-
Change your password immediately. Changing your password is necessary and should be the first step you take to secure your account. This will essentially kick the hackers off of your account.
-
Change your security questions. Even if you changed your password, they could regain access to your account if your security questions are the same.
-
Check your account activity. Often you will see the IP address of the perpetrator. This is very helpful to security; we can use this to identify other compromised accounts.
-
Notify Security of the breach. By notifying security (security@umbc.edu), we can inform the campus of the breach. In addition, we can make sure the bad guys got kicked off and identify any other changes made to your account during the compromise.
-
Check your reply-to email. Sometimes, after an account was compromised, the Reply-To email is changed, especially if your email was used for spamming. If this change occurs, you will not receive email from your professors or other staff. Instruction for changing your reply to email can be found here: https://www.gmass.co/blog/reply-to-address/#:~:text=Setting%20the%20Reply%2DTo%20in,address%2C%20and%20hit%20Save%20Changes.
-
Install Duo. Duo is UMBC’s second-factor authentication service. With this, no one can access your account unless they have both your password and your phone . For more information, visit: https://wiki.umbc.edu/display/faq/Two-Factor+Authentication+with.+DUO
-
Check your other accounts. If you used the same password on your UMBC account that you have on any other account (online banking, Instagram, Paypal, etc.), you should assume that all accounts using that password are compromised. This is a good reason to use different passwords in all important accounts..
Hopefully, these tips will help you feel more confident about your account’s security. If you have any questions or concerns, please feel free to reach out to us at security@umbc.edu.
______________________________________________________________________________________________
Receive any suspicious emails?
Forward it to security@umbc.edu along with the email headers. For instructions, visit: https://wiki.umbc.edu/pages/viewpage.action?pageId=1867970 .
Follow us on myUMBC: https://my3.my.umbc.edu/groups/itsecurity .