UBC Cybersecurity is urgently raising awareness of a university payroll scam targeting UBC, the same threat recently active at a number of U.S. universities. Over the past two weeks, several UBC accounts were compromised.
These emails impersonate HR, Finance, or senior administrators, referencing pay, bonuses, or leave approvals. Attackers are typically successful in sending an MFA “push” to the user who approved it.
The phishing emails use subjects such as:
- “Employee Salary Adjustment Approval1”
- “Q2 Payroll and Compensation Update – Action Needed University of British Columbia”
Protect yourself:
- Verify any HR or pay-related message before clicking links.
- Never approve MFA prompts you didn’t initiate.
- Use strong, unique passwords or passphrases and never reuse your UBC credentials elsewhere.
- Remind staff to verify any pay- or HR-related communications through trusted channels (Teams, phone, or official Workday links).
- Report suspicious messages to security@ubc.ca.
To learn more, visit: https://privacymatters.ubc.ca/news/payroll-pirates-phishing-attacks
Thank you for helping keep our UBC systems and data safe.
Sincerely,
Administrative Team & Psychiatry IT UBC Department of Psychiatry
The UBC Department of Psychiatry Administration Office respectfully acknowledges the land on which we live, work and play is the traditional, ancestral, and unceded territories.