Be Vigilant Against Phishing Attempts

OIRT constantly monitors our network for new phishing attempts and implements rules to prevent these messages from reaching our email system. We catch and delete over 90% of phishing emails before they reach our community. However, achieving a 100% catch rate without blocking some legitimate emails is impossible. Therefore, it’s crucial for our community to verify the legitimacy of every email before responding.

The threat of phishing attacks is always high. Bad actors frequently request personal email addresses or mobile numbers for texting, aiming to divert victims from our secure environment. FDU will never request your personal email address or ask for responses via personal email.

Always verify the source of emails before responding. Messages pretending to come from our community but originating from external email domains can be identified by the [External] tag in the subject line.

For additional tips on recognizing phishing emails and steps to report them, please review the articles below:

Multi-Factor Fatigue

Do NOT accept a Cisco Duo multi-factor authentication challenge unless you are actively trying to log into one of our systems. Receiving a Duo challenge without attempting to access an FDU system likely means your password has been compromised. Scammers often try logging into an account repeatedly, hoping a community member will accept the Duo challenge to cease the persistent requests. Instead of granting the scammer access to your account, change your password immediately and report the potential compromise to the University Technical Assistance Center at (973)-443-8822.

WISP Compliance

Our online WISP Training is mandatory and required every two years. Regularly, auto-generated emails are sent to those not in compliance. Employees who are non-compliant will face denial of new service requests through the SAMI Support Portal, and access to all systems and services may be restricted following multiple unanswered non-compliance communications.

See also