UIT Alert: UIT Security Alert: Phishing/Malware Messages

Current Status

ResolvedUIT Security Alert Update: Phishing/Malware Messages

Affected Services

No services are affected by this event.

Event Updates

IssueUIT Security Alert: Phishing/Malware Messages
October 8, 2013 , 8:00 AM

Many faculty and staff have reported receiving messages today with the subject,  “Annual Form - Authorization to Use Privately Owned Vehicle on State Business.”  This email informs the reader that in order to use their personal vehicle for University business, they must annually to fill out and sign the attached form and have it signed by their supervisor.

This is NOT a legitimate University of Houston email.

Rather, this message is designed to trick unsuspecting users into opening the attachment.  The attachment contains malicious software that will infect the computer when opened. The email looks like it was sent by a University of Houston employee using their UH account (the employee name varies widely), but this address is spoofed, and the message is not legitimate. Users should NOT open the attached file and should delete this email immediately. If you have opened the attachment please contact your local IT Support person, your College/Department Information Security Officer,or IT Security at 832.842.4695 or via email at security@uh.edu.

What should you do?

  1. If you receive a message such as described above, do not open the attachment or click on any website links included in the message. Delete the message.
  2. If you already have opened the attachment please contact your local IT Support person, your College/Department Information Security  Officer, IT Security at security@uh.edu or via phone at 832-842-4695.
  3. If you are unsure about the validity of a message, you may forward it to UIT Security at security@uh.edu for assistance.
  4. As always, please make sure that your computer is fully up to date with software and anti-virus updates. Contact your local IT support for assistance if necessary.
IssueUIT Security Alert Update: Phishing/Malware Messages
October 10, 2013 , 12:30 PM

UH computers have been experiencing issues due to being infected the with the “Annual Form - Authorization to Use Privately Owned Vehicle on State Business" malware message attachment.   If you are having trouble opening files or accessing data on file shares, please contact your local IT Support person, your College/Department Information Security Officer, or UIT Security at security@uh.edu or via phone at 832-842-4695 immediately. This could be caused by your system being infected with this virus. You should also make sure you are using the current McAfee dat file which will detect and remove the malware.

ResolvedUIT Security Alert Update: Phishing/Malware Messages
October 25, 2013 , 12:01 AM