A new phishing email that purports to be a message about changing your password is circulating among email users at UAB.

The fake email is likely an attempt to steal user information and should be deleted. Users who click on the link are directed to a site that mimics a UAB login site but has a non-UAB URL. A copy of the email is below:

Phishing password 092016
A similar fake email circulated recently with a message about payroll. UAB IT's Information Security division is actively working to block the phishing attempts.

If you receive an email with a hidden link such as “Click Here,” do the hover test. Hover your mouse over the link and look at the lower left pane to see where the link leads.


Look at the URL of the website you are visiting. 

To report suspected spam to AskIT, please follow the instructions here.

Follow these additional tips to avoid being a phishing victim:

  • Do NOT click links in messages that ask you to log in. Type a trusted Web address in your browser or Google for the Web site if you don’t know the address.
  • Never type personal, sensitive information (such as passwords or account numbers) on Web sites without verifying the Web site’s authenticity and security — look for an “https” in the address bar.
  • Verify the address. Malicious web sites may look identical to a legitimate site, but the address may use a variation in spelling or a different domain (.com vs. .edu).
  • Misspellings and grammatical errors can be a dead giveaway in phishing emails and subject lines.
  • If you are unsure whether a request is legitimate, contact the company directly. Do NOT use contact information provided in the request.
  • Don’t open attachments. They may contain viruses or malware that can infect your computer.
  • Protect your password. Information security and IT officials at both the university and UAB Hospital will never ask users for passwords or any other sensitive information.
  • Report suspicious activity. If you have any questions or you receive a suspicious email that you want to report, university employees and students can call the AskIT Help Desk at 205-996-5555. Hospital employees can call the HSIS Help Desk at 205-934-8888.
A phishing email purporting to be from a notification about payroll has hit several email inboxes among faculty and staff at UAB.

The fake email is likely an attempt to steal user information and should be deleted. Users who click on the link are directed to a site that mimics a UAB login site but has a non-UAB URL. A copy of the email is below:

Phishing 091916


If you receive an email with a hidden link such as “Click Here,” do the hover test. Hover your mouse over the link and look at the lower left pane to see where the link leads.

Look at the URL of the website you are visiting. 

To report suspected spam to AskIT, please follow the instructions here.

Follow these additional tips to avoid being a phishing victim:

  • Do NOT click links in messages that ask you to log in. Type a trusted Web address in your browser or Google for the Web site if you don’t know the address.
  • Never type personal, sensitive information (such as passwords or account numbers) on Web sites without verifying the Web site’s authenticity and security — look for an “https” in the address bar.
  • Verify the address. Malicious web sites may look identical to a legitimate site, but the address may use a variation in spelling or a different domain (.com vs. .edu).
  • Misspellings and grammatical errors can be a dead giveaway in phishing emails and subject lines.
  • If you are unsure whether a request is legitimate, contact the company directly. Do NOT use contact information provided in the request.
  • Don’t open attachments. They may contain viruses or malware that can infect your computer.
  • Protect your password. Information security and IT officials at both the university and UAB Hospital will never ask users for passwords or any other sensitive information.
  • Report suspicious activity. If you have any questions or you receive a suspicious email that you want to report, university employees and students can call the AskIT Help Desk at 205-996-5555. Hospital employees can call the HSIS Help Desk at 205-934-8888.
UAB IT wants to help protect students’ computers — for free.

The first Laptop Checkup for undergraduate students will be held from 10 a.m. to 3 p.m. Oct. 4-5 at the Hill Student Center. Check-in will be in the front of the TechConnect store on the first floor, and the laptop security checks will take place in room 220.

Students are invited to bring their personal laptops for free security checks at the event, which helps kick off Cyber Security Awareness Month on campus. NCSAM

Volunteer technicians will provide security checks as well as free virus and malware removal for personal laptops. They will also install software and security updates, ensure that firewalls are enabled and update antivirus and operating systems. 

Students who participate will also learn best practices for protecting their personal computers against security threats.

Technicians will meet with students on a first-come, first-served basis; comprehensive checkups can take from 30 to 60 minutes. Students may have a short waiting time to see a technician.

For issues that may take more than an hour to resolve, students will be referred to TechConnect, UAB IT’s technology storefront at the Hill Student Center.

University-owned computers will not be checked at the event.

“Secure computing is our top imperative at UAB IT,” said Brian Rivers, chief information security officer for UAB. “The Laptop Checkup is a way for us to raise awareness of information security and help serve students and protect their data.”
BlazerWelcome

As students move back to campus and fall classes begin, we have some common answers to tech needs — and the places to go when you need help.

EMAIL
Every student has access to a free 50 GB e-mail account through Office 365. Students UAB email address (BlazerID@uab.edu).  They can access this through login to BlazerNet and select the email icon or go directly to the Office 365 website and login (outlook.office365.com). Through Office 365, all students get Microsoft Office software for free.  Log in to your email, select “Office365,” and the next screen will show the available office products.

WIFI
  • UABStarthere – Use this WiFi network first to connect and run the software install. Once you are connected, switch to the UABSecure network and “forget” UABStartHere; click here details on how to forget the network on each device.
  • UABSecure – This is the network to which you should connect to so you have a secure connection and faster speeds.
  • Dorm Wifi – If you live in a dorm, contact Apogee 866.578.8865 for assistance with dorm WiFi.
SECURITY
UAB Mobile App: We recommend you download the free UAB mobile app, which provides access to class schedules, Blazer Express schedules, maps, campus directory, news and athletics and Canvas Mobile.  Works with iPhone and Android mobile devices.
Rave Guardian: One of the best ways to improve your personal safety and protect your friends by building your own private safety network. This free app provides instant communications with friends, family, co-workers, UAB Police, and even 911 in the event of an emergency.  For information and access visit: uab.edu/emergency/rave-guardian.
Scams: UAB will never ask for your password via email or phone call. If you suspect you have received a phishing email, you should contact AskIT. If you suspect you have received a scam phone call, you should contact UAB Police.
Passwords: All students can get a free Keeper account to safeguard  passwords, including BlazerID passwords. Learn more from the UAB IT web page.

GET HELP
TechConnect is your on-campus tech store, located in the Hill Student Center, first floor room 135 (directly in front of the food court).  Visit the store for assistance with your computer, mobile device, or email access, or to purchase a new laptop and other essential computer items.  Access the TechConnect website uab.edu/techconnect to receive educational pricing on computers, laptops, tablets, accessories and more.
Contact AskIT to report problems or get help.

Download the full TechList here.
Page 14 of 29