On October 7, 2020, a new fraudulent phishing message with the subject “Human Resources” began targeting UMass Amherst email users.
The email may claim to have been sent by either "Norman, Jason R." or "Sonja Streeter," notifies the recipient “I have been so busy compiling the required names for 9 departments. Please do well to assist me by marking the names of employee in your department for easier filtering”. The links in the message direct the recipient to a fraudulent version of a UMass login page.
Another variation of this message asks the recipient to “Please take a few minutes to update your information in the Employee Directory." The links in the message direct the recipient to a the same fraudulent version of a UMass login page.
Caution: This email did not come from the University of Massachusetts. It is a phishing scam designed to trick you into providing your NetID password to get access to your personal information and/or UMass information technology resources for fraudulent purposes.
Do not respond to the fraudulent message or click the link! Responding or clicking the link in the message may put your information and the university's information and systems at risk.
If you have already responded to the message, change your IT Account password in SPIRE immediately, then please notify us at firstname.lastname@example.org.
For more information about this phishing scam or to learn more about what you can do to protect yourself, see the News section of the UMass Amherst IT website. Please report suspicious messages to email@example.com.
When receiving suspicious messages or messages from unknown senders, we recommend that you:
- Verify the identity of anyone who requests your personal information. Never provide financial data or other personal information in response to an email or on an untrusted site or form.
- Report these messages to firstname.lastname@example.org.
Learn more about phishing attacks and how to avoid getting caught:
- Phishing: Fraudulent Emails, Text Messages & Phone Calls
- Protect Yourself Against Phishing & Identity Theft
- See the Latest Phishing Scams on Campus
Note: A variation of this message has also been reported which appears to have been sent by "Sonja Streeter."
Phishing message (second variation):
Fraudulent landing page: