IT@UC Office of Information Security Alert Bulletin
**Email Phishing Alert**
A number of University of Cincinnati email users have recently reported receiving malicious emails, similar to the one below (see *Sample Phishing Email* below).
TAKE CAUTION! The sender is not a representative of UC. The link they provide in the email does not lead to UC’s network, even though it appears to be a valid hyperlink. Access to the malicious site from the UC’s network has been blocked, but be aware that access can still be made via other networks, including non-UC wireless networks.
What is Phishing?
Phishing is the act of attempting to acquire information such as usernames, passwords, credit card and/or banking details by masquerading as a trustworthy entity by electronic communication (typically email).
What if I Received a Suspicious Email?
UC’s spam filters appear to have caught the majority of the malicious messages. If you have received a suspicious email, do not click on any links, fill out any forms or reply! All you have to do is delete the email.
*Sample Phishing Email Reported*
From: Microsoft Volume Licensing Services [REMOVED]
Subject: Welcome to the Microsoft Volume Licensing Service Center (VLSC)53707338:1
Congratulations on your newly accepted Open License with Microsoft, ending in 80350. You have been assigned Administrator permissions on the Microsoft Volume Licensing Service Center (VLSC) site.
To begin registration, please download details from link below. When prompted, enter your business e-mail as shown below:
VLSC Registration details:
Required Business E-mail: [REMOVED]
Type of new Licensing ID: OPEN
Once VLSC registration is complete, you will be able to:
• Download licensed software
• Retrieve keys for Volume Licensing software
• View Microsoft licensing details for your organization
• Manage Software Assurance benefits
• Manage subscriptions, including MSDN and/or TechNet
• Assign others in your organization to do any of the above tasksâ€”or to also be an Administrator.
• Also, within selected regions, VLSC enables the direct purchase of media kits from the Software Download Catalog.
Once you are registered, you may add any individual to your VLSC account to help manage your licenses or perform other tasks at any time. To do so, please visit the [LINK REMOVED] link to view all details related to your VLSC permissions settings. Also visit [LINK REMOVED] in the Help section to learn more about what you can do in the Volume Licensing Service Center. Your new access permissions to VLSC may take up to 2 hours to become effective.
The Microsoft Volume Licensing Service Center Team
This e-mail may contain identifiable health information that is subject to protection under state and federal law. This information is intended to be for the use of the individual named above. If you are not the intended recipient, be aware that any disclosure, copying, distribution or use of the contents of this information is prohibited and may be punishable by law. If you have received this electronic transmission in error, please notify us immediately by electronic mail (reply).
Email correspondence to and from this sender is subject to the N.C. Public Records Law and may be disclosed to third parties.
What Can I Do to Help?
If you are aware of any users that received the message and clicked on the link, please instruct them to change their passwords as soon as possible via uc.edu/PSS or contact the UC Information Technologies Help Desk at 513-556-HELP (4357) for assistance.
Please distribute this Security Alert to anyone who you feel needs to be made aware.
Contact the UC Information Technologies Help Desk at 513-556-HELP (4357) or toll-free at 866-397-3382 or the UCIT Office of Information Security at 513-558-ISEC (4732) with any questions or concerns.
End IT@UC Office of Information Security Alert Bulletin