UNO is experiencing a “phishing attack” that is causing threats to @unomaha.edu accounts.
As of this posting, the emails use the following subject lines:
- Dear Office 365 Web User
- Update your email account
- Regarding Katherine XXXXXX Message
University Administrative Information Services (IS) is determining the best method to stop this attack
IS will never send you a link or attachment to provide reset account information.
Do not click on any suspicious links or attachments found within emails.
How to identify or avoid a suspicious email, link or attachment:
- Log in from a bookmark rather than clicking a link from an email.
- Don’t access links from within emails that you may not trust or know.
- Use a different password at work than what you use for personal accounts.
- Check links by “hovering” over them before clicking to see their true destination.
If you suspect an email is fraudulent you can contact the user by phone or notify the HelpDesk at 402.554.HELP.
We will provide updates on this article when they are available.
UPDATE: MAY 1, 4:55 P.M.
Information Services (IS) staff continues to investigate the effects of this phishing attack on UNO students, faculty and staff. Although there is evidence of some email credentials being compromised, at this time there is no evidence of a virus infection. As a precautionary measure, we are recommending that users who may have clicked the phishing email reset their NU Net ID password using a stronger password.
Such attacks as the one today are becoming more frequent, so please use this incident as a reminder of the importance of using strong passwords, updating antivirus software and being cautious of suspicious emails.
If you suspect an email is fraudulent you can contact the user by phone or notify Information Services at 402.554.4357 (4-HELP).
UPDATE: MAY 7, 8:00 A.M.
Information Services (IS) has worked with any user whose credentials may have been compromised due to the recent phishing email attack, checking their accounts and resetting their passwords. IS has also taken precautionary measures to ensure the integrity of University systems as a result of the attack and will continue to monitor for suspicious activity.