Phishing emails result in direct deposit fraud

Hackers have recently used emails that mimic official university email communications, such as workplace safety updates and public health notices, to steal faculty and staff login credentials. The hackers have used the stolen credentials to change employee direct deposit information.

These email phishing attacks often involve fake login pages and Duo security prompts. Key red flags include:

• Suspicious sender addresses
• Fake department names
• Urgent requests for action

The Office of Information Technology has broken down the elements comprising these attacks, describing how to detect these email attacks, and emphasizing vigilance, careful scrutiny and consulting the Help Desk at (208) 426-4357 or [email protected] to confirm if emails are legitimate.

Visit the office's website for more details

Share This

• Share on Facebook
• Share on Twitter
• Share on LinkedIn
• Share through Email