Advisories & Alerts

It has come to our attention that emails with subject lines "Work from Campus/Dorm/Home (Winter 2024 Semester)" AND "Administrative Assistant / Customer Service(Winter 2024 Semester)", seemingly originating from uchicago[.]edu email addresses, are circulating. Please be advised that these emails are not legitimate and are a scam.   The Information Security team has taken action to […]

Several waves of phishing emails promoting FAKE jobs leveraging compromised York University users' accounts have been detected. These emails claim to offer recipients a well-paying remote job with no qualifications and link to a Google form that requests personal information. The "job" in question will instruct victims to deposit FAKE cheques through personal bank accounts […]

Scammers are using compromised accounts to send phishing emails to the community to verify their account. Email subject: NOTICE BY ADMIN VERIFY YOUR ACCOUNT!!       Please note that York will NEVER request for passwords, Duo passcodes or other personal information via email or Google Form. The Information Security team has taken action to […]

A confirmed phishing email with the subject line "Please Verify Your Yorku Account" was sent to a number of mailboxes. Clicking on the provided link will redirect users to an external site hosted on google forms. If you clicked on the link and provided your credentials, please consider your account as compromised. Change your password […]

Phishing emails containing a QR code with subject line "Salary Increase, Dividend, Compensation Raise, Insurance Plans and Benefit Package Update" were reported.  Illustration 1   Illustration 2   The emails are fraudulent and do NOT scan the image. If you scanned the QR code and provided your credentials, this may have allowed hackers to access […]

Scammers continue to use compromised YorkU accounts to send job scams to the community. Phone number +1 (215) 828-9264 is the scammer's number Please note that York will NEVER request for passwords, Duo passcodes or other personal information via email or Google Form.  If you texted the requested information to +1 (215) 828-9264, do NOT […]

Scammers are using compromised accounts to send emails with fake job posting looking for Personal Assistant. Please note that York will NEVER request for passwords, Duo passcodes or other personal information via email or Google Form.  If you texted the requested information to +1 (215) 828-9264, do NOT accept the DUO PUSH, change your PY […]

Several waves of phishing emails promoting "money mule" scams leveraging compromised York University users' accounts have been detected. These emails claim to offer recipients a well-paying remote job with no requirements and link to a Google form that requests personal information. The "job" in question is a money mule scheme whereby victims are told to […]

A confirmed phish email with the subject line "York University: Duo Security Appointment Form" was reported. York will NEVER ask the user community to provide their password OR call you to verify your MFA. If you texted the requested information to +1 (215) 828-9264, do NOT accept the DUO PUSH, change your PY password immediately […]