The ITSS department is aware of an Office365 Online learning device application form that has been circulated to our student community via email
(screen shot of form provided below).Please be advised that this email did not emanate from the university’s authorised channel of communication. The university will not ask for your
personal identifiable information through unofficial emails especially without prior notice. You are advised to dismiss such email requests going forward as they are typical phishing attacks.
The simplest way to protect yourself from hackers/phishers is to avoid clicking on any unexpected link in an e-mail message. Do not reply to e-mails soliciting
personal information. Having safely ignored the suspicious e-mail, it crucial to immediately report it to the university authorities or ITSS department.
To further enhance the university’s cyber defences, the ITSS department wants to highlight these common cyber-attacks that everyone should be aware of particularly phishing
attacks. Generally, there has been a spike in these attacks during the COVID-19 lock down period and hence there is need for students to remain vigilant.
Phishing is the most common type of cyber-attack that affects organizations like
ours. Phishing attacks can take many forms, but they all share a common goal – getting you to share sensitive information such as login credentials, credit card information, or bank account details. Although we maintain controls to help protect our networks
and computers from cyber threats, we rely on you to be our first line of defence. Phishing scams aim to trick users into handing over your personal data, usually usernames and passwords through clicking on a link that installs malware or ‘fake’ forms.
As a general rule, please adhere to the following email best practices to be cyber safe:
not provide sensitive personal information (like usernames, ID number, personal address and passwords) over email. ITSS will never ask for your credentials through emails.
not try to open any shared document that you are not expecting to receive.
not click on links or attachments from senders that you do not recognize. Be especially wary of .zip or other compressed or executable file types.
for email senders that use suspicious or misleading domain names.
URLs carefully to make sure they are legitimate and not imposter sites.
especially cautious when opening attachments or clicking links if you receive an email containing a warning banner indicating that it originated from an external source.
and more importantly, If you can’t tell if an email is legitimate or not, please contact ITSS helpdesk.
DUT ITSS Department