Various York email users have received a spoofed phishing message with the subject of the email 'BUSY'. Spoofing is the act of disguising a communication from an unknown source as being from a known, trusted source. In the email, the sender is disguising themselves as a member of the York University community and want the user to […]
Members of the YorkU community received a fake email with the subject line: ‘[Specific date & time] Inbox Full Notification on yorku.ca Mail service’. This is a known tactic of malicious actors to incite a sense of worry in a user and get them to click on a malicious link. The email can safely be […]
A large number of phishing messages were sent to York email accounts, part of a known scam advertising a fake “job opportunity”. The messages are fraudulent and intended to trick recipients into providing personal information, including personal (non-York) email address, and cellphone number. At that point additional correspondence to gather more personal information would follow, […]
A phishing campaign is being launched against York University which aims to target the emotions of users receiving the item. The item states that the users account has been compromised and that the user should pay $950 USD in bitcoin to the attacker to stop them from sharing files, personal information etc. This is a classic […]
A fake email from Microsoft was sent to various members of the community. The email can safely be deleted. If you've responded to the phish email, please change your password immediately and contact email@example.com
Many York email users have received a targeted phishing message directing you to a login page that is a close forgery of the Passport York login site. The message is fraudulent and should be deleted. The subject of the email is "New payroll message". If you provided your credentials, please consider them as compromised and you should […]
Following up on the Advisory Security Notice on Fraud Targeting Covid-19 Researchers, the Canadian Centre for Cyber Security (CCCS) are reminding COVID-19 researchers to remain vigilant and to stay alert to potential threats affecting their research. The CCCS has provided additional Cyber security guidance. Cyber Security Advice and Guidance for Research and Development Organizations During […]
Zoom has released version 5.1.3 to address a critical vulnerability. If you have the Zoom client installed on a windows 7 system, please update as soon as possible. Click here to manually download the latest client version.
This is another phish email that redirects users to a GOOGLEAPI site to steal your PY credentials. Please delete the email if you see it in your inbox.
Users should be prompted for this mandatory update upon logging into the Zoom desktop application. However, we encourage you to manually check that you have the most current version of the Zoom application installed. To ensure your application is up to date, please follow these steps - […]