card Fraud; Credential Theft; Escalation Attack |
| 01/31/2024 - PAYPAL BITCOIN BILLING SPOOF | Ellis EllisADSF - pamala_harris6885@icloud.com | Thank you for choosing our service. | Credit Card Fraud; Credential Theft |
| 01/27/2024 - FAKE JOB SCAM; UNICEF SPOOF | Cruz Velez, Juan Sebastian - jcruzv@bellvitgehospital.cat | Request for Assistance | Employment fraud; Bank fraud; Credential Theft |
| 01/27/2024 - FREE PIANO SCAM | Paula Mortalo - sheetalramlagan79@gmail.com | 01/26/2024 Instrument | Credit Card Fraud; Shipping Fraud |
| 01/24/2024 - CHASE BANK BILLING SPOOF | Hathaway, Scott, ALAMEC - scott.hathaway@alpa.org | ACH_ PAYMENT RECEIPT | Bank Fraud; Credit Fraud; Credential Theft; Escalation Attack |
| 01/24/2024 - PAYPAL/LIFELOCK BILLING SPOOF | bassihussaina0 - bassihussaina0@gmail.com | Dear hello,..Paid Invoice for order no bellow pls check it out | Credit Card Fraud; Escalation Atack; Credential Theft |
| 01/24/2024 - LIFELOCK BILLING SPOOF | Jessie C. WaldoN - kimberleysanderssbng7@gmail.com | New message 1YVE2GQFQ9N6 | Credit Card Fraud; Escalation Atack |
| 01/24/2024 - PAYPAL iPHONE BILLING SPOOF | Furman Wolf - wolffi_e7684@icloud.com | Receipt Included #**DR69FROC** | Credit Card Fraud; Escalation Attack |
| 01/24/2024 - GEEK SQUAD BILLING SPOOF | Tiffany Graham - rabibabello998@gmail.com | Thank You for Your Trust and amount GS85881MC | Credit Card Fraud; Escalation Attack |
| 01/08/2024 - MUSICAL INSTRUMENT GIVEAWAY HOAX | Compromised ETSU account ********@etsu.edu | DOWNSIZING CAMERA AND SOME MUSICAL INSTRUNMENTS (NOTE SPELLING MISTAKE!) |
Shipping Fraud; Theft |
| 01/03/2024 - PAYPAL iPHONE BILLING HOAX | Louie Zelenak - louieadlks9353@icloud.com | Transaction Successfully Completed: | Billing Fraud; Credit Card Fraud |
| 12/28/2023 - COMPROMISED ACCOUNT USED IN JOB SPOOF | twyoung@campbellsville.edu (DO NOT respond to ericdunkerr@gmail.com) | POSITION ANNOUNCEMENT | Job Fraud; Bank Fraud; Overpayment Scam |
| 12/22/2023 - HR SPOOF | HR Manager <hr.minilonarkar2027@google.teams.att.com> |
Working Days and Holidays - TXDOC:C | Credential Theft; Escalation Attack; Viral Infection |
| 12/20/2023 - ATTEMPTED DENIAL OF SERVICE ATTACK | various prefixes from @att.net | combinations of the letters using VHG (eg. vghvhg; 11111vhg, etc) |
Denial of service junk wave. |
| 12/20/2023 - MS SPOOF ACCOUNT PASSWORD UPDATE HOAX | From a compromised ETSU Alumni account - xxxxxxx@mail.etsu.edu | IMPORTANT NOTICE | Credential Theft; Escalation Attack; PII Theft |
| 12/19/2023 - HR BENEFITS HOAX | Human Resource(s) - sandra@sandtexusa.com | Open Enrollment for 2024 for all Etsu Employee12/19/2023 | Credential Phish; Brank Fraud; Escalation Attack |
| 12/18/2023 - HR BENEFITS HOAX | Human Resources - sakamoto@morimitsu.co.jp | Etsu Updated Benefit Report For all Employers/Employees | Credential Phish; Brank Fraud; Escalation Attack |
| 12/18/2023 - ADMIN ASSESSMENT REPORT HOAX | Stephanie Chaple - stephanie.chaple@austinisd.org | STAFF REPORTS FORUM TO ALL ACTIVE DIRECTORIES | Credential Theft Scheme; Escalation Attack Plot |
| 12/17/2023 - NORTON SECURITY BILLING HOAX | Lawrence Rosen - davidewallimson10@gmail.com | Your order update HLOQVURZLKJ 2198655835486059 | Billing Fraud; Credit Card Fraud; Bank Fraud |
| 12/16/2023 - FREE BABY GRAND PIANO SCAM | Isai Martínez Grau - e34710703@miescuela.pr OR siegeld04@gmail.com |
