Good morning UMBC Community!
The Cybersecurity Assurance and Digital Trust Department (CADT) in the Division of Information Technology is tracking a series of phishing emails that were sent last night encouraging users to click a link to review items that required their attention. Unfortunately, these emails were part of a phishing campaign.
Users who believe they have already clicked on the phishing links should change their passwords immediately.
We are working to notify the users we believe were compromised and scramble their passwords to safeguard their accounts. The compromised users will also receive a personalized myUMBC post informing them of the events.
If you have received notices from CADT, make sure you change your password to a long, unique value that you have not used on myUMBC or other services in the past. It is important that you do not provide attackers with your DUO two-factor authentication codes or accept push notifications you have not initiated.
Please use extra caution this week as we are expecting an uptick in phishing. If you need to check on the status of your account, we encourage you to visit my.umbc.edu directly versus clicking on a link in an email. If you accidentally click a phishing link and enter your login info, we will have to scramble your password to keep the account safe. We would hate for that to happen right before a big exam, so definitely keep an extra close eye on those links!
Thank you for assisting us in keeping the campus community safe and good luck on your finals!