Western Sydney University has recently fallen victim to a scam involving fraudulent emails sent to current students and alumni. These emails falsely claimed that recipients’ degrees had been revoked and that they were permanently excluded from continuing their studies at the university.
The Scam Emails and Their Impact on Students
The scam, which has caused considerable confusion and anxiety, involved at least two different emails purportedly sent from accounts appearing legitimate. One of the emails informed students: “We regret to inform you that, following a thorough review, the decision has been made to permanently exclude you from any further study at Western Sydney University.” It went further to state that “any existing certificates or awards previously issued to you are hereby revoked,” adding that this decision, as per university policy, was final and binding.
Recipients were warned that their enrolments in all subjects would be immediately cancelled, and their access to student systems, including online learning platforms, email, and library services, would be revoked without delay. Some of those targeted reported receiving these threatening emails despite having already graduated or having never completed their studies at the institution.
Adding to the confusion, students also received a suspicious message from an email address labeled “Parking Permits,” which alleged a student had exploited vulnerabilities to generate a false parking permit and access university email accounts.
The exact number of individuals affected by this university scam remains unclear, as does whether personal data beyond what was displayed in the emails has been accessed or compromised.
Western Sydney University and Police Response to the Scam in University Systems
Western Sydney University responded by confirming awareness of the fraudulent emails. A university spokesperson told 9news.com.au: “Western Sydney University is aware of fraudulent emails sent to students and graduates, with some falsely claiming that they have been excluded from the University or that their qualifications have been revoked. These emails are not legitimate and were not issued by the university. We are reaching out to inform people that the email is fraudulent and have informed NSW Police. We sincerely apologize for any concern this may have caused.”
Despite the university’s statement, some students criticized Western Sydney University for its delayed communication. Several recipients reported that they learned the emails were fake only through media reports and that attempts to contact the university by phone resulted in long hold times or no meaningful responses. One student commented, “The uni has done nothing so far and it’s 10.30am. Not even an email.” Another expressed frustration: “Despite repeated attempts to contact the university, we have received no meaningful response or support. They are now being left to suffer in silence.”
Due to the ongoing nature of the investigation, Western Sydney University declined to provide further comment.
This recent university scam is not the first security incident at Western Sydney University. Earlier this year, the personal information of approximately 10,000 students was leaked and appeared on the dark web.
