• panther status on ampus

Information Services & Technology

Information Security

» Information Security

The Information Security Office maintains a world class cyber security framework for strategies, standards, and policies. These ensure that all identified information assets are available with appropriate integrity and confidentiality.

For information security questions, please email infosec@chapman.edu or call (714) 744-7972. To report an incident, please use the "Report Incidents" button on this page.

Please continue to report any suspicious or malicious message by forwarding it as an attachment (ctrl-alt-F  in Outlook)  to abuse@chapman.edu The attachment format preserves hidden delivery header information that is helpful for reporting or blocking.

Latest Phishing Emails

Below are the latest phishing emails that we are seeing impacting our Chapman community.

+ - 01/12/2018 :: Subject: Fwd: Information

To All,


Welcome Back. This is the new for Staff Single Sign-on.Migrate to The new Outlook Web app for Staff, the new home for online self-service and information.


Click on  GATEWAY and login to:


* Access the new staff directory

* Access your pay slips and P60s

* Update your ID photo

* E-mail and Calendar Flexibility

* ssConnect mobile number to e-mail for Voicemail


Everyone is advise to MIGRATE immediately.


Please note that if this message is ignored you will experience difficulty in sending and receiving of email messages through our secure Web-mail Portal 2018.




+ - 12/11/2017 :: Subject: blocked sign-in attempt

Hi <Your Name>@chapman.edu,
We just blocked someone from signing into your Account <Your Name>@chapman.edu from a location not recognize.
Monday, December 11, 2017 6:43 PM (ET)
Boston, MA, USA*
Don't recognize this activity click <VerifyAccount> to verify your signing credentials.
Official Message From - Information Systems & Technology
Chapman University

+ - 11/27/2017 :: Subject: FYI

**Please notice has [] around the period to prevent clicking on it.



From: Elizabeth Pierce [mailto:mpierce67234@bergen.edu]

Sent: Monday, November 27, 2017 7:29 AM

To: Elizabeth Pierce <mpierce67234@bergen.edu>

Subject: FYI





Notice from IT Support, All staffs and student are advise to update and migrate to the new version of  Outlook Web App/Owa. Click on CLICK-HERE<http://upmail.zohosites[.]com/> to follow IT Support instruction.


IT Support

© Copyright 2017 Microsoft

All right Reserved.

+ - 11/14/2017 :: Subject: ITS

From: Linda Rennicks <lrennicks@salemstate.edu>
Date: November 14, 2017 at 5:08:17 AM PST
To: Linda Rennicks <lrennicks@salemstate.edu>
Subject: ITS

Notice from IT Support, All staffs and student are advise to update and migrate to the new version of  Outlook Web App/Owa. Click on <link removed> to follow IT Support instruction.


IT Support

© Copyright 2017 Microsoft

All right Reserved.

+ - 11/02/2017 :: Subject: Are you sure you want your Smart911 account to expire?]


If you let your Smart911 Safety Profile expire, it will no longer display to 9-1-1 call takers in an emergency.

Please act now to keep your Smart911 Safety Profile active.

Why are we asking if your Safety Profile is up to date?

  • Your Safety Profile only helps 9-1-1 call takers when the information in your profile is accurate.
  • You last reviewed your Safety Profile on Apr 27, 2016 11:19:14 AM.
<link removed>

Need help? Send an email with your question to <link removed>.

+ - phish email date 10/25 [subject line: Important Message]


You have a new message from Human Resources Department

Click Here <link removed>

David Porter

Human Resources Officer

+ - phish email date 10/13 [subject line: Transaction Completed]


Your transaction of $2,904.00 has been completed.

Please feel free to download and view Microsoft Word attachment with other information about transaction.


Infosec Notes: Malicious Word Document Attached.

+ - phish email date 9/8 [subject line: transitioned]

Date: September 6, 2017 at 12:00:06 PM PDT
To: Undisclosed recipients:;
Subject: transitioned

Chapman Outlook is transitioned from Outlook to Gmail. Click Here <link removed> fill and submit to Update or You cant send Mail.

+ - phish email date 9/1 [subject line: Please verify your email address]

[Dropbox logo]

Hi [Username],

We just need to verify your email address before your sign up is complete!

Verify your email <link removed>
Happy Dropboxing!

+ - phish email date 8/17: ITS Helpdesk

Subject: RE: ITS Helpdesk

Take note of this important information that we are updating our new webmail that has been improved with a new messaging system from Owa/outlook which also include faster usage on email,shared calendar, web-documents and the new 2017 anti-spam version.
Kindly click UPDATE/ACCOUNT <link removed>  to update immediately,to complete your 2017  Webmail User authentication.


