Newcastle University warns students against scam site

Fake site tricks users into handing over personal details and payments for fake courses

Newcastle University has been forced to warn prospective students of a fraudulent website scammers are using to harvest passport details, personal information and credit card numbers.

The site purports to be run by 'Newcastle International University', but no such educational establishment exists. Instead, it's a fake site mocked up to mimic the real university website, including pages on admissions FAQs, course details and school news.

As well as harvesting students' personal information, including names, dates of birth, email addresses and even passport numbers, the site also accepts online payments for courses.

The real Newcastle University released a statement on Twitter, confirming that it is not affiliated with the site and advising students to only use Newcastle University's genuine website.

"We've reported it to the hosting company, the organisation which provides the domain name, and the non-profit standards organisation, ICANN (The Internet Corporation for Assigned Names and Numbers)," the University told IT Pro in a statement. "The University is working with National Cyber Crime Police team, and the case has been registered with the cyber security team in the National Crime Agency."

"We would urge any students not to access this site and go to our official site: www.ncl.ac.uk or call the University's general number if they have any queries."

The fraudsters have managed to concoct an unusually sophisticated trap, according to RSA's EMEA advanced cyber defence practise director, Azeem Aleem. "Make no mistake, this is an effective scam," he said. "They've put in the time and effort to create a remarkably realistic website. It is well designed, well executed, and it highlights the very real danger of modern spoofing attacks."

"Even more worrying, they are using this spoofed site to harvest everything from credit card info, passport details, and date of birth; all the personal information that you wouldn't want to fall into the wrong hands. They have also been careful about targeting, focusing on overseas students who may not have the local knowledge to spot the difference between this site and Newcastle University's official site."

In fact, even seasoned professionals may be fooled on first glance. When compared side-by-side with the real Newcastle University website (see main image), one could argue that the fraud site is actually the more professional-looking of the two - although there are some telltale giveaways on closer inspection, such as spelling and grammar errors, and poorly-sized images.

Featured Resources

Digital document processes in 2020: A spotlight on Western Europe

The shift from best practice to business necessity

Download now

Four security considerations for cloud migration

The good, the bad, and the ugly of cloud computing

Download now

VR leads the way in manufacturing

How VR is digitally transforming our world

Download now

Deeper than digital

Top-performing modern enterprises show why more perfect software is fundamental to success

Download now

Recommended

What is shoulder surfing?
Security

What is shoulder surfing?

19 Oct 2020
Google blocked record-breaking 2.5Tbps DDoS attack in 2017
Security

Google blocked record-breaking 2.5Tbps DDoS attack in 2017

19 Oct 2020
Microsoft releases two emergency Windows patches
Security

Microsoft releases two emergency Windows patches

19 Oct 2020
Weekly threat roundup: Windows 10, Adobe, and SonicWall VPNs
Security

Weekly threat roundup: Windows 10, Adobe, and SonicWall VPNs

16 Oct 2020

Most Popular

The top 12 password-cracking techniques used by hackers
Security

The top 12 password-cracking techniques used by hackers

5 Oct 2020
How to wipe a laptop easily and securely
Security

How to wipe a laptop easily and securely

5 Oct 2020
iPhone 12 lineup official with A14 Bionic chip and 5G support
Mobile Phones

iPhone 12 lineup official with A14 Bionic chip and 5G support

13 Oct 2020