Phishing Alert: Outstanding Account Balance Scam Includes Harmful Attachment | Information Technology | University of Pittsburgh

You are here

Phishing Alert: Outstanding Account Balance Scam Includes Harmful Attachment

Thursday, January 20, 2022 - 16:16


Pitt Information Technology has identified an email phishing scam targeting students, faculty, and staff. The scam implies that a payment is in progress from the recipient’s bank account. It includes a link to a harmful attachment named “remittance,” “account payable,” or something similar. If opened, the attachment attempts to install malware or otherwise compromise the recipient’s device. The scam originates from an external email address (that is, an address other than an address) and is often routed to a recipient’s quarantine or junk folder.

The following is a sample of a recent fraudulent email. If you receive this message (or any message similar to it), please report it as a phishing scam by forwarding the email message as an attachment to Detailed instructions on reporting scams are available at


From: <External email address>

Subject: Purchase Ledger Remittance: SUP26498

Attachments: SUP26498 Remittance.html

Your payment has now been made, and attached is the payment details with a full payment summary.

Please allow 3 working days from the payment date stated on the remittance advice for the funds to clear your account.  If you have any questions regarding your payment, please direct all enquiries to your local payments team whose contact details are stated on the attached payment advice.

Thank you, your business is important to us!


Pitt IT strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. If you were not expecting to receive such an email, confirm with the sender prior to interacting with the message. If you must interact with the message, avoid clicking on links contained in such emails. These may lead to sites that contain malicious software, or sites that attempt to steal your credentials. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, Pitt IT recommends that all students, faculty, and staff install Antivirus and Anti-Malware (Malwarebytes) Protection. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Please contact the Technology Help Desk at 412-624-HELP (4357) if you have any questions regarding this announcement.