Arboretum path with "Keep on Path" sign

Keep on the Path for Safety: 4 Ways You Can Prevent Paycheck Fraud

Recently, UCPath users have been targeted by cybercriminals using scams to steal their direct deposit paychecks. The scammers are using sophisticated phishing emails, websites, phone calls and texts to trick users into providing account access.

Although no money was diverted in these recent scams—thanks to excellent cyber protection provided by UC Path—we need to stay vigilant and take the following actions:

How You Can Protect Yourself

You are the first line of defense. Here’s how you can keep your account safe:

  1. Think before you click or type: Be cautious with login prompts, links, and messages asking for your login information. Always confirm you’re on a legitimate UC login page before entering your information or approving a Duo request.
  2. Never share your UC username, password, or Duo codes. Don’t approve Duo requests you didn’t initiate — doing so gives hackers full access to your account.
  3. Verify the source: Check web addresses, email addresses, and login page designs carefully. Look for subtle misspellings or unusual behavior. If something feels off about a UC website, don’t proceed — report it to cybersecurity@ucdavis.edu.
  4. Use bookmarks for important sites: Bookmark trusted UC websites like UCPath to avoid being tricked by malicious links in search results or emails.

How to Confirm You are on a Legitimate UC Website

Before entering your UC login information, take a moment to verify the website:

  1. Check the web address carefully: Legitimate UC websites will end in domains like .ucop.edu, .ucdavis.edu, or another official UC campus domain. Watch for small misspellings or suspicious variations (e.g., “ucpath-login.com” is not valid).
  2. Look for a secure connection: Confirm that the URL begins with “https://” and shows a padlock icon in your browser’s address bar.
  3. Avoid clicking links from search results or emails: When possible, use bookmarks or type in the web address directly. This helps you avoid fraudulent lookalike sites.

How UC Is Protecting You

UC is taking strong steps to combat these threats, including:

  1. Manual verification of direct deposit changes: Every change is manually reviewed, preventing the loss of hundreds of thousands of dollars in payroll.
  2. Thorough investigation of phishing and fraud reports: All incidents involving UC credentials are promptly investigated. If you suspect your account has been compromised, submit a report online.
  3. Active takedown of fake websites: UC works with domain providers and search engines to detect and remove fraudulent sites. So far, 15 have been taken down or are pending removal.
  4. Enhanced multi-factor authentication (MFA): UC continues to strengthen Duo MFA to reduce the risk of unauthorized account access.

Learn More