Active Phishing Alert

There are no issues with your student ID!

Hello UMBC Community!

The Cybersecurity Assurance and Digital Trust Department (CADT) in the Division of Information Technology is tracking an active phishing campaign that has impacted our campus community. This particular phishing campaign is targeting users with a phishing link that leads to a webpage resembling myUMBC. Examples of the phishing emails can be found at the end of this post.

Compromised users have been notified and their account passwords scrambled to safeguard their accounts. They have also received personalized myUMBC posts informing them of the events.

If you have received notices from CADT, make sure you change your password to a long, unique value that you have not used on myUMBC or other services in the past. It is important that you do not provide attackers with your DUO two-factor authentication codes or accept push notifications you have not initiated.

Users who believe they have already clicked on the phishing links should contact security@umbc.edu to report the phishing email.

Thank you for assisting us in keeping the campus community safe!

Phishing Examples

Screenshot of phishing email asking for the individual to click on a link that looks like it is umbc.edu, but it is not.

Screenshot of phishing email that looks like a myUMBC post asking for the individual to click on a link that looks like it is umbc.edu, but it is not.

Screenshot of phishing email on a mobile phone asking for the individual to click on a link that looks like it is umbc.edu, but it is not.

Tags:

Posted: October 23, 2025, 2:15 PM

Read Original Post in myUMBC

Division of Information Technology

There are no issues with your student ID!

Subscribe to UMBC Weekly Top Stories

I am interested in: