Phishing Alert: Salary Notice Claims to be from the Chancellor | Information Technology | University of Pittsburgh

Phishing Alert: Salary Notice Claims to be from the Chancellor

Friday, February 17, 2017 - 09:04


Computing Services and Systems Development (CSSD) is responding to a new email phishing scam that claims to be from the Chancellor. The fraudulent email claims to contain information about a salary increase and bonus payment. It includes an attached HTML document that contains a Web form that attempts to gather the reader's username and password.

The following is a sample of the recent fraudulent email. If you receive this message (or any message similar to it), please report it as a phishing scam by forwarding the email message as an attachment to Detailed instructions on reporting scams are available at


Subject: Important Notice

Dear Faculty/Staff,

This is to officially announce to you that the payment schedule for the recently 2 per cent salary increase interest Award has now been confirmed. All eligible active faculty/staff members will receive a bonus payment and increase adjustment to leave payment. Those considered for this award and nominee must be a  classified staff member with a minimum of two years of service. In order to complete the volume of adjustments, we have pulled resources from other areas to assist. Attached is the description of how staff member has demonstrated excellence in support of the school, list of all the names of nominees, entitled to this award, position title, department, Years of Service to Pittsburgh  University and PUP Number. Please download and login to your mymail account to view. Thanks

Yours Sincerely,

Patrick Gallagher

Office of the president

University of Pittsburgh



The attachment in the email contains a Web form (shown below) that attempts to collect the reader's username and password:

Phishing scam login page

CSSD strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. Avoid clicking on links contained in such emails, as these may lead to sites that contain harmful software. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, CSSD recommends that all users install Symantec Endpoint Protection software and use the LiveUpdate feature to get the latest virus definitions. As a complement to Symantec Endpoint Protection, CSSD offers Malwarebytes Premium for individuals and departments at no cost. Students, faculty, and staff can download Malwarebytes and Symantec Endpoint Protection at no cost through the Software Download Service at My Pitt. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Please contact the Technology Help Desk at 412-624-HELP [4357] if you have any questions regarding this announcement.