New phishing attacks: Don’t open the attachment
A new phishing attack is doing the rounds on campus. An email – which may be titled with your name – includes a few characters from a password you may have used for either your UCT account or an external site or service. The email also includes an attachment which, when opened, asks you to enter a password.
What do I do?
- DO NOT OPEN THE ATTACHMENTS IN THE EMAIL.
- If you did click the attachment in the email, DO NOT enter your details on the page. Instead, please close the page and run a full antivirus scan of your machine. Then, on a device that you know to be free of malware and infection, change your password.
What happens if I clicked the attachment and entered my details?
If you've entered your details, your account may be compromised. This puts the UCT network and UCT assets at risk. Please:
- On a device that you haven’t previously used to access the UCT network, change your password.
- Send an email to the IT Helpdesk informing them that your details were compromised, but that you have changed your password.
- Run a full antivirus scan on the machine you used to enter your details.
- Don't ever reply to emails that request personal information – especially usernames and passwords.
- NEVER share your password with anyone – not even an ICTS representative.
- Do not open attachments unless you can verify the sender and the nature of the attachment.
- Don't open emails of unknown origin.
- Don't click on links in emails if you cannot recognise where the link directs you.
- Don't reply to spammers asking them to remove you from their mailing list. Replying just confirms your email address as valid, which encourages them to send you more spam.
- Don't forward chain letters or marketing material.
- Report any incidence of this to the IT Helpdesk at firstname.lastname@example.org. You can report any other cybersecurity issues to the UCT CSIRT at email@example.com.