Skip to Main Content

UCPath Alert: Beware of Phishing Emails Impersonating UCPath

A UCLA Blue swatch

Update Your UCPath Account - Phish

The UCLA Information Security Office identified a phishing campaign that coerces recipients to enter their credentials onto a fake UCPath webpage.

If you receive a suspicious email, do not click on any links, open any attachments, enter any credentials, or reply to the email. Please contact security@ucla.edu and report it to your IT team.

On November 27, we received the following notice from the UCPath Center.

Beware of Phishing Emails Impersonating UCPath

A phishing email impersonating UCPath is targeting UC employees at several locations, including UCLA, UC Santa Barbara, UC Irvine and UC Davis. The fraudulent email prompts employees to update their UCPath accounts.

Phishing Email Details

  • The phishing email includes the subject line "Update Your UCPath Account"
  • The message links to a fraudulent login page, mimicking the official UCPath login interface

Immediate Action Required

  • Do not open the email, click any links or open attachments
  • Employees must immediately report phishing emails to their IT team, you may contact security@ucla.edu
    • After reporting, delete the email to ensure security and prevent further risk

Thank you,
UCPath
(855) 982-7284
Monday - Friday from 8:00 a.m. - 5:00 p.m.
ucpath.universityofcalifornia.edu