Skip to main content

Security Alert: Email impersonation scams

Date:
2019-12-06 21:00:00
Status:
Closed
Brief Description:
Phishing messages that impersonate the display names and email addresses of Cornell community members have been reported.
Current Status:
Users should always verify the sender of an email, particularly before completing any financial transactions.
Services Affected:
Not Applicable
Full Description:
Phishing messages that impersonate the display names and email addresses of Cornell community members have been reported. Verify the sender of an email before completing any financial transactions.

Scammers have been using third party email providers, like Gmail.com, to send highly targeted phishing messages. These message impersonate Cornell community members and attempt to trick the recipient into purchasing gift cards. After a gift card is purchased, the scammer will request the recipient email them a picture of the gift card's redemption code.

If you, or one of your colleagues, work with anyone to authorize the release of funds or approve purchases, make sure the request has come from a real Cornell email address. Alternatively, verify all purchase requests via another communication channel other than email.

If you have been a victim to such a scam, please report the incident to the Cornell University Police Department (607-255-1111) and to the IT Security Office (security-services@cornell.edu).

Sample scammer sending address:
[netID].cornell.edu@gmail.com

Sample phishing messages:
https://it.cornell.edu/phish/7366
https://it.cornell.edu/phish/7400