As of August 2nd, UIT is making changes to the current “Report Phishing” button in Outlook. Users will see the existing button with the “fish” icon be replaced by a new version that is integrated with new Microsoft email protection technologies. The new button has a different icon but works similarly and provides more immediate […]
Advisories & Alerts
Phish Alert - Yorku (2) new private documents
A confirmed phish email, sent from a spoofed York email address with the subject line "Yorku (2) new private documents" was reported. Clicking on the link will "Preview & Download It Now::" redirect users to an external site: https://vcbeorigv8h-e30pr8ighvp-0eh8irpg8h-0evrfg[.]obs[.]ap-southeast-3.myhuaweicloud[.]com/fcnbhweo4igvf8h-3wr4e8higvb-piewhrb80vhier-pbivetrb[.]html?AWSAccessKeyId=BIYYVE07OMDKEILTTF0R&Expires=1657387715&Signature=sMdOTQRWRifE2QcDc4LSu/E1XIQ%3D#username@yorku.ca If you clicked on the link and provided your credentials, please consider your account as compromised, and notify […]
Phish Alert - N:6/722: Your attention is needed
A confirmed phish email sent from a spoofed York email address, with subject line "N:6/722: Your attention is needed" was reported. Clicking on the link "Update Now" will redirect users to an external site: https://www[.]sekur[.]aero/wp-content/uploads/2022/06/8nugh/?i=i&0=username@yorku.ca If you clicked on the link and provided your credentials, please consider your account as compromised. Change your password immediately […]
Phish Alert - MAIL DNS (22) Undelivered Messages. Please check Domain settings!
A confirmed phish email, appearing to be sent from a user's own spoofed York email address, with subject line "MAIL DNS (22) Undelivered Messages. Please check Domain settings!" was reported. Clicking on the link will redirect users to an external site: https://storage[.]cloud.google[.]com/maintainancecomponeta[.]appspot[.]com/myautoindex[.]html#username@yorku.ca If you clicked on the link and provided your credentials, please consider your […]
Phish Alert - Updated MAY Payment Structure And Classified Comapny Docments For You!!!
A phish email with subject line "Updated MAY Payment Structure And Classified Comapny Docments For You!!!" was sent to multiple mailboxes. Clicking on the link will redirect users to an external site:https://codee-1-a153d6.ingress-daribow[.]easywp.com/sv/#username@yorku.ca If you clicked on the link and provided your credentials, please consider your account as compromised. Change your password immediately and NEVER authorize […]
Phish Alert - Incoming Mail Delayed.
A confirmed phish email sent from a spoofed York email address, with subject line "Incoming Mail Delayed." was reported. Clicking on the link "Click here to retrieve your emails and reconfigure Port 486." will redirect users to an external site: https://firebasestorage[.]googleapis[.]com/v0/b/jiklo-102a6.appspot[.]com/o/1998228299llllllll%2Fwebwebweb.html?alt=media&token=9125baf0-abd4-4b12-8e44-acbfcb3d395c#username@yorku.ca If you clicked on the link and provided your credentials, please consider your account […]
Advisory Notice - OFAC sanctions and service restrictions
University Information Technology (UIT) is advising of current and upcoming changes to York-provided services Zoom and Duo (two-factor authentication) as a result of the situation in Ukraine. These services are now or will be unavailable to individuals attempting to authenticate from several countries and regions restricted by the Office of Foreign Assets Control (OFAC) — a financial intelligence […]
Phish Alert - April/May Salary updates
A confirmed phish email with subject line "April/May Salary updates" was reported. If you clicked on the link and provided your credentials, please consider your account as compromised. Change your password immediately and NEVER authorize a 2FA request that you did not initiate.
Cyber Security Advisory - Protecting against increased cyber threats
Russia’s invasion of Ukraine has resulted in an increase in global cyber threats. While there is no specific threat to York University, we would like to stress the importance of protecting your accounts, devices, and data. Protective steps include: Use multi-factor authentication with your accounts to help verify access. York’s Duo 2FA service is required […]
Phish Alert - (6) messages are pending yorku.ca
A phish email with subject line "(6) messages are pending yorku.ca" was sent to multiple mailboxes. Clicking on the link "RE-ACTIVATE ACCOUNT HERE" will redirect users to an external site: https://tummify.com/wp_locks/MailUpdateFresh#username@yorku.ca If you clicked on the link and provided your credentials, please consider your account as compromised. Change your password immediately and NEVER authorize […]
