Bulletin Board
This is restricted access content. Please don’t forget to logout if you are using public computer.

Protect Yourself: Sophisticated Scammers on the Rise—Stay Vigilant

Posted: May 2, 2025
Stay vigilant scammers

Scammers are getting smarter—and more targeted. In recent weeks, institutions like ours have seen a surge in phishing emails, account takeover attempts, and fraudulent requests to redirect payroll deposits. These threats are real, and they’re becoming harder to spot.

Attackers often pose as HR, payroll, or trusted vendors, hoping to trick you into clicking a malicious link or sharing your credentials. In some cases, they use your stolen login to try to change your direct deposit information or gain access to sensitive systems.

What You Can Do:

  • Use Two-Factor Authentication (2FA): Duo helps protect your account by requiring a second layer of verification. But remember—it only works if you recognize and act appropriately on the prompts.
  • Never Approve an Unexpected Duo Push or Call: If you receive a Duo prompt you didn’t initiate, immediately deny it, contact the TTS Service Desk (617-627-3376 or it@tufts.edu), and change your password. This is a strong sign that your login has been stolen.
  • Watch for Email Red Flags: Phishing emails can be convincing. Always check the sender’s address, look for unexpected or urgent requests, and avoid clicking unknown links or downloading attachments unless you’re sure they’re safe.
  • Keep Your Contact Info Up to Date: Help us protect your pay! If there’s ever a change request for your direct deposit, we want to ensure you are notified so you can verify if it is legitimate. Make sure your eServe profile includes a personal (non-Tufts) email address and your mobile phone number, to improve success of notifying you of direct deposit changes and in case of any other emergencies.
  • Report Anything Suspicious: Even if you’re not sure, it’s better to ask. Contact the TTS Service Desk if something feels off. The TTS Service Desk will escalate to the Office of Information Security as needed.

Scammers are counting on people to let their guard down. Don’t give them the chance. Together, we can keep our community and data secure.