Alert Information

 Red:  Phishing Alert

ALERT - Phishing Attacks and Account Compromises

Thursday, Dec 18, 2014 • 4:22 PM rvshaffe

Over the last couple of months, the office of information security has seen a spike in email accounts being compromised and setup to send spam out to the internet. We’ve even had an incident where some of our employees’ bank account and routing numbers were changed in our direct deposit portal. These compromises usually begin with an employee receiving a fraudulent (phishing) email stating that there’s a problem with an account and it needs to be updated. Their goal is to steal your username and password and take control of your account for a variety of reasons. Most appear to come from Information Services, but some have been forged to look like they came from Human Resources.

No reputable organization will ever ask you for personal information over email. If they do, refuse to give it to them. Emails with links that are asking you to “Click Here” to update personal information must be scrutinized. Is that link really taking you the place that it says, or has it been forged and is taking you to a place to steal your password? It is not difficult to validate the authenticity of an email. Know the red flags. One red flag is not necessarily an indicator of a phishing attempt. However, you must make the judgment call. If it looks suspicious, get a second opinion, or send it to cirt@utmb.edu; we’ll validate it for you.

Red Flags
Look at the From Line - is it from a person or organization that is associated with the contents of the email?

Is the Subject line demanding that you do something immediately?

Is it personalized to you? Generic emails can be a red flag.

How's the grammar and spelling? Poor grammar and misspelled words could indicate it's from a foreign country.

Hover over the hyperlink with your mouse and you should see the web address of the true destination. Is it going to a place that makes sense? If the email is from the UTMB helpdesk, then it should be taking you to a utmb.edu address.

Let’s say it’s a well-crafted phishing email and you clicked on the link; it’s not the end of the world. It’s going to take you to a webpage that will ask you for information. Again, think about the red flags.

Is the site branded to the organization that it’s associated with? A UTMB page should have a UTMB logo.

Look at the address bar, does it make sense, are you at the correct site?

Is it asking for information other than your username and password? If the site is prompting you to enter credit card, bank account or social security numbers, it’s an outright scam; exit the page immediately.

Last, but definitely not least, if you enter your username and password and it doesn’t take you anywhere, or it takes you to a place you weren’t expecting, your account information was probably just stolen. Change your password immediately and contact the service desk at x25200.

Phishing phone calls – We’ve had several reports of folks receiving phone calls from “technicians” claiming to be with Microsoft. The call usually starts off by informing you that your PC has been identified as being infected with a virus, or something to that affect. Their goal is to take control of your computer and install malicious software that could capture sensitive data, such as online banking information, usernames and passwords. To make matters worse, they’ll try and charge you for the software installation. If you receive one of these calls, simply say “no thanks” and hang-up.

If you have any questions regarding this email, please contact the office of information security at 409-772-3838 or email us at cirt@utmb.edu

 Yellow:  *Blackboard Alert

Blackboard System Maintenance

Tuesday, Dec 16, 2014 • 10:29 AM chperry

On December 22nd and 23rd the Blackboard Learning Management System will be upgraded to ‘9.1 April 2014’ Service Pack. Blackboard (https://eclass.utb.edu ) will be unavailable starting from 6AM on Monday, December 22nd through midnight on Tuesday, December 23rd.

Service Pack ‘9.1 April 2014’ includes several new features. Please see http://www.utmb.edu/blackboard/ for information on the new version. If you have any questions about the upgrade please contact Academic Systems at edtech@utmb.edu

 Yellow:  *Hyperion Application Alert

Hyperion Scheduled Maintenance

Wednesday, Dec 17, 2014 • 10:00 AM joreily

Hyperion Production will be upgraded to the most current version on Wednesday, December 17th. The .500 Patch will be installed after business hours and validated the following day prior to being released for use. If applicable, you will need to install the updated Financial Reporting client following the upgrade. Please contact IS.Hyperion@utmb.edu with any questions or concerns.

Emergency Communications

Disaster/Weather Emergencies

In the event of a disaster or emergency weather conditions, please refer to the following lines of communication for more information:

  • Call the UTMB hotline at (409) 77-ALERT (772-5378) or toll free at (888) 772-5449; or
  • Call the UTMB main operator at (409) 772-1011.
  • Information is also available via the web at www.utmb.edu/alert. Should the UTMB web server go down, a second server is in place as a backup and will be available via UTMB's normal URL: www.utmb.edu.  Additionally, an informational site will be activated at www.utmbinfo.com.
  • See www.utmb.edu/emergency_plan for UTMB Health Emergency Operations Plans.
  • Monitor local television and radio stations including KPRC/950 AM, KTRH/740 AM and KIKK/96 FM in Houston.

Sign Up for UTMB Alerts
UTMB Alerts is a "reverse 911" system, the application augments existing emergency communication resources such as email, web and phone-based alerts. Stay informed.

Find out more »