Information security update: be vigilant against cyber threats
The Information Security team is providing tips on how you can protect yourself against phishing attacks.
Over the past few weeks, we have been made aware of a number of cyber attacks targeted towards academic institutions.
A number of these attacks are pretending to be from library services or IT support desks and have subject lines such as ‘library notification’, ‘library services’, ‘library account’, ‘library access renewal’ and ‘library notices’ and are trying to access log in details.
The attackers have also been setting up fake webpages designed to look like legitimate University login pages, such as the EASE login page.
How can I protect myself?
- Check all links in emails carefully before you click on them.
- Be wary of emails that do not come from known group accounts, e.g. helpdesk style emails that come from an individual sender.
- Do not automatically trust any email simply because it comes from a university address - it may be that user's email has been compromised.
- Don't reuse your password for other accounts and consider using a password manager.
What do I do if I receive one of these emails?
If you receive a phishing email pretending to be from the University or believe that your email has been compromised, contact the IS Helpline immediately via 0131 651 5151.
How can I get further support?
The University runs a training session on Phishing, Scams and Social Engineering that can help users spot such attacks. Sessions can be requested by contacting the Information Security team.
You can also refresh yourself with our Information Security Essentials LEARN training course. This course gives the basics on many common kinds of cyber-attack and helps you to be more aware of online threats.