January 25, 2023

Spot the phish

So far this year, we’ve posted tips for securing connections, devices, and UW NetID credentials, along with ways to spot scams, in order to stay Cyber Smart in 2023. Here’s one more: Resolution #5: Learn to recognize phishing One of the reasons phishing remains a top threat year after year is because adversaries are constantly…

November 4, 2022

Email Warning Tags begin at UW this month

Cyber criminals and other adversaries use various tactics to obtain login credentials, gain access to UW systems, deliver malware, and steal valuable data, information, and research. If you click a malicious link, download an infected attachment, or enter your UW NetID and password on one of their websites you could put your personal and UW…

September 16, 2022

Attackers who build trust target universities

phishing for passwords

This month security firm Mandiant published a blog post and threat intelligence report about a state-sponsored Advanced Persistent Threat (APT) group known as APT42. Formerly known as UNC788, APT42 is said to be a “prolific and well-resourced threat actor” that has used credential harvesting, surveillance operations, and malware distribution to target over 30 organizations of…

August 23, 2022

URL Defense: a new layer of security for your email

On August 30, 2022, UW-IT will implement a new security feature, ProofPoint’s URL Defense, that will help block harmful attacks that are distributed through specific kinds of emails referred to as phishing or spear phishing. This new capability, URL Defense, provides an added layer of protection in your UW email by blocking access to web…

October 11, 2021

Fight Phishing

phishing for passwords

Fight Phishing is this week’s theme for Cybersecurity Awareness Month. Secure personal and UW data by learning to recognize the various types of phish. Don’t take the bait! How does phishing work? Cyber criminals try to trick you into disclosing your login credentials, passwords or other personal data by sending email messages that create a…

March 25, 2021

IRS-themed phish

This week there are at least two phishing campaigns impersonating the IRS that are targeting the UW community. If you see an email with the subject Your Payroll Direct Deposit or Recalculation of Your Tax Refund Payment, delete it. In this case, there is no need to report these particular messages to our service center…