IT Security Advisory - Coronavirus (COVID-19) Phishing Scams

April 22, 2020

As expected, malicious actors have continued to step up their phishing attempts related to
COVID-19. We would like to help you identify and flag these types of malicious phishing attempts.

Recent COVID-19 Phishing Attempts:

  • A cell phone scam in which the caller claims to be from the Centers for Disease Control (CDC) and urges the victim to reserve a Coronavirus vaccine with a credit card or social security number.
  • Malicious websites claiming “Corona Safety Masks” or “infected persons” have been found near you. They will try to get you to provide sensitive and personal information to them.
  • Text (SMS) scams, or “SMISHing,” that link to malicious websites; including one that claims Netflix is giving away free passes during isolation at home with a link that will take unsuspecting users to malicious web sites.

What to look for?
Protect yourself from phishing attacks, look out for emails, phone calls, and text messages that have these characteristics:

  • Authority: Scammers pretending to be someone official (e.g. your bank, doctor) to trick you into doing what they want
  • Urgency: You have a limited time to respond to the email or face consequences
  • Emotion: Appeals to fears, panic, and curiosity
  • Scarcity: Offering up something in short supply, leaving users fearful of missing a good deal

Where can I find legitimate information about the Coronavirus?
Campus officials are monitoring the situation closely. For up-to-date announcements, visit: coronavirus.fullerton.edu.

For more information on cybersecurity best practices, please visit the Information Security webpage.

Questions?
If you have any questions, please contact the IT Help Desk at helpdesk@fullerton.edu, 657-278-7777.