Skip to main content
Visit Remote Work Tools & Guidelines and Student Remote IT Support for details on working remotely under the University's Coronavirus (COVID-19) recommendations
Penn Information Systems & Computing Systems Home

Search form

  • Find my LSP
  • Penn
System Status
  • Get Started
    • IT Staff
    • Faculty
    • Staff
    • Students
    • Alumni & Guests
    • ISC Staff
  • Services
    • — Services A to Z —
    • Accounts, Access & Security
      • Access Management Services
      • Active Directory
      • Identity Management Services
      • Information Security Services
    • Applications & Data Analytics
      • Application Development & Delivery
      • Data Analytics
        • Data Analytics at Penn
      • Integration Development & Delivery
    • Backup, Storage & Platforms
      • BackItUp
      • Backup for Desktop & Laptop
      • Cloud Solutions
      • Data Center Services
      • Database & Middleware Services
      • Endpoint Management
      • Recovery Services
      • Storage
      • Virtual Desktop
      • Virtual Server Hosting
    • Community, Support & Learning
      • Classroom Technology Services
      • Desktop Engineering
      • IT Community Events
      • Knowledge Link
      • LinkedIn Learning
      • Provider Support Services
      • Tech Center
    • Consulting & Professional Services
      • Brokered Products
      • HireIT
      • Systems Support & Consulting
      • Technology Forecasting
    • Email, Calendaring & Collaboration
      • Classlists
      • Penn Email Routing
      • Penn+Box
      • PennNet Mailing Lists
      • PennO365
      • PennZoom
      • SMTP-Relay
      • Secure Share
    • Networks & Connectivity
      • Firewall Services
      • Network Design & Installation
      • Network Names & Numbers
      • PennNet
        • MAGPI (Penn's Internet2 Regional Optical Network)
      • PennNet Ethernet Ports
      • Wireless at Penn
    • Phone, TV & Video
      • Broadcasting Studio
      • Contact Center
      • Live Video Streaming
      • Penn Video Network
      • PennFlex Phone
      • PennNet Phone
      • Traditional Telephony
      • Video Content Management
      • Video Production
        • Producing Video Content
    • Web Hosting
      • Web Services
    • — Service Rates —
    • — Service Level Agreements —
  • Security
    • Office of Information Security
    • Security Services
    • Special Projects
    • Policies & Procedures
    • Training & Awareness
  • Collaborations
    • Engaging Penn’s IT Community
    • Identity & Access Management
    • Cloud First
    • Next Generation Unified Communications
    • IT Advisory Groups
      • Common Solutions
      • IT Roundtable
      • Network Policy Committee
      • Penn Technology Investment Committee
        • About PTIC
    • Special Interest Groups (SIGs)
      • Audio-Visual (AV-SIG)
      • Cloud Computing (Cloud-SIG)
      • Data Visualization (DataViz-SIG)
      • Developer SIG (Dev-SIG)
      • High-Performance Computing (HPC-SIG)
      • Instructional Technology SIG
      • Linux SIG
      • Macintosh Networking Group (MacNet)
      • Mobile Technologies (Mobile-SIG)
      • O365 Special Interest Group
      • PC Networking Group (PC-Net)
      • Project Partners SIG
      • Security SIG
      • Social Media SIG
      • Splunk Special Interest Group
      • Super User Group (SUG)
      • Web SIG
    • Technology Services Strategy Review Board
  • News
  • Events
  • About
    • Overview
    • Leadership & Groups
    • Purpose & Values
    • Strategic Goals
    • Recognition
    • Tech Jobs @ Penn
    • Contact Us
  • Hot Topics
  • Get Help
    • Support Center
    • Contact ISC Client Care
    • Rates for All Services

You are here

Home » Protect Yourself Against COVID-19 Scams

Protect Yourself Against COVID-19 Scams

As the COVID-19 virus dominates the news, the Penn Office of Information Security (OIS) and other information security affiliates have identified a disturbing new trend: COVID-19 phishing scams. Cyber scammers are taking advantage of your desire to learn more about the coronavirus to lure you into opening malicious email attachments or clicking on fake website links, all in an effort to steal your identity and harvest your credentials.

These scams include, but are not limited to:

COVID-19 Scams
  • Fake websites with web-addresses (URL) like “coron-virus-map [dot]com” or “corona-virus-map[dot]com” that are designed to steal sensitive data.
  • Emails with links to fake web-login screens designed to steal employee credentials, such as your PennKey and password or other login information.
  • Email messages with malicious links claiming to provide information on how to protect yourself and your family from the coronavirus. When you click the links, malware or ransomware is download to your computing device and used for financial gain.
  • Malicious phone apps with names like “coronavirusapp[dot]site” designed to load ransomware on phones.
  • Text or email messages with malicious links prompting the recipient to click on a link claiming to direct individuals to get the amount of money issued by the federal government stimulus relief package. According to the Federal Trade Commission (FTC) the government will not ask you for your social security number, bank account number or other financial information, nor to pay anything upfront to receive the money. 
What to do?

The IT professionals at ISC are working diligently to block identified malicious web addresses and email messages at the Penn network border. However, with many Penn affiliates now working, teaching and learning remotely, you should take the following steps to help keep your computing devices, Penn-sensitive data you have access to, and your personal information safe:

  1. Download and run Symantec anti-virus on your home and work computing devices — it is available for free to Penn community members.
  2. Verify Penn-related emails urging you to click on links or attachments by contacting your School or Center IT support staff. Report suspicious emails, text messages or chat announcements to your IT support staff or to phishing@upenn.edu.
  3. Back up your data frequently to avoid work interruption and denial of access.
  4. Enable and use two-factor authentication whenever possible, including on your personal email account and on websites you visit.
  5. Seek information from credible resources, e.g., “My HR” / Penn Human Resources, the CDC, and official state and federal websites.
  6. Avoid sharing personal and sensitive information including financial information in an email or text, or on a phone call.  Delete any message soliciting such information, and end the phone call without providing any sensitive information.  
Additional Resources
  • FTC Coronavirus Scams 
  • FTC Checks from the government scam
  • CNBC Coronavirus scams, feeding off investor fears, mimic fraud from the 2008 financial crisis
  • Homeland Security Cyber Infrastructure (CISA) Defending Against COVID-19 Cyber Scams

Share:

  • Facebook
  • Twitter
Print
InfoSec Home
Resources
  • InfoSec Training & Awareness
  • FTC Scam Alerts
  • Homeland Security CISA Cyber Security Alerts
  • ISC News
  • Penn News
Contact InfoSec
  • Computing Policies
  • Tech Jobs @ Penn
System Status

© 2021 THE UNIVERSITY OF PENNSYLVANIA — 3401 Walnut Street, Philadelphia, PA 19104 — Report accessibility issues and get help — For ISC Staff