Free Baby Grand | Shipping Fraud; Credit Card Fraud |
| 12/14/2023 - FRAUDULENT UNICEF JOB OFFER | Marcelo Fernando Ojeda Navarro - mfojedan@ine.gob.cl | DON’T MISS OUT ON FLEXIBLE OPPORTUNITY | Job Fraud; Bank Fraud |
| 12/13/2023 - SOCIAL SECURITY NUMBER THEFT | micheal.williams@harvinandmike.com | (your name) You can receive 3,900 Today |
Social Security Theft; Additional PII Theft |
CYBER-TIPS TO HELP PROTECT YOU, YOUR ACCOUNTS, AND YOUR MOBILE DEVICES
- if you need help with any items below, reach out to the ITS HelpDesk - https://www.etsu.edu/helpdesk/
- ask Campus Police questions in person or at https://www.etsu.edu/dps/askacop.php (info only! use 911 for emergencies!)
- install and familiarize yourself with the ETSU mobile app - Mobile Apps (etsu.edu)
- review the ETSU Safe features in the ETSU mobile app
- text ETSU to 237233 to be sure to receive ETSU emergency text alerts
- store or frequently back up your data to your 1 TB ETSU OneDrive for Business account
- computers which contain protected health information (PHI) or provide access to PHI should never be left unattended
- if you share class project files with OneDrive, share only the files you intend to share and only share to ETSU email addresses
- avoid spam and avoid some phishing attacks by using your ETSU email account for ETSU business only
- do not put your E number in emails unless for a specific ETSU business-related reason
- do not lend anyone your Student ID card
- when working in ETSU computer labs, save your work and log off before leaving
- when leaving class, lab, cafeteria, or library, check that you have all your gadgets (phone, laptop, drives?)
- do not reply to suspicious emails; use the Phishing Alert Report button
- do not re-use your ETSU account password to access other accounts
- avoid accessing sensitive information on public wifi (wifi with no password)
- never approve an MFA request unless you triggered the request yourself
- never share your passwords
- keep your laptop and mobile device applications updated
- never re-use your old passwords
- use screen locks (passcodes) on your laptop and mobile phone
- never leave your laptop and mobile phone unattended
- if you are traveling, lock your laptop in your car trunk
- be aware of your surroundings
- do not trust links from strangers in chat or social media messages
- install cloud-based device locator applications on your laptop and mobile phone
- test "Find My Apple" or Google "Find My Device" to make sure your device locator works
- lock your car doors and dorm room doors and windows
- when spam gets through to your inbox, use the Junk option in Outlook
- do not install extra antivirus software on PC's with Windows Defender
- if you find a drive, do not plug it into your computer to identify it; give it to ETSU Public Safety or the HelpDesk
- determine what coverage is provided for your devices by your home or renter insurance policy
- record serial, model number, mac address, and keep photos of your electronic devices
- recovery rates for stolen laptops are less than 2% nationally (per FBI); work to prevent theft
- if your laptop or mobile device is stolen
- report the theft to ETSU Public Safety and ask for the report number
- get online ASAP and change your passwords
- report the theft to your insurance company