Security Notices

Text Message Phishing Scam

Thu, 22 Oct 2009 17:47:36 GMT

The Utah Division of Consumer Protection has reported a recent phishing scam involving text messages sent to cell phones.

Draft security policies and rules

Wed, 21 Oct 2009 15:58:27 GMT

Three draft versions of security related policies and rules have been posted to the Secure IT website.

New PHI Breach Notification Reporting Requirements

Fri, 09 Oct 2009 21:02:46 GMT

As of September 23, 2009, The University of Utah (including Health Sciences) is subject to new data breach notification requirements with regard to protected health information (PHI).

September 23, Two Phishing Emails Sent to U of U Accounts

Thu, 24 Sep 2009 21:04:06 GMT

There are two new phishing emails that have been found in University of Utah accounts. These emails attempt to trick users into revealing their usernames and passwords.

Phishing Scam: "Utah notification"

Mon, 10 Aug 2009 14:25:50 GMT

Phishing Scam: "Technical Service Unit"

Secure IT — Fri, 19 Jun 2009 22:19:30 GMT

The following is an example of a recent malicious phishing email sent to University of Utah email accounts in an attempt to trick users into revealing usernames and passwords.

Phishing Scam: "Help Center"

Secure IT — Wed, 27 May 2009 14:18:31 GMT

The following is an example of a recent malicious phishing email sent to University of Utah email accounts in an attempt to trick users into revealing usernames and passwords. Please note: University of Utah will never ask you for your password. Should you receive an email that you have questions about, please call your helpdesk before responding. The main campus help desk’s phone number is 581-4000 and the Health Sciences Center help desk’s phone number is 587-6000.

Phishing Scam: "Mailbox Quota Exceeded"

Secure IT — Mon, 18 May 2009 19:19:29 GMT

The following is an example of a recent malicious phishing email sent to University of Utah email accounts that hopes to trick users into revealing their usernames and passwords. Please note: University of Utah will never ask you for your password. Should you receive an email that you have questions about, please call your helpdesk before responding. The main campus help desk’s phone number is 581-4000 and the Health Sciences Center help desk’s phone number is 587-6000.

Phishing Scam: "Confirm your account"

SecureIT — Mon, 11 May 2009 22:46:17 GMT

The following is an example of a recent malicious phishing email sent to University of Utah email accounts that hopes to trick users into revealing their usernames and passwords. Please note: University of Utah will never ask you for your password. Should you receive an email that you have questions about, please call your helpdesk before responding. The main campus helpdesk’s phone number is 581-4000 and the Health Sciences Center helpdesk’s phone number is 587-6000.

April 13, 2009 Conficker virus contained

Secure IT — Mon, 13 Apr 2009 16:16:21 GMT

This weekend campus IT got the Conficker virus contained. Currently we are working on cleanup items related to the outbreak.

HSC users: Drive mapping issues have been resolved. If you have any problems with drive mapping please click the globe icon by your start button and they should be restored. Also the internet filter is still put in place. If you are unable to access a website you need for work, please contact the ITS Help Desk at 801-587-6000 to have it added to the allowed list.

How to remove the Conficker worm: Instructions for home users

Secure IT — Fri, 10 Apr 2009 18:25:17 GMT

There has been a worldwide outbreak of a highly infective computer virus: the Conficker worm. The University network has been affected by this outbreak. There is a serious concern that personal data may be compromised. This includes login and password information, patient data, student data, credit card numbers, etc. Follow this link to learn about three steps that home users must follow in order to clean their computers of the Conficker virus and also prevent re-infection of the University network.

Conficker worm has activated!

Secure IT — Fri, 10 Apr 2009 06:11:46 GMT

The latest Conficker worm variant has activated. A worm is a self-replicating computer program that takes advantage of vulnerabilities, or weaknesses, in computers. Once the worm has infected a computer, it generally has full access and can steal information from the computer or take control of the computer. The Conficker worm, once it infects a computer, is programmed to gather financial information (such as social security numbers) and send it to a central location.

Conficker worm variant is set to activate April 1

Secure IT — Mon, 30 Mar 2009 20:32:30 GMT

The latest Conficker worm variant is set to activate April 1. "When it activates, version C will prevent certain security products and services from running and will block infected computers from connecting with certain security websites. The list of security processes that the component attacks include some popular tools, including Wireshark, procmon, TCPView, and RegMon. In addition, the worm's authors moved from a 250-a-day domain-generation algorithm to a new one that generates 50,000 domain names."

TransWest Credit Union Phishing Scam

Tue, 17 Mar 2009 14:28:10 GMT

Some University staff are receiving email, pages and telephone calls from TRANSWESTCU. This is a scam, and messages have been sent to TransWest Credit Union members as well as people who do not have accounts with TransWest Credit Union. These notices did not come from the credit union. U of U staff may receive a page that says: “TRANSWESTCU Transwest Credit Union notifies you about: 1D1012 NOT AUTHORIZED” and then provides a toll-free number. You are then asked for your credit card number and personal identification number (PIN). This is a scam - please do not respond. For more information, please visit the TransWest Credit Union website at

809 Area Code Scam

Tue, 10 Mar 2009 21:51:24 GMT

There are a number of emails circulating that warn of scams involving the 809 area code. 809 area code numbers can be used as "pay-per-call" numbers, much like 900 area code numbers. While this scam is real, it is not common, and often the emails circulating that warn of this scam greatly exaggerate the consequences. See Snopes.com for more information regarding the history of this email.

Cell Phones on the Do Not Call List

Tue, 10 Mar 2009 21:51:04 GMT

Bogus emails are making the rounds warning people to register their cell phones with the "Do Not Call" directory or risk receiving calls from telemarketers. See Snopes.com for more information regarding the history of this email.