Stay informed on the latest security practices and potential threats to keep yourself and your data safe.
Recent Security News Articles
The following is a phishing email. If you receive this type of email, please do not respond to it or click on any hyperlinks.
In UC’s ongoing commitment to safeguarding and protecting your personal data, the UC Office of the President (UCOP) is introducing enhanced security verification for accessing UCPath beginning on December 20, 2024.
The UCLA Information Security Office would like to raise awareness and urge caution related to an external website impersonating the legitimate UCLA Single Sign On (SSO) Authentication page to carry out credential harvesting attacks.
October marks Cybersecurity Awareness Month (CAM), an annual, nationwide initiative dedicated to educating individuals and organizations on how to fortify their digital security. As we ramp up for another academic year, it is a great time to be reminded that cybercriminals can strike from anywhere and ongoing cybersecurity awareness training is important to help us sharpen skills and protect against data breaches, phishing, and other cyber threats.
The UCLA Information Security Office is aware of a phishing campaign attempting to coerce recipients into entering their UCLA Login and MFA credentials onto a fake UCLA Login webpage. This is not a legitimate e-mail and recipients should not provide any information or click any links associated with the phishing e-mail.
UCLA Information Security Office is aware of UCLA students being targeted by fake job and internship scams. Please be mindful of phishing emails that may be disguised as a job opportunity.
Example Email:
---------------
Join Direct Relief's Emergency Engagement Team! We're expanding our mission nationwide and seeking dedicated individuals to join us.
On January 24, 2024, our IT team identified and stopped an illegal intrusion into the Life Sciences Division IT environment. We believe our actions isolated the unauthorized access to the targeted area, which is 1.19% of the campus community. We have engaged a leading cybersecurity firm to assist in our response and notified the FBI. With their assistance, we are conducting a thorough assessment of the incident, including determining the extent of the impact to servers and data.
The UCLA Information Security Office is aware of a phishing campaign attempting to coerce recipients into entering their credentials onto a fake UCLA 2FA credentials webpage. This is not a legitimate e-mail and recipients should not provide any information or click any links associated with the phishing e-mail.
The UCLA Information Security Office is aware of a phishing campaign attempting to coerce recipients into receiving a piano. This is not a legitimate e-mail and recipients should not provide any information or reply back to the sender.
These phishing e-mails may include messages the below:
From: <ad_anwar@optonline[.]net>
Subject: --- Piano Gift You will Love To Have ---
