New phishing attacks: Don’t open the attachment

9 Sep 2019 - 15:45

A new phishing attack is doing the rounds on campus. An email – which may be titled with your name – includes a few characters from a password you may have used for either your UCT account or an external site or service. The email also includes an attachment which, when opened, asks you to enter a password.

What do I do?

  • DO NOT OPEN THE ATTACHMENTS IN THE EMAIL.
  • If you did click the attachment in the email, DO NOT enter your details on the page. Instead, please close the page and run a full antivirus scan of your machine. Then, on a device that you know to be free of malware and infection, change your password

What happens if I clicked the attachment and entered my details?

If you've entered your details, your account may be compromised. This puts the UCT network and UCT assets at risk. Please:

  1. On a device that you haven’t previously used to access the UCT network, change your password
  2. Send an email to the IT Helpdesk informing them that your details were compromised, but that you have changed your password.
  3. Run a full antivirus scan on the machine you used to enter your details.

Please remember:

  • Don't ever reply to emails that request personal information – especially usernames and passwords.
  • NEVER share your password with anyone – not even an ICTS representative.
  • Do not open attachments unless you can verify the sender and the nature of the attachment.
  • Don't open emails of unknown origin.
  • Don't click on links in emails if you cannot recognise where the link directs you.
  • Don't reply to spammers asking them to remove you from their mailing list.  Replying just confirms your email address as valid, which encourages them to send you more spam.
  • Don't forward chain letters or marketing material.
  • Report any incidence of this to the IT Helpdesk at icts-helpdesk@uct.ac.za. You can report any other cybersecurity issues to the UCT CSIRT at csirt@uct.ac.za.