On January 4th, 2021, another round of job scam emails were sent out from a compromised community member email address. These are the same job scams that the Information Security Team has been alerting the community to for many months.
The malicious email encourages recipients to apply for a non-existent personal assistant position, by instructing those interested to email a non-DePaul email account.
Once the victim emails the malicious actor the scammer will often attempt to request further personal information. Ultimately, the malicious actor will attempt to defraud the victim by sending the victim a fraudulent check or via a cash transferring app such as Zelle or Cash App.
It is always important to remain vigilant when handling email, even when it appears to come from a DePaul email address or other official looking email address. Email addresses and login portals can be spoofed and imitated. Compromised email accounts (e.g. if a fellow DePaul community member fell victim to phishing) are often used to target the community. Keeping your DePaul account secure helps keep the entire community secure.
Some indicators that these emails are malicious:
-Numerous grammatical errors
-Promises of easy money
-Leading communications off of DePaul's platform (i.e. emailing a non-DePaul email address, asking to respond from personal email, or text conversations)