Safety and Emergency Information

IT Security Alert: COVID-19 Scams

Date: 3/10/2020
From: CPP IT Security
Subject: IT Security Alert: COVID-19 Scams

IMPORTANT Security Alert: This period of COVID-19-related activity is used by cybercriminals as an opportunity to spread misinformation, sell fraudulent products and/or phish for your credit card or personal information.  

NOTE:  Official Cal Poly Pomona (CPP) communications related to COVID-19 will be posted on the university’s Health Alert website ( If you have questions or concerns, please email

The Federal Trade Commission (FTC) offers the following tips to avoid Coronavirus scams:

  • Do NOT click on links from sources you do not know.  Clicking on these links can download computer viruses, as well as result in receiving more phishing messages. 
  • Be mindful of messages claiming to be from the Centers for Disease Control and Prevention (CDC) or experts saying that have information about the virus. For the most up-to-date information about the Coronavirus, refer to authoritative sources directly. CPP provides a campus COVID-19 website with current campus information, as well as links to local authoritative sources.
  • Ignore online offers of vaccinations or treatments.  There are currently no vaccines or other treatments available to cure COVID-19. 
  • Research any requests for donations.  Do not let anyone rush you into making a donation.  Do NOT provide any donation by cash, gift card, or by wiring money.   

What should I do if I receive a message that is suspicious:

  • Do NOT correspond or forward this message other than to report it to or authorities. 
  • Do NOT click on any links or enter confidential or private information on an unfamiliar website. 
  • Call the IT Service Desk, or the related campus administrative office to assist you directly with evaluating your campus accounts and whether your information has been compromised. 
  • If you have been a victim of a scam, contact University Police at 909-869-3070.   
  • In most cases, you can delete the message if you have not replied to the message and did not click on any links.

Possible signs of a Phish or Scam

  • Alarming language to convince you to take immediate action
  • Harm could come to you or others by not taking action
  • Something sounds too good to be true – job opportunities, free items?
  • Asking you for something of value – money, gift cards?
  • Request for personal, private or secret information – account numbers, email addresses, cell phone numbers, login credentials
  • The email subject line or content looks unusual or not typical for that friend, colleague, or business to send.  “It just doesn’t sound like them.”  
  • Spelling/grammar mistakes
  • Overly vague or over-use of professional jargon to sound legitimate

Questions:  Contact the IT Service Desk if you have questions or need assistance with Phishing or changing your CPP Bronco password.  Contact Information: IT Service Desk Contact Information

IT Security and Compliance
Chief Information Security Officer
Information Technology & Institutional Planning Division
California State Polytechnic University Pomona