A phishing email purporting to be from the "IT Service & Support Desk" has hit several email inboxes among faculty and staff at UAB.

The fake email is likely an attempt to steal user information and should be deleted. The subject line may be "Dear Employee/Staff and Student," and it asks recipients to check email access due to a maintenance update. Clicking the email takes users to a non-UAB site called "IT Security Systems Update." A copy of the email is below:

Phishing ITServiceDesk

If you receive an email with a hidden link such as “Click Here,” do the hover test. Hover your mouse over the link and look at the lower left pane to see where the link leads.

Look at the URL of the website you are visiting. 

To report suspected spam to AskIT, please follow the instructions here.

Follow these additional tips to avoid being a phishing victim:

  • Do NOT click links in messages that ask you to log in. Type a trusted Web address in your browser or Google for the Web site if you don’t know the address.
  • Never type personal, sensitive information (such as passwords or account numbers) on Web sites without verifying the Web site’s authenticity and security — look for an “https” in the address bar.
  • Verify the address. Malicious web sites may look identical to a legitimate site, but the address may use a variation in spelling or a different domain (.com vs. .edu).
  • Misspellings and grammatical errors can be a dead giveaway in phishing emails and subject lines.
  • If you are unsure whether a request is legitimate, contact the company directly. Do NOT use contact information provided in the request.
  • Don’t open attachments. They may contain viruses or malware that can infect your computer.
  • Protect your password. Information security and IT officials at both the university and UAB Hospital will never ask users for passwords or any other sensitive information.
  • Report suspicious activity. If you have any questions or you receive a suspicious email that you want to report, university employees and students can call the AskIT Help Desk at 205-996-5555. Hospital employees can call the HSIS Help Desk at 205-934-8888.
In the coming months, TechConnect — our technology store powered by UAB IT and located in the Hill Student Center — will be offering some technology products for personal purchase, such as laptops, tablets, limited accessories and fee-based support services, to faculty and staff for personal systems.

UAB IT is looking for feedback from the UAB community related to offering a payroll deduction option for these purchases to make it more convenient for employees.

To be approved to offer a payroll deduction option, UAB guidelines require a minimum of 100 persons to indicate they would utilitize the payroll deduction option. If you are interested, please fill out the survey here.
Wednesday, 25 May 2016 10:20

Security tip: Secure your devices

June CyberSecuritySign

Mobile devices have become one of the primary ways we communicate and interact with each other. The power of a computer is now at our fingertips, allowing us to bank, shop, view medical history, attend to work remotely, and communicate virtually anywhere. With all these convenient features come added CyberSecurityTip Iconrisks, but here are some tips to protect your devices and your personal information.
  • Password-protect your devices. Give yourself more time to protect your data and remote wipe your devices if it's lost or stolen by enabling passwords, PINs, fingerprint scans or other forms of authentication.
  • Secure those devices and backup data. Make sure that you can remotely lock or wipe each mobile device. That also means backing up data on each device in case you need to use the remote wipe function.
  • Verify app permissions. Don't forget to review app specifications and privacy permissions before installing it.
  • Update operating systems. Security fixes or patches for mobile devices' operating systems are often included in these updates.
  • Be cautious of public WiFi hot spots. Avoid financial or other sensitive transactions while connected to public WiFi hotspots.

 
EmpowerUAB campus2
After weeks of input from IT customers across campus — including students, faculty, staff, researchers and IT employees — UAB IT has drafted an IT Strategic Plan designed to empower everyone at UAB.

The draft plan has been published on the IT Strategic Plan web site. Members of the UAB community are encouraged to review the plan and provide additional feedback within a 30-day period ending June 24, after which the final plan will be reviewed by the strategic plan executive committee and published.

Feedback is welcome on the SPARK platform, where there are campaigns for each IT strategic imperative.

“We have welcomed input from across campus as we finalize this strategic plan,” said Dr. Curt Carver, vice president and CIO. “As our partners, you have helped co-author this plan, which will help prioritize the technology improvements worthy of advancing UAB.”

When the plan is published in June, it will provide UAB IT with a roadmap for developing those technology improvements. But Carver noted that the plan is a living document that may evolve as the needs of campus change.

“When we publish the final strategic plan, we will embark on the real work — completing the objectives that will help us support and empower our world-class university with world-class IT services,” Carver said.


Page 1 of 15