Phishing Alert: Office 365 Email Scam Attempts to Collect Pitt Credentials | Information Technology | University of Pittsburgh

You are here

Phishing Alert: Office 365 Email Scam Attempts to Collect Pitt Credentials

Friday, December 9, 2022 - 10:06

Pitt Information Technology is aware of a new phishing scam targeting the University of Pittsburgh community. The scam claims recipients have been detected logging in to Office 365 from two different universities. It asks recipients to provide their Pitt credentials to avoid deletion of their Pitt Email account. The Subject of the message is typically “Email Upgrade” or similar text.

Below is a sample of the scam. If you received this message (or any message similar to it), please report it as a phishing scam by forwarding the email message as an attachment to Detailed instructions on reporting scams are available at


Subject: Email Upgrade

Our records indicate that your office 365 has two different logins with two universities' portals. Kindly indicate the two info logins as soon as possible. To avoid termination within 24hrs, we expect you to strictly adhere and address it

We will process your request shortly; You will lose all your emails associated with this account

If you have only one college account, fill in the correct user and passcode and submit. But if you are in a dual credit college, Please fill the correct username and password for both school and submit

If you have no knowledge about the request process, kindly update to cancel the request below.

Copy and paste the URL Below into the address bar of your web browser to cancel the request (Link removed) Or HERE (Link removed)

Thank You

©Microsoft 2022


Clicking on the link in the email opens a malicious Google document like the excerpt shown below that encourages recipients to log in and provide their usernames and passwords for multiple accounts.

Pitt IT strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. If you were not expecting to receive such an email, confirm with the sender prior to interacting with the message. If you must interact with the message, avoid clicking on links contained in such emails. These may lead to sites that contain malicious software, or sites that attempt to steal your credentials. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, Pitt IT recommends that all students, faculty, and staff install Antivirus and Anti-Malware (Malwarebytes) Protection. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Please contact the Technology Help Desk at 412-624-HELP (4357) if you have any questions regarding this announcement.