Cybersecurity Alert: Phishing Emails Continue

Recently, DoIT has seen an increase in phishing emails claiming that the receiver's UMBC account is being deactivated or offering a part time job. Some of the emails are specifically mentioning deactivating the user’s Microsoft account.

The emails are using links to web forms from Google Forms and Monday Forms to collect sensitive information from recipients, including login credentials. The actors are then leveraging SMS messaging to contact the users and gain access to UMBC accounts. 

Please keep in mind that UMBC administrators will never ask you for your login credentials such as username, password, or Duo passcode on a web form. If you follow a link to a form that does ask for your password, please close it and report the email and form to security@umbc.edu.

If you have seen and filled out any of the aforementioned forms, we highly recommend changing your password immediately to protect your account and slow the spread of these phishing emails.  

Throughout this July 4th holiday weekend, remember to practice cyber safety and report any suspicious emails you may receive by forwarding them to security@umbc.edu.

For more helpful information and ways to spot phishing emails, please visit the following links:

Have a wonderful and safe holiday weekend!

- DoIT Cybersecurity Assurance and Digital Trust