This e-mail and any files are protected by the Electronic Communications Privacy
Act, 18 U.S.C. Sections 2510-2521. Its intended to be delivered only to the named
addressee(s) and its content is confidential and privileged. If you are not the
intended recipient or the person responsible for delivering the e-mail to the
intended recipient, be advised that you have received this e-mail in error and
that any use, dissemination, forwarding, printing, or copying of this e-mail is
prohibited. If you have received this e-mail in error, please notify the sender
by replying to this message and delete this e-mail immediately. Nothing in this
communication, either written or implied, constitutes or should be construed as a
legally binding agreement between the parties with respect to the subject matter

+ - phish email dt 7/31: Important Schedule message

From: Chapman University <yambing@wisc.edu>
Date: July 31, 2017 at 8:47:51 AM PDT
To: "...." <yambing@wisc.edu>
Subject: Important Schedule message

You have 1 new Important Schedule message from your  Chapman University


Click here to read


Chapman University   | Technology Services
Schedule message.

+ - phish email date 7/01 [subject line:Update!]

We are currently upgrading our database against unauthorized access. Click HERE<link Removed> to validate your account.

+ - phish email date 6/28 [subject line:Chapman University IT Center - Email Access has been Temporarily Suspended.!

Dear User,
Due to Security Breach on our SSL Server,Access to
Your Email has been Temporarily Suspended.
Click here <link removed> - Verify Your Email Account
Best Regards,
IT Help Desk
© 2017 Chapman University

+ - phish email date 6/21 [subject line: Very Urgent!!]


I received this message from your mailbox and I have upload the documents via Microsoft Exchange Portal just  CLICK HERE <link removed> and sign in with your email address to view documents. 


Best Regards

Cantrell, Jessica

*Infosec Note: The link takes you to a cloned Chapman Exchange Log in page. If you entered your credentials, contact the servicedesk at extension 6600

+ - phish email date 6/09 [subject line:Admin Warning]

Dear User,

Your University E-mail account will be shut down due to several negligence of emails regarding mailbox upgrade.

To avoid this please Click here<link removed> to verify and update your Outlook Account.

Mail Admin

+ - phish email date 6/01 [subject line:IT Service Provider]

Due to regular spam coming from mail user we have decided to add security to mail user account to prevent your mail from being use from sending spam mail and also change our login site, Kindly LOGIN<link removed> to verify and secure your mail and added 1 GB to your mail.

Server Desk.
Service Provider

+ - phish email date 5/23 [subject line:PO 164-2017]

Infosec Note: The email comes with a malicious attachment (word document) attached - if you opened the attachment and double clicked the red icon, please contact the service desk immediately at extension 6600 or email servicedesk@chapman.edu


Dear Sirs,

Please find enclosed the design of 5000 pcs set of our new order and send quotation for attached list of materials.

Please check and do the needful urgently…

Thanks & Best Regards

Best Regards

Angela Draper

Sales Co-Ordinator
Dixon Group Europe Ltd

+ - phish email dt 5/3 [subject line: John Doe has shared a document on Google Docs with you]

To: hhhhhhhhhhhhhhhh@mailinatordotcom
Subject: John Doe has shared a document on Google Docs with you


John Doe has invited you to view the following document:

Open in Docs <link remove>

+ - Phish email dated 4/21 [subject line:Your mailbox ]


Your mailbox is filled up and need to be validated  to avoid deactivation. Kindly click on the link below to avoid your account from been disabled.




Outlook365 Support.


+ - Phish email dated 4/14 [subject line: ICT SERVICE DESK]

Dear Email Users,

Your password Will Expire In The Next TWO {2} Days Current Mail Users Should Please Log On To IT-WEBSITE To Validate Your E-mail Address And Password,Or Your E-mail Address Will Be Deactivated.Thank You.

ITS help desk



©Copyright 2014 Microsoft

All Right Reserve


Notice from St. Joseph Health System:
Please note that the information contained in this message may be privileged and confidential and protected from disclosure.

+ - Phish email dated 4/11 [subject line: Urgent: Mandatory Password Reset ]


Your IT administrator has initiated a mandatory password reset for your organization due to a suspected hacking attempt.

Please create a new password immediately to ensure your account is protected.

CREATE NEW PASSWORD <link removed>

© Microsoft Team. All rights reserved. 

Notify IS&T immediately when you become aware of...

  • Theft or missing computer, laptop or mobile device
  • Breach of sensitive information (social security number, student records, etc.)
  • Any computer infections or spyware
  • Serious system outages