Information Security
Beware of Phishing Attempts! Global Computer Incident
We are writing to inform you of an important matter concerning a global computer incident that is occurring today. The incident has affected millions of Windows computers worldwide. Cyberattackers are taking advantage of this situation by posing as Service Desk staff, Microsoft, or CrowdStrike employees and contacting members of the University community. Their goals appear to be to gather University computer credentials or deploy ransomware on devices. In light of this, we are asking members of the University community to take precautions:
1. Do not share passwords: IT will never ask for your passwords or Multi-Factor Authentication (MFA) credentials. If you receive any communication requesting this information, do not respond or provide any details.
2. Be vigilant: If you receive suspicious emails, calls, or messages claiming to be from IT Services, Microsoft, or CrowdStrike, do not engage or respond.
3. Report issues promptly: If you are experiencing problems related to today’s incident or suspect any fraudulent activity, please contact your local desktop support staff, visit the TechBar (Regenstein Library), or for an online support response, please submit a request to the IT Services Self Service Portal.
How can we help you?
- Report a possible phishing attempt
- I need to reset or recertify my CNetID or password.
- I want to know how to use two-factor authentication.
- I need an SSL, code signing, or some other kind of security certificate.
- Report a possible compromise or other security incident
- I have a question about security for my application or have my application reviewed.
- My account was locked for spamming or due to some other security issue.
- I need access to phone records, emails, or other data for an investigation or personnel matter.
- I’m traveling and received an email asking that I contact the security team.
- My computer or phone was blocked from the network due to a virus detection.
- I want to send the security team a report about a security vulnerability or some other issue I discovered.
- A website I tried to visit is blocked and erroneously listed as suspicious. What do I do?
IT Policies
Refer to the University’s official IT policies regarding data security and use of copyrighted material.
Training and User Guides
Complete security training and get user guides for helpful security tips and advice.
Phishing Alerts
Listed below are the latest phishing scams that have been acted upon by Information Security. Think you’ve received a phishing email? Don’t click it, report it.
Email Scam (Sep 19, 2024):
Date: Wed, 19 Sep 2024 From: "gary.budd@sti-help.com" <gary.budd@sti-help.com> Subject: Hello Student/Staff, Can you work remotely from 8pm to 9pm for our company daily? Salary $500 weekly. Contact the company secretary Mrs. Sarah Denis with your personal email...
Email Scam (Aug 18, 2024): Position Assistant (The University Of California)
Date: Wed, 18 Sep 2024 From: "Britney Stones" <britneystones09@gmail.com> Subject: Position Assistant (The University Of California)
Email Scam (Aug 18, 2024): Open Position (The University Of Chicago)
Date: Wed, 18 Sep 2024 09:23:36 +0100 From: "Britney Stones" <britneystones09@gmail.com> Subject: Open Position (The University Of Chicago)
Security News
Check here for the latest security alerts that may affect you.
Ditch the Post-It Notes and Use a Password Manager
Most of us manage 100 or more passwords for our online accounts and it can be tough to remember so many unique passwords. If you’re like most people, you’re probably using the same password for most of your accounts—and that’s not safe. Once that single password is...
Video: Report Phish With One Click
The Report a Phish button easily allows you to report email you believe is phishing to Information Security directly from your O365 or...
How to Locate the Report Phish Button
IT Services has implemented an easier way to report suspicious emails from your University Outlook or Gmail inbox. This feature, called Report Phish, allows you to report phishing or other suspicious emails with the click of a button. The Report Phish button will...
Text Message Scam ( August 9, 2022 ): SMS Impersonation of University VIPs
Date: August 9, 2022From: +(213)205-5089 The following is part of an example of what a UChicago user saw and responded to the initial scammer message. We have currently observed some scam campaigns through phone text (i.e. smishing) where the attacker tries to...