Tips to Combat Financial Scams

Hello UMBC Community!

The Cybersecurity Assurance and Digital Trust Department in the Division of Information Technology has some tips for you to stay safe from financial scams that have recently taken place.

Attackers send phishing emails to trick unsuspecting victims into providing their user ID, password, and multifactor codes. Often, these phishing lures contain a link that redirects the user to a login page.

DoIT has observed cases where the attackers are mirroring legitimate login screens to capture credentials and multifactor authentication (MFA) codes in real time. The only indicator that something is amiss is the URL in the address bar.

Follow these general tips to safeguard your financial data and funds:

  1. Use Strong & Unique Passwords: Never reuse your UMBC password on other platforms — including financial services such as BankMobile. Create unique passwords for each separate account.
  2. Periodically Verify Your Personal Information: Log into your accounts and make sure all your information, such as linked financial accounts, billing address, phone number, and email addresses are correct.
  3. Check the Link: Look over URLs and ensure you are accessing a trusted service. If you see a login page but the URL does not look legitimate, do not provide your password or MFA codes. It is best practice to bookmark trusted services to navigate to them directly.
  4. Don't Give Away Your Secrets: UMBC and your financial institutions will never call, email, or text you to ask for your password or MFA codes.

If you give someone your password and MFA codes, you are handing them the keys to your account. This could result in financial loss or unauthorized activity for which you may be held responsible.

If you see something, say something! Report all phishing emails to security@umbc.edu.

 

Stay smart, stay safe!

]]> Hello UMBC Community! The Cybersecurity Assurance and Digital Trust Department in the Division of Information Technology has some tips for you to stay safe from financial scams that have recently... https://beta.my.umbc.edu/api/v0/pixel/news/153810/guest@my.umbc.edu/72d523b7d7a1090b5c376def4e6d019d/api/pixel cyber cybersecurity itsecurity news scam IT Security - DoIT Cybersecurity Assurance and Digital Trust https://beta.my.umbc.edu/groups/itsecurity https://assets3-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1776895340 https://assets3-beta.my.umbc.edu/images/avatars/group/7/original.png?1776895340 https://assets2-beta.my.umbc.edu/images/avatars/group/7/xxlarge.png?1776895340 https://assets1-beta.my.umbc.edu/images/avatars/group/7/xlarge.png?1776895340 https://assets3-beta.my.umbc.edu/images/avatars/group/7/large.png?1776895340 https://assets1-beta.my.umbc.edu/images/avatars/group/7/medium.png?1776895340 https://assets4-beta.my.umbc.edu/images/avatars/group/7/small.png?1776895340 https://assets3-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1776895340 https://assets4-beta.my.umbc.edu/images/avatars/group/7/xxsmall.png?1776895340 IT Security - DoIT Cybersecurity Assurance and Digital Trust https://assets3-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/810/60ff9bc17f132ae94f82b3eae7fab1b5/xxlarge.jpg?1761157135 https://assets4-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/810/60ff9bc17f132ae94f82b3eae7fab1b5/xlarge.jpg?1761157135 https://assets3-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/810/60ff9bc17f132ae94f82b3eae7fab1b5/large.jpg?1761157135 https://assets2-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/810/60ff9bc17f132ae94f82b3eae7fab1b5/medium.jpg?1761157135 https://assets1-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/810/60ff9bc17f132ae94f82b3eae7fab1b5/small.jpg?1761157135 https://assets4-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/810/60ff9bc17f132ae94f82b3eae7fab1b5/xsmall.jpg?1761157135 https://assets2-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/810/60ff9bc17f132ae94f82b3eae7fab1b5/xxsmall.jpg?1761157135 UMBC Cybersecurity text and below it is a shield outline with a check mark in the center 3 0 true Wed, 22 Oct 2025 14:20:01 -0400 Beware of the “ClickFix” Scam Cybersecurity Awareness Month

Hello UMBC Community!

Join us today from 12:00 to 1:00 pm in the breezeway near the Commons to learn more and receive giveaways! We have a f(ph)ishing game and Swedish fish.

As part of Cybersecurity Awareness Month, we want to highlight a new tactic cybercriminals are using called ClickFix. This attack disguises itself as an error message or system alert that looks like it comes from your operating system. The message then instructs you to copy and paste a command into your terminal or command prompt.

Please remember:

  1. Never copy or paste commands from a pop-up window or website.
  2. If you see a suspicious alert, close the window or browser tab immediately.
  3. Report the incident to security@umbc.edu right away so we can investigate.
  4. If you have already entered a command, disconnect from the internet and stop using your device until security reviews it.

ClickFix relies on tricking users into taking action. By staying cautious and reporting anything unusual, you help protect both yourself and our organization.

Report the event to the security team at security@umbc.edu. Your report helps protect everyone!

Thank you for staying vigilant and keeping security a priority.

ClickFix Scam. Never copy Commands into the terminal. Scam example showing "Verification Steps: that involve copy and pasting of instructions. Individuals should never paste commands from a pop-up window or website. Close the window or browser tab immediately.

]]> Hello UMBC Community! Join us today from 12:00 to 1:00 pm in the breezeway near the Commons to learn more and receive giveaways! We have a f(ph)ishing game and Swedish fish. As part of... Image # https://beta.my.umbc.edu/api/v0/pixel/news/153703/guest@my.umbc.edu/8f919e367fe7aded302ab33329693021/api/pixel cyber security sybcersecurity IT Security - DoIT Cybersecurity Assurance and Digital Trust https://beta.my.umbc.edu/groups/itsecurity https://assets3-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1776895340 https://assets3-beta.my.umbc.edu/images/avatars/group/7/original.png?1776895340 https://assets2-beta.my.umbc.edu/images/avatars/group/7/xxlarge.png?1776895340 https://assets1-beta.my.umbc.edu/images/avatars/group/7/xlarge.png?1776895340 https://assets3-beta.my.umbc.edu/images/avatars/group/7/large.png?1776895340 https://assets1-beta.my.umbc.edu/images/avatars/group/7/medium.png?1776895340 https://assets4-beta.my.umbc.edu/images/avatars/group/7/small.png?1776895340 https://assets3-beta.my.umbc.edu/images/avatars/group/7/xsmall.png?1776895340 https://assets4-beta.my.umbc.edu/images/avatars/group/7/xxsmall.png?1776895340 IT Security - DoIT Cybersecurity Assurance and Digital Trust https://assets1-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/703/97d9011c7edc126a4a506b891fdf6990/xxlarge.jpg?1760969772 https://assets1-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/703/97d9011c7edc126a4a506b891fdf6990/xlarge.jpg?1760969772 https://assets1-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/703/97d9011c7edc126a4a506b891fdf6990/large.jpg?1760969772 https://assets1-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/703/97d9011c7edc126a4a506b891fdf6990/medium.jpg?1760969772 https://assets2-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/703/97d9011c7edc126a4a506b891fdf6990/small.jpg?1760969772 https://assets3-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/703/97d9011c7edc126a4a506b891fdf6990/xsmall.jpg?1760969772 https://assets4-beta.my.umbc.edu/system/shared/thumbnails/news/000/153/703/97d9011c7edc126a4a506b891fdf6990/xxsmall.jpg?1760969772 Cybersecurity Awareness Month with the tagline: Stay connected, stay safe, stay smart! 0 0 true Mon, 20 Oct 2025 10:22:01 -0400