Security Incident
Report Problem
VPN
Login to vpn@ucsf
Help
Login to help@ucsfHoaxes
What is a hoax?
An email hoax is an email sent intentionally to deceive the recipient and cause him/her to perform an act that, under other circumstances, would not perform. This is also referred to as "social engineering."
Recently, an email hoax began circulating that deceives the recipient into thinking that it is an email from Microsoft Security and that the attachment is a legitimate patch from Microsoft. Microsoft NEVER sends patches through email. The email encourages the reader to apply the patch, which is actually an email virus. Since the virus cannot work unless it is executed (run on the computer), the email encourages the reader to click on the 'patch' to apply it, when the real intention is to have the reader execute the virus (the virus begins running once you've clicked the attachment).
What You Can Do
If you receive an email claiming to be from Microsoft Security with a security patch, REMEMBER THAT IT IS A HOAX. Do not comply with the instructions in the email. Make sure that your anti-virus software is up-to-date and is actively running on your computer.
If you are uncertain what to do, contact your Computer Support Coordinator (CSC) and ask them to assist. If you don't have a CSC, contact EIS via email (security@ucsf.edu) or call OAAIS Customer Support at 415 514 4100 option 2.
Needs to be cleaned up a bit.