Cybersecurity Notification: Text Impersonation Attacks
UK Information Technology Services (UK ITS) would like to inform students, faculty and staff of scams including texts that appear to come from University executives or employees.
What do these attacks look like?
These text messages are often brief conversations that appear to be from a University executive. They will often solicit a conversation from the recipient in order to gain personal information or an urgent request. These attacks may come directly to a mobile device via text or text to email. Never respond to these types of texts.
What is the best response to these attacks?
For attacks that come to your mobile device directly via text, UK ITS recommends reporting them via the text reporting tools on your phone or by copying the message and forward it to 7726 (SPAM). This helps your wireless provider spot and block similar messages in the future. Additionally, these attacks should be reported to the FTC via ReportFraud.ftc.gov. More information on how to report these attacks are available on the FTC's website at How To Report Spam Text Messages.
For attacks that are delivered via text to your University email account, please use the Report Message button. See How do I report spam and phishing emails? for more information.
How can I prevent falling victim to these types of attacks?
- Do not respond to numbers that you do not know. If it is someone you normally communicate with, contact the UK employee directly via their UK contact information. If you do not normally communicate with the person claiming to have sent the text, do not contact them.
- Be cautious of urgent requests or communication from UK executives or employees that do not normally contact you.
- Do not disclose any personal information with unknown numbers.
UK ITS appreciates your diligence in reporting these attacks.