UIT Alert: UIT Security Alert: Phishing/Malware Messages
UIT Security Alert Update: Phishing/Malware Messages
No services are affected by this event.
Many faculty and staff have reported receiving messages today with the subject, “Annual Form - Authorization to Use Privately Owned Vehicle on State Business.” This email informs the reader that in order to use their personal vehicle for University business, they must annually to fill out and sign the attached form and have it signed by their supervisor.
This is NOT a legitimate University of Houston email.
Rather, this message is designed to trick unsuspecting users into opening the attachment. The attachment contains malicious software that will infect the computer when opened. The email looks like it was sent by a University of Houston employee using their UH account (the employee name varies widely), but this address is spoofed, and the message is not legitimate. Users should NOT open the attached file and should delete this email immediately. If you have opened the attachment please contact your local IT Support person, your College/Department Information Security Officer,or IT Security at 832.842.4695 or via email at firstname.lastname@example.org.
What should you do?
- If you receive a message such as described above, do not open the attachment or click on any website links included in the message. Delete the message.
- If you already have opened the attachment please contact your local IT Support person, your College/Department Information Security Officer, IT Security at email@example.com or via phone at 832-842-4695.
- If you are unsure about the validity of a message, you may forward it to UIT Security at firstname.lastname@example.org for assistance.
- As always, please make sure that your computer is fully up to date with software and anti-virus updates. Contact your local IT support for assistance if necessary.
UH computers have been experiencing issues due to being infected the with the “Annual Form - Authorization to Use Privately Owned Vehicle on State Business" malware message attachment. If you are having trouble opening files or accessing data on file shares, please contact your local IT Support person, your College/Department Information Security Officer, or UIT Security at email@example.com or via phone at 832-842-4695 immediately. This could be caused by your system being infected with this virus. You should also make sure you are using the current McAfee dat file which will detect and remove the malware.