We have seen an increase in phishing
attempts targeting University of Miami students, faculty, staff, and alumni, specifically asking for passwords and/or Duo access codes. Phishing (pronounced "fishing") is a form of fraud, in which an attacker tries to learn private information (such as login credentials) by masquerading as a reputable entity or person (usually via email).
Keep in mind that the University will never ask you to provide sensitive information via email, online form, and/or text message.
If you’re suspicious of a message, please send the suspected phishing email to phish@miami.edu to notify the University's Cybersecurity team. It’s better to be safe than sorry!
Best Practices
-
Do NOT provide sensitive personal information (like usernames, passwords, and/or Duo access codes) to anyone.
-
Do NOT click on links or attachments from senders that you do not recognize and/or did not expect to hear from.
-
Do NOT try to open any shared document that you are not expecting to receive.
Recent Phishing Attempts For your reference, screengrabs of recent phishing attempts within the UM community are displayed below:
|
|
|
|
Report Suspicious Activity
-
If you recently clicked any links in a suspected phishing email, please change your CaneID password immediately at https://caneid.miami.edu/. If you provided any personal information via a suspected phishing attempt, contact the Service Desk immediately.
-
If at any time you suspect a message to be a phishing attempt, you can quickly report it using Outlook's "Report Message" feature. (If you are not using Outlook, or if you cannot determine if an email is legitimate or not, please forward the email to phish@miami.edu to notify the University's Cybersecurity team.)
It is imperative that community members remain on high alert for suspicious emails that may compromise your personal information and/or the University's data.
Thank you for staying vigilant. |
