Phishing Scam - Fake Email Spoofing the UMBC Registrar

Plesae Be Alert! This Is Not From The Registrar!


UMBC’s Division of Information Technology (DoIT) has received reports of a fairly sophisticated phishing attack appearing to come from the Registrar’s office.



Mail Headers:


From: UMBCHelp@rt.umbc.edu

To: ********@umbc.edu

Subject: Your email to the UMBC Registrar's Office

Date: Mon, 10 May 2021 09:07:02 -0400

Message:



UMBCHelp

- to admin

Monday, May 10, 2021, 9:07 AM

Thank you for contacting the UMBC Registrar's Office. Your message is

important to us.


In an effort to better serve you, we ask that all campus inquiries to the

Registrar's Office be submitted through UMBC's Request Tracker (RT) Trouble

Ticket System.


Students and Staff:

Please submit your inquiry utilizing the following link:

http://registrar.umbc.edu/RT/Records/ (authentication required)


Parents and other non-UMBC affiliates:

Please submit your inquiry utilizing the following link:

http://registrar.umbc.edu/rt/parents-and-non-affiliates/ (no authentication required)


Please do not reply to this message. Replies to this message are routed to an

unmonitored mailbox. If you have questions, please contact us using the information

below.


Thank you,


UMBC Registrar's Office

http://registrar.umbc.edu

410-455-2500


X-Spam-Status: No, score-8.488 tagged_above-9999 required6.2 tests[AM.WBL-5, BAYES_00-1.9, HTML_MESSAGE0.001, MIME_HTML_ONLY0.1, RCVD_IN_DNSWL_MED-2.3, SPF_HELO_NONE0.001, SPF_PASS-0.001, URIBL_BLOCKED0.001, URIBL_PH_SURBL0.61] autolearnham autolearn_forceno X-RT-Original-Encoding: iso-8859-1

    Message is from  umbc.edu trusted source




____________________________________________________________________

This e-mail notification was sent to records@umbc.edu





Clicking either of the buttons above will send you to a phishing site which will redirect you to yet another site which will try to collect personal information, download malicious software, or both.



What to do now?


If you do receive this or a similar phishing attempt, please DO NOT respond any further or click on any buttons or URLs. If you have already done so and provided any banking or financial information, please notify your bank or financial institution immediately. 


Whether you responded to the message or not, please forward it (with the email headers) to security@umbc.edu


How do I forward full email headers?

https://wiki.umbc.edu/pages/viewpage.action?pageId=1867970  


To read more articles published by DoIT Security please visit: 

https://itsecurity.umbc.edu/critical/?tag=notice

https://itsecurity.umbc.edu/home/covid-19-news/?tag=covid19 




Tags:

Posted: May 10, 2021, 10:03 PM