Dear UMBC Community,

Imagine a stranger secretly using your home internet or your laptop to hide their tracks. Recently, security experts have found that certain apps are doing exactly that! They are secretly turning personal devices into "digital masks" for cybercriminals. 

When you download a seemingly harmless app, it may contain hidden code that shares your internet connection with a global network of hackers. This makes their activity look like it is coming from your device and our campus.

How to spot strange activity on your device:

Your device might be working for someone else if you notice: 

• Performance Issues: Your phone or laptop suddenly runs slowly, gets hot for no reason, or has a battery that dies much faster than usual.
• High Data Usage: You see a massive spike in your internet data usage that you can't explain. 

Tips to keep your tech private: 

• Look Before You Click: Even in official app stores, check the reviews. If a simple app (like a flashlight or a calculator) asks for permission to access your files, contacts, or location, it's a red flag. 
• Beware of the "Too Good to Be True": Be skeptical of "cracked" software or free versions of paid apps. They often come with a hidden "tax" on your security. 
• Cheap Smart Tech: Very inexpensive "Smart Home" or Internet of Things (IoT) devices often have weak security, making them easy targets for hackers. 

What to do if you suspect trouble: 

If your device is acting strangely or you receive a suspicious email, do not click any links. Please forward any suspicious emails to the security team at security@umbc.edu.  

If you suspect a phishing or cybersecurity attempt, do not reply, click any links, or open any attachments. Instead, forward the email immediately to the security team at security@umbc.edu. Your report helps protect everyone!

Thank you all for your continued awareness and assistance in keeping our community secure.

Cybersecurity Assurance and Digital Trust
UMBC Division of Information Technology (DoIT)