Phishing Attacks (a.k.a. Email Fraud) at UMass Amherst
In the past months, members of the UMass Amherst community have been the target of several phishing attacks, asking for their OIT Account information and other personal details.
Don’t be fooled! These emails do not come from OIT/UMass Amherst. They are fraudulent messages attempting to steal and compromise your personal information.
Remember, OIT will never ask for your NetID, password, or other sensitive information via email.
What to Know
Phishing is a form of fraud designed to steal your identity. The fraudulent emails targeting UMass Amherst will claim to be official University communications (or otherwise originate from a legitimate office on campus). Most will ask you to ‘immediately update’ your personal information or face serious consequences.
Note: UMail spam filters will intercept some fraudulent emails, but they are not foolproof. It is critical that you learn to identify phishing scams and take the appropriate steps to protect your computer and your information.
What Can Happen
Your Identity Gets Stolen
Your OIT Account password is your ‘key’ to all OIT services and provides access to more than just your email account. With access to your password, phishers can:
- Take over your UMail account and send emails in your name
- View and corrupt your UDrive files
- Access your grades, housing assignments, and financial information in SPIRE
Your Computer Gets Infected
Some phishing emails include links or attachments that, once clicked, download viruses and other malicious software to your computer. Some may also install keystroke loggers that will record your computer activity.
What To Do
For any unsolicited or suspicious message in your mailbox, the same rules apply:
- Do not respond. Make it a personal policy never to send passwords or other sensitive information via email regardless of who is asking for it.
- Do not click any links.
- Do not open any attachments.
- Delete the message.
If you have already provided your OIT Account information in response to one of these phishing emails, your account may be disabled (all accounts that display signs of suspicious activity will be frozen). It is critical that you:
- Contact the OIT Help Desk to report the incident and get your OIT Account re-instated (if applicable).
- Change your OIT Account password immediately in SPIRE. If your OIT Account has been disabled, you will create a new password when you re-activate your account.
