Email phishing alert - Do not click 'NOTICE: Campus Email Policy Violated' email (3/31/23)

IT Security Alert.

Description of the phish / scam

A threat actor is pretending to be a UBIT campus mail administrator, claiming suspicious activity was detected on your email account, and trying to get you to click on non-UB links within the email.

How you can tell it is a scam

  • The email asks you to click links to a non-buffalo.edu URL
  • The email uses threatening language
  • UB will never ask you to click links to reinstate your email. All email account questions should be directed to the UBIT Help Center.

I think I have been scammed. What should I do?

Immediately change your password.

Sample of the message text

From: Ivan Parmuzin ivanparm@buffalo.edu

Sent: Friday, March 31, 2023 2:49 PM

Subject: NOTICE: Campus Email Policy Violated

Dear User,

This is to inform you that, as of March 31, 2023, your campus email account will be disabled.

This message is being sent to you because suspicious activity was detected in your email account. It appears that your account was accessed from an unknown location, device, or app, or it may have been linked to multiple other accounts or created by a program that violates Campus policies.

Before you can continue using your Campus Email account we must verify your identity. To do so, please navigate to the Campus Email System and proceed to the Email Deactivation page. This will allow us to confirm your identity and reinstate your account if appropriate.

If you have any additional questions or require assistance, please visit the Campus Support System FAQ. We apologize for any inconvenience this may cause and thank you for your understanding.

Best regards,

Ivan Parmuzin
2023 IT Support Services
Office of Information Systems & Technology

Still need help?

Contact the UBIT Help Center.