Information Security
Site Update
Most of the Information Security website has moved to the UChicago Intranet. Updates on phishing campaigns and security news remain at this location.
Phishing Alerts
Listed below are the latest phishing scams that have been acted upon by Information Security. Think you’ve received a phishing email? Don’t click it, report it.
Email Scam (Dec 10, 2025): Pay-Schedule!
From: UCNet info@uchicago.edu Date: Tue, Dec 9, 2025, 6:31 PM Subject: Pay-schedule! Hello, Үоu hаvе а nеw important message. Click here to read Thank you, IT 2025 © University of Chicago - All Rights Reserved
Email Scam (Dec 9, 2025): Student Report Notification
From: Student Services studentservices@uchicago.edu <jmahon@williams.edu> Date: Tuesday, December 9, 2025 11:30 AM Subject: Student Report Notification Greetings, This message is to inform you that a student support form has been filed regarding a student in one...
Email Scam (Dec1, 2025): Student Report
From:: Student Services studentservices@uchicago.edu <rwsikes@ualr.edu> Date: 2025/12/01 - 11:58:37 (UTC -06:00) Subject: Student Report
Security News
Check here for the latest security alerts that may affect you.
Security Alert: Fake CAPTCHA Compromises on the Rise
Threat actors are constantly evolving their tactics to be more convincing. We want to bring your attention to a sneaky social engineering technique called ClickFix that cybercriminals are using to trick unsuspecting users. Here's what you need to know to stay safe:...
Job Fraud Threats – Employment/Grant/Scholarship Scams Targeting Students
A common misconception about cyber attackers is that they use only highly advanced tools and techniques to hack into peoples’ computers, accounts, lives. Cyber attackers have learned that the easiest ways to steal your information, hack your accounts, or infect your...
Securing Your Digital Life with Multi- Factor Authentication
In today’s digital landscape, securing your online accounts is vital. Multi-factor authentication (MFA) serves as a security defense to protect yourself against cybercriminals. MFA requires anyone logging into an account to navigate a multi-step process to prove their...
Ditch the Post-It Notes and Use a Password Manager
Most of us manage 100 or more passwords for our online accounts and it can be tough to remember so many unique passwords. If you’re like most people, you’re probably using the same password for most of your accounts—and that’s not safe. Once that single password is...