The Federal Bureau of Investigation recently announced a scam in which university employees across the nation are receiving fraudulent emails indicating a change in their human resource status. The email contains a link directing the employee to log in to his or her human resources website to identify this change. The website provided appears very similar to the legitimate site in an effort to steal the employee’s credentials. Once the employee enters his or her login information, the scammer takes that information and signs into the employee’s official human resources account to change the employee’s direct deposit information. This redirects the employee’s paycheck to the bank account of another individual involved in the scam.
Please be aware of these tips provided by the FBI for protecting yourself against this scam:
• Look for poor use of the English language in emails such as incorrect grammar, capitalization, and tenses. Many of the scammers who send these messages are not native English speakers.
• Roll your cursor over the links received via e-mail and look for inconsistencies. If it is not the website to which the email claims to be directing you, then the link is to a fraudulent site.
• Never provide credentials of any sort via email. This includes after clicking on links sent via email. Always go to an official website rather than from a link sent to you via e- mail.
• Contact Employment Services and Operations if you receive suspicious email.
For more information about this and other potential cyber threats, visit the FBI’s Internet Crime Complaint Center.