The College of New Jersey Logo

Apply     Visit     Give     |     Alumni     Parents     Offices     TCNJ Today     Three Bar Menu

Author Archives: minsterg

[PHISH] Salary Increment Letter – Effective June

We have received reports of a QR code phishing scheme claiming to contain details of a pay increase.  Screenshots are below.

The email utilizes an attachment that contains a QR code and prompts the user to scan it to view details.  The link takes the user to a false Microsoft login page which prompts for the user password.  The link contains the encoded version of the user email so the form is pre-populated with that information, attempting to give more legitimacy to the login page.  You can also see the email address of the sender is not a TCNJ address.  Please remain vigilant when reviewing emails and report any suspicious emails to phish@tcnj.edu.  Thank you.

[PHISH] Chris Hann shared “HannWriting Inc.2025-03-18 14.07.29.pdf” with you

We are receiving reports of a phishing email utilizing Dropbox as a conduit to attempt to get users to download a malicious PDF.  See example email below.  Attackers often will use 3rd party services such as Dropbox to host malicious files and bypass spam filters.  Be cautious of any file sharing links that you are… Continue Reading

[PHISH] Q1 Employee Handbook|Policy Reviews-88638-ZHDN-NHHD-UPQN

We have received reports about an attacker impersonating our HR department.  See example email below.  Note that the sender email address is not a tcnj.edu address.  Hovering over the link also shows an unusual URL destination.  The email also uses a TCNJ logo and enticing wording to attempt to lure people into clicking the link. … Continue Reading

[PHISH] You sent a payment (from PayPal)

We are receiving reports of a PayPal scam being sent to TCNJ users.  The attacks leverage compromised PayPal accounts to send false money transfers and requests and include a false phone number to contact regarding the transfer.  Note that the phone number substitutes digits for letters to attempt to evade filtering.  Do not call this… Continue Reading

Top