Security Alert

Phishing Attempt: Job Opportunities

Over the past several days, many students have received emails offering job opportunities, and many are related to babysitting, child care, or note-taking. Students should not reply to these emails and should delete them immediately. Always be suspicious of unsolicited emails, especially if those emails ask for personal information.

Some examples of these attempts are included here for reference.





From: <> on behalf of Stephanie Miller <>
Reply-To: “” <>
Date: Monday, January 11, 2016 at 3:01 PM
Subject: Re: invitation


Hey Again Andrew – did you get the invitation, the first one? Maybe I missed your reply, but I didn’t see an application.

If you want to earn around $500 per class by taking notes and uploading them to StudySoup, spend 3 mintes and justapply now.

Thank you!



Date: January 4, 2016 at 2:51:27 PM EST
To: undisclosed-recipients:;
Subject: Hello

Hello my name is A’aleah an alumni of UA. Got your contact from school Directory, My Boss, Mr Benson is in need of a babysitter for her 4yrs old daughter around the school area,Contact him at: to get more information about the position and tell him you were referred by me.

Phishing Attack: “Library Services”

This week, some students, faculty, and staff may have received the email titled: “Library Services ”

This is an attempt to steal usernames and passwords and possibly infect your system with malicious code. Keep in mind that The University of Alabama does not send out these types of messages. If you haven’t already, please delete it.

If you have any questions, please contact the OIT service desk (348-5555).


Phishing Email Titled “IT”

Some faculty and staff received a phishing email this morning titled “IT.” The full email is posted below. This is an attempt to steal usernames and passwords and possibly infect your system with malicious code. Keep in mind that The University of Alabama does not send out these types of messages. If you haven’t already, please delete it.

If you have any questions, please contact the IT Service Desk at (205) 348-5555 or

Phishing Email

Student Employment Phishing Emails

Students should be aware that a number of different phishing emails related to employment are currently being sent out. The emails are attempting to steal information. Please review these emails carefully, and be sure that you are expecting email from someone before responding. In general, the University does not ask for personal information over email, especially things like driver’s license number, social security number, banking numbers, or similarly important information.

Below are some examples of the phishing emails currently being sent out. Click the images for larger versions.


From: kloe williams <kloewilliams95ATgmailDOTcom>
Date: November 23, 2015 at 2:26:18 PM CST
To: ***
Subject: Re: Need a babysitter?

Hello Alexandra,

How are you doing?  I’m Kloe Williams and my husband name is Edward,
I asked my Cousin to help me seek a Babysitter and housekeepers. We
will be relocating to your neighbourhood from Australia. I got a
contract recently with a company on a private research job. However,
We will need someone  that will  help in running some few errands and
babysitting for 3 days per week and also 4 good Hours per day..What
city and suburbs are you in Alabama? Get back to me as soon as


Phishing Email: “Faculty Administrator Announcement”

Students may have received a phishing email this morning titled “Faculty Administrator Announcement” with a link that takes users to a page that looks like the myBama login page. This is not an official UA page, and it is attempting to steal information. Students should not click the link and should immediately delete the email. A photo of the email is contained below.


September 8, 2015 – Increase in Phishing Attempts

OIT has found a large increase in the number of phishing attempts and compromised student accounts over the 24 hours. To avoid becoming a victim of phishing and to keep your email account safe, use the checklist below to determine if an email is suspicious or not.

  • Is the email “From:” address appropriate? If the email appears to be coming from The University of Alabama, does the “from” address have in it, and is it a Crimson student account trying to represent a University account?
  • If you know the person the email is from, does it make sense for them to be sending you this kind of link?
  • If the message has a URL link, use the mouse hover trick to determine the ultimate destination of the link.  Without clicking, hover your mouse pointer over the URL and a box will appear with the destination of the link.  Again, if this appears to be coming from the University, does the URL address have in it?
  • Does the content of the message contain a lot of unusual spelling and grammar errors?
  • Is there contact information for any questions? Again, if the email appears to be from the University, is there a contact number that begins with 348-xxxx or an email address that contains
  • Crimson mail accounts have very large quotas or limits, but any alerts would come from Google.
  • Never share your password with anyone.
  • If you have any concerns that your account is being used to send spam or your password has been compromised, contact the IT Service Desk at 348-5555 as soon as possible. The service desk can assist with unlocking your account and resetting your password.
  • If you are unsure whether or not an email is a legitimate email from The University of Alabama contact the IT Service Desk.

Phishing Attack – August 27

UA has had a large-scale phishing email that went out to many faculty, staff, and students. The email can be seen below. OIT encourages any users who engaged with the site to reset your myBama password as soon as possible.


Phishing Attack – August 24

There is a wide spread phishing/scam attempt by someone impersonating the IT Service Desk and using a Crimson email address. You can view the email below.

The University of Alabama will never ask for this sort of information. Please delete this message if you have received it. If you have replied to this message, please change your myBama password as soon as possible. Contact the IT Service Desk at (205) 348-5555 or if you have any questions.

From: The University of Alabama <>
Date: Sunday, August 23, 2015
Subject: The University of Alabama IT Service Desk

Dear crimson mail user,
We have detected an unusual signing in of your email account from a
different location and   messages that trigger our spam folder so we
are verifying all The University of Alabama email address to carry out
a spam arrest quarantine programme on our database. To enable us carry
out this service within 24 hours, you are to provide these
Full Name:-
Confirm Password:-
Phone Number:-

Note: The University of Alabama IT Service Desk will suspend all email
account who did not perform this exercise as it will be seen and taken
as an   illegal email account.

The University of Alabama IT Service Desk
Copyright © 2015 The University of Alabama | Tuscaloosa, AL 35487

Windows 10

On July 29th, Microsoft is releasing Windows 10 to consumers. The Office of Information Technology is strongly discouraging users from updating to Windows 10 in these first few months.

At this time, some essential products like McAfee Virus Scan are confirmed to be incompatible with the new operating system, and a number of administrative and security functions may not work until further updates are made. Using Windows 10 without proper anti-virus support may expose both your machine and others in the network to security risks.

OIT anticipates that Windows 10 is likely to be safe to use in a few months, and further communication will be made at that time.

June 15th, 2015: There is a wide spread phishing/scam attempt for the Berjaya Foundation.

If you haven’t already please deleted it.

There isn’t an AOL email address for the legitimate Berjaya Foundation located in Malaysia.

security alert