Phishing Alerts: Two New Phishing Scams Attempt to Collect Pitt Credentials | Information Technology | University of Pittsburgh

You are here

Phishing Alerts: Two New Phishing Scams Attempt to Collect Pitt Credentials

Saturday, March 23, 2024 - 21:03


Pitt Information Technology is taking action to address two new phishing scams targeting the University community. Both scams attempt to convince recipients to visit a webpage and provide their University credentials.

The Subject line of the first scam email may be “ETIQUETTE” or “ENROLLMENT.” The email typically is delivered from a Gmail address. The body of the message is blank, but it includes an attachment. Opening the attachment takes recipients to a Google Docs webpage that attempts to collect their Pitt credentials.

The Subject line of the second scam email may be similar to “STUDENT SERVICES,” and the body text may be similar to the following example:


We are looking for a reliable part-time Assistant. This is a very simple employment, Part-time work-from-home position with highly flexible hours. . All the tasks are work from home or any location. You can be working from home, School, or any location. Only interested candidates will be able to work independently, prioritize tasks, and communicate effectively. Kindly text me after filling out the link [phone number redacted] . fill out the link.. ... [link redacted] and i will text you after i receive your information. and kindly submit your resumes to this email

[email address redacted]


Individuals who have responded to either scam and provided their credentials should immediately change their password by searching for “change my password” at My Pitt (

Guidance for spotting phishing scams is available on Pitt IT’s website. Keep in mind these key points:          

  • Only approve multifactor authentication (Duo) requests that you have initiated. Duo is designed to prevent unauthorized access to your information and University data, but it requires constant vigilance. Never tap “Approve” if you receive a Duo authentication request that you were not expecting. Uninitiated authentication requests may be an attacker attempting to compromise your Pitt account. The only safe Duo authentication request you will receive is one you request when logging in to University services.
  • Do not reply to unsolicited emails or emails from unverifiable sources. If you were not expecting to receive such an email, confirm with the sender prior to interacting with the message. If you must interact with the message, avoid clicking on links contained in such emails. These may lead to sites that contain malicious software, or sites that attempt to steal your credentials. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.
  • Be extra cautious if you automatically forward your University email. Automatically forwarding your University email to a non-University address (for example,,, or circumvents some of the security measures Pitt IT puts in place to protect you against phishing scams.
  • Report suspected phishing scams. To report a phishing scam, forward the phishing email as an attachment to 
  • Stay safe when scanning QR codes. Never scan a QR code from an unknown or untrustworthy source. When you do scan a QR code, be sure to use a scanner app that provides a preview of the destination so that you can review the URL and decide if it is safe. If you scan a QR code and the site is unrelated to what you scanned or requires a login, close out of your browser immediately.
  • Install an antivirus solution for personal devices. Staff and faculty should be using Microsoft Defender to protect University-owned devices. 

Please contact the Technology Help Desk at +1-412-624-HELP (4357) if you have any questions regarding this announcement.