Phishing Alert: Email Impersonating U-M with QR Code asking for Two-Factor confirmation

Some U-M community members reported receiving this email. It is fraudulent or malicious. Do not respond, click any link in it, or provide personal information or money. See Phishing & Scams for more tips. If you need help, contact the ITS Service Center.

Date Sent: 
Tuesday, April 30, 2024

How to Protect Yourself

  • Watch for fake or spoofed QR codes. In this case the scammer uses a QR code that pretends to be sent from the University of Michigan, but takes you to a phishing site hosted by a free web hosting platform. Learn how to Spot Phishing & Scams.
  • Inspect the URL of the QR code. View the URL before you open it. The QR reader on your phone translates the URL. If it looks like a URL you recognize, make sure it’s not spoofed — look for misspellings or a switched letter. 
  • Don’t fall for pressure. Scammers often ask you to take action urgently. It’s a trick to get you to act without looking carefully. The scammer’s goal is to steal your login credentials or personal information, or to get you to download malicious software and gain access to your accounts, such as banking.
  • Do not enter login credentials without verifying that the site is legitimate. Before entering your UMICH password on a web page, check that the page's web address/URL begins with
  • https://weblogin.umich.edu/. Learn how to Look Before You Login.
  • Report Phishing and other Email Abuse. ITS Information Assurance has a process for reporting suspicious, abusive, or scam email. Your reports help us to tailor technical responses and provide warnings and guidance to the U-M community.

If you get caught or are concerned that your have given personal information to someone attempting to scam you:

This email scam is one type of scam that uses QR codes. For more information about scams involving QR codes, see the following resources:

Scam Email Text

{Note: For this phishing email, the text is an embedded image file that also includes a spoofed U-M logo and QR code.}

Due to recent security, This email is to confirm 2-factor authentication for all University of Michigan email recipients. You’re hereby required to complete exercise with the mobile number you want your 2-Factor Authentication set to.

Scan QR Code to complete authentication.

{QR code}

Phishing Email or Site Screenshot: 
Screenshot of fake U-M email message with a fake QR code that is a scam. It asks for the recipient to scan the code and then enter personal information into a phishing site.
Phishing site to which a QR scan takes person to try to trick them into entering personal information and login credentials.