Phish Warning: December 06, 2020 “Payroll Notification!”

USC users have reported receiving phish emails from a Hunter College Email address “” with a malicious URL similar to the example listed below.  If you have received a similar phish, do not reply or click the embedded link within the message.

From: Dornsife <>
Sent: Sunday, December 6, 2020 11:22 AM
Subject: Payroll Notification

If you have received this phish, do not respond or click the embedded link. If you’ve clicked on the link and provided any Credit Card information please contact your card provider immediately and request a cancellation + new card. If you have responded or clicked the link and were asked to disclose your USC NetID password, change your USC NetID password immediately by going to the Popular Logins menu bar on the ITS website and clicking the link labeled change your password.

As phishing campaigns become increasingly sophisticated and harder to detect, we urge you to use extreme caution when clicking links in messages or attachments you receive from unknown senders. While antivirus programs may automatically scan messages for embedded malware, they do not automatically scan for malicious links in attachments.

OCISO encourages you to consider the following tips when handling suspicious email:

  • If you are unable to see (remember to hover over the link to see the actual destination). If you do not, recognize a link’s destination URL, do not click the link.
  • Never provide personal information, such as your passwords, social security number, or bank information, on a website you access by following a link in an unsolicited email or attachment.
  • If you must open an email attachment, first scan it using your antivirus software. To scan an attachment on a PC or Mac running USC’s free Sophos Antivirus, save the attachment to your desktop, right-click the file, and choose Scan with Sophos Antivirus.  You may download the latest Sophos anti-virus at

Thank you for doing your part to keep USC secure. Please contact the USC Security Operations Team at if you have any questions, encounter any suspicious e-mails or activity and we’ll be happy to assist you.