Phishing Alert and Increased Compromised Accounts

View All


Printer-friendly version PDF version

Phishing Alert and Increased Compromised Accounts

To: All Faculty and Staff


Gil Salazar, Interim Deputy CISO, UA Information Security

Subject: Phishing Alert and Increased Compromised Accounts

Date: May 5, 2016

Multiple phishing campaigns targeting faculty and staff this week have been reported to UA Information Security. As a reminder, phishing is a technique used to obtain sensitive information, such as usernames or passwords, by sending emails designed to trick the user into providing the information, or to open an attachment that installs malware on devices.

Subject lines in recent phishing emails included Project Review and File Message.

Following these phishing reports, UA Information Security and the Financial Services Office has seen an increase in suspicious changes to employee direct deposit information. 

What should I do if I receive a suspicious email?
If you receive an unsolicited email or you are unsure of the sender:

1.  Do not reply, click on any links, or open any attached files

2.  Check the UA Information Security phishing alerts page to see if this is a known phishing message.

3.  If the suspicious email is not listed in the phishing alerts, forward the email as an attachment to

If you are concerned that you or your device may have been compromised, please contact your local IT support or the 24/7 IT Support Center (520-626-8324).

How do I know if my information has been compromised? 
If your direct deposit information is changed, you will receive an email alert. However, if your NetID has been compromised, remember that the perpetrator may be checking your email and delete the notification. If you are concerned, log into your UAccess Employee account, and verify that your information is correct.

What can I do to protect my information and account?
You are strongly encouraged to enroll in Global NetID+ two-factor authentication. While NetID+ can provide a layer of protection, it will not protect your UAccess accounts if your NetID password is compromised. Enabling Global NetID+ requires two-factor authentication on all University systems. 

Enroll in NetID+ today, and enable Global NetID+ after you enroll. 

Visit our phishing awareness page for additional information and advice about these and other kinds of email phishing attacks.

UA@Work is produced by University Communications

Marshall Building, Suite 100. 845 N. Park Ave., Tucson, AZ 85719 (or) 
P.O. Box 210158B, Tucson, AZ 85721

T 520.621.1877  F 520.626.4121

Feedback University Privacy Statement 

2021 © The Arizona Board of Regents on behalf of the University of Arizona