A round fishbowl with red goldfish
The UVM Phishbowl is designed to help members of UVM’s community identify phishing scams and report suspicious emails. A phishing scam is an attempt to steal your UVM credentials (your NetID and password) or other important personal information.

Below are emails that have been reported by the UVM community. A red X means it’s a scam, and the smiling green fish means it’s safe.

  • If you've received an email that seems suspicious and you don't find it here, please forward it with its headers intact to abuse@uvm.edu for review by the Information Security Office.
  • If you have spam (i.e., unsolicited commercial email that does not appear to target your personal information) that has eluded our spam filtering system (a false negative), please forward it with its headers intact to is-spam@uvm.edu.
  • Likewise, if you see a legitimate message in your Junk Email folder (a false positive), please forward it with its headers intact to not-spam@uvm.edu.

For more information about UVM's anti-spam, anti-malware, anti-phishing service, please see our Proofpoint Spam Filter Knowledge Base article.

"CAVAS NOTIFICATION" - received January 26, 2024

Canvas? What? No, this one is definitely not legitimate.

 

 

"Response for you're doing" - received January 24, 2024

This is another scam utilizing the fact that it's very easy to spoof the "From" address on emails. This person does not actually have access to your account, but is trying to alarm you into thinking they do. Our spam filters catch most of these, but this one unfortunately made it through to some folks. You can safely discard this email if you received it.'uvm fee failed' phish

"Notice!" - received January 17, 2024

A "Notice!" about "University of Vermont News" from a non-UVM address is enough reason for skepticism, but as always, hovering over the link will let you know for sure. Despite having uvm-edu in the first part of the address, this link leads elsewhere (to a phishing site that attempts to steal your password).
"Notice!" phish
 

"I strongly recommend you check the information in this email" - received January 7, 2024

This one is a scam utilizing the fact that it's very easy to spoof the "From" address on emails by trying to scare you into thinking someone else has access to your account. Our spam filters catch most of these, but this one unfortunately made it through to some folks. You can safely discard this email if you received it.
screenshot of fake blackmail scam

"Student Employment Services" - received December 12, 2023

Too good to be true? Yes!

'student employment services' phish sample

 

"Notice From Microsoft`" - received December 12

This is not really from Microsoft and it is not legitimate. Put this one right in the trash.

"IT Support - Important Update" - received December 8

....what are email address hours even? This one is definitely a scam.

"Individual Assistance Program" - received November 2, 2023

This email is a scam, preying on folks who really need the money. If you hover over the link with your cursor, you can see it's sending you to a non-UVM website where it asks you for UVM credentials. UVM would not do this.

 

"ACTION REQUIRED NOW!" - received October 26, 2023

QR code abuse is becoming one of the most common ways to lure the unwitting into visiting phishing websites (like this one) or sites serving malware to anyone who visits. UVM wouldn't ask you to conduct any important business by hiding the target site's address in this way - be very skeptical of any QR code that you aren't expecting to see!

ACTION REQUIRED NOW phish screenshot

"Careful, it's important" - received September 20, 2023

If you received this email, you'll notice it appears to be sent from your own account. It isn't, actually - it is unfortunately very easy to spoof the from address on emails. Normally, these are caught by our spam filters, but this one seems to have gotten through to a few folks. If you did receive it, don't worry, your data has not actually been compromised and this email can be safely discarded.

overdue fee phishing scam

 

"Congratulations On Your Scholarship" - received August 16, 2023

Unfortunately, this scholarship is not real - another attempt at getting users' financial information. 

"Change Payment Method !!" - received August 15-16, 2023

This is a scam email trying to get your financial info. Always check the link before clicking and avoid any non-UVM links for anything like this.
'UVM' phishing scam

"You have WON !!" - received August 13, 2023

If you ever receive an email telling you you've won something, probably safe to assume it's a scam. This one sure is.

"Data Entry Executive Assistant Bookkeeper For Student (WORK$STUDY)" - received August 11

These job scams are constant. If you ever receive an email reaching out to you about a job for $x/weekly and it sounds too good to be true - it is. Just assume any email reaching out to you about a job unprompted, from an unrecognized sender is a scam.

"URGENT: Submit Document !!" - received August 13, 2023

This extremely vague email is a scam. When an email is this vague but exclaiming it's urgent/critical/required, always good to be suspicious and forward to abuse@uvm.edu instead of clicking the link.

Dear Students, Work at your convenience and earn $450 weekly. It's a flexible part-time job.

"Overdue Bill Letter", "Overdue Notice Letter!" - received August 3-4, 2023

Again trying to worry you with overdue fees. This one is not legitimate.

Always be wary of emails asking you for money and check the URL they're sending you to before clicking (UVM should only be sending you to uvm.edu addresses for this sort of thing).

"AOTC Education Credit Funds" - received July 23, 2023

Hey that's not a .gov URL! And wait - is the signature implying UVM is a department in the IRS? 

Well, this one is unfortunately definitely a scam.

 

 

LEGITIMATE - "Your key audit is OVERDUE"

This is a legitimate email from the Division of Safety and Compliance - The key audit is a critical exercise that requires your response. If you have received this email, please complete the survey right away!

legitimate key audit email