Information Security
2024 Cybersecurity Awareness Month: Secure our World
October is Cybersecurity Awareness Month, a global initiative dedicated to help everyone stay safe and protected online. As Cybersecurity Awareness Month celebrates its 21st year, the University of Chicago is proud to be a 2024 champion, aiming to equip the University community with the knowledge they need to enhance their online safety and security. Throughout the month, we will share tips, resources, videos, and events to continue to raise awareness about staying safe online.
How can we help you?
- Report a possible phishing attempt
- I need to reset or recertify my CNetID or password.
- I want to know how to use two-factor authentication.
- I need an SSL, code signing, or some other kind of security certificate.
- Report a possible compromise or other security incident
- I have a question about security for my application or have my application reviewed.
- My account was locked for spamming or due to some other security issue.
- I need access to phone records, emails, or other data for an investigation or personnel matter.
- I’m traveling and received an email asking that I contact the security team.
- My computer or phone was blocked from the network due to a virus detection.
- I want to send the security team a report about a security vulnerability or some other issue I discovered.
- A website I tried to visit is blocked and erroneously listed as suspicious. What do I do?
IT Policies
Refer to the University’s official IT policies regarding data security and use of copyrighted material.
Training and User Guides
Complete security training and get user guides for helpful security tips and advice.
Phishing Alerts
Listed below are the latest phishing scams that have been acted upon by Information Security. Think you’ve received a phishing email? Don’t click it, report it.
Email Scam (Oct 2, 2024): SMiSh
Never provide your Duo Passcode or password to anyone. IT support will never ask you for this information. Please contact information security immediately if you receive this type of request.
Email Scam (Oct 2, 2024): UCHICAGO ACTION NOW
This is the last time we will notify you that we'll stop processing incoming emails in your school account, and the reason is you failed to verify your Microsoft account which may lead to the permanent deletion of your account from our database in the next few hours....
Email Scam (Oct 2, 2024): UCHICAGO MICROSOFT 365 MAINTANANCE #72499 Download (untitled) / with headers text/html 3KiB
Subject: UCHICAGO MICROSOFT 365 MAINTANANCE #72499 Due to the on-going IT maintenance and extra security features added to the portal. Everyone is expected to update his/her details correctly on the database via the link below. Failure to do this will make you lose...
Security News
Check here for the latest security alerts that may affect you.
Text Message Scam ( August 9, 2022 ): SMS Impersonation of University VIPs
Date: August 9, 2022From: +(213)205-5089 The following is part of an example of what a UChicago user saw and responded to the initial scammer message. We have currently observed some scam campaigns through phone text (i.e. smishing) where the attacker tries to...
5 Ways to Outsmart a Social Engineer
“Social engineering” is a newer term for an age-old pursuit: tricking people. Whether you use the modern-day terminology or opt for longer-standing classifications (like conning, hustling, and swindling), the result is the same. Scammers aren’t afraid to tell lies—...
Ransomware Attacks
Ransomware attacks are one of the most serious cybersecurity threats we face at the University of Chicago. Ransomware is a type of malicious software that steals user data, disables the user system, and then demands payment from the victim in order to re-enable system...
3 Facts About the Internet of Things (IoT) and Guide to Best Practices
It’s likely you own one or more items that are part of the Internet of Things (IoT). This collective term is used to describe a growing number of consumer, medical, and business items that are used to sense, control, and communicate data and activities. The IoT has...