A known scam advertising a fake “job opportunity” was sent to York email accounts today. The messages are fraudulent and intended to trick recipients into providing personal information, including personal (non-York) email address, and cellphone number. If you replied to the malicious email, please ignore any future communication related to this phishing email. If you provided your username and password, please […]
Advisories & Alerts
Phish Alert - WARNING
A phish email with the subject line "Warning" was sent to various York mailboxes. The link in the email re-directed users to an external site that is malicious. If you clicked on the link and provided your credentials, please change your password immediately and contact askit@yorku.ca
Phish Alert - YOU BETTER READ THIS!
A phishing campaign is being launched against York University which aims to target the emotions of users receiving the item. The item states that the users account has been compromised and that the user should pay $950 USD in bitcoin to the attacker to stop them from sharing files, personal information etc. This is a classic […]
Phish Alert - Your Microsoft email account will expire on November 18, 2020
A fake email from Microsoft was sent to various members of the community. The email can safely be deleted. If you've responded to the phish email, please change your password immediately and contact askit@yorku.ca
Phish Alert - New payroll message
Many York email users have received a targeted phishing message directing you to a login page that is a close forgery of the Passport York login site. The message is fraudulent and should be deleted. The subject of the email is "New payroll message". If you provided your credentials, please consider them as compromised and you should […]
Cyber Security Advice for Researchers During Covid-19
Following up on the Advisory Security Notice on Fraud Targeting Covid-19 Researchers, the Canadian Centre for Cyber Security (CCCS) are reminding COVID-19 researchers to remain vigilant and to stay alert to potential threats affecting their research. The CCCS has provided additional Cyber security guidance. Cyber Security Advice and Guidance for Research and Development Organizations During […]
Phish Alert - Your email password has expired
Members of the YorkU community received a phish email with the subject line: "Your email password has expired." If you see it in your inbox, please delete.
Advisory Alert - Zoom version 5.1.3 released to address zero-day vulnerability
Zoom has released version 5.1.3 to address a critical vulnerability. If you have the Zoom client installed on a windows 7 system, please update as soon as possible. Click here to manually download the latest client version.
Phish Alert - Copy of June Bonus 22JUN2020.xlsx
The York community reported a phish scam with the subject line "Copy of June Bonus 22JUN2020.xlsx". Clicking on the green Open bar redirects users to an external site designed to steal your PY credentials. If you see it in your inbox, please delete.
Phish Alert - Mailbox Shutdown Process
This is another phish email that redirects users to a GOOGLEAPI site to steal your PY credentials. Please delete the email if you see it in your inbox.