Skip to content Skip to main navigation Report an accessibility issue
Information Security

There was PHISHING. Then, there was SMISHING!



A single sign-on (SSO) service allows you to log in to multiple accounts using one login credential, such as your NETID and the Central Authentication Service (CAS). Unfortunately, you aren’t the only one who benefits from this service. Cybercriminals are taking advantage of SSO services in a recent smishing (SMS phishing) scam.

A SMISHING scam begins with cybercriminals sending you a text message about an important update to one of the university’s policies. The text message instructs you to tap a link to read the updated policy. Tapping on the link takes you to a fake login page and prompts you to enter your login credentials, allowing the cybercriminals to use your credentials to access your account and other accounts linked through the service. Once cybercriminals gain access, they can steal sensitive information from you and your organization.

BUT WAIT, you say to yourself. “Doesn’t 2FA protect the account?” Yes. It does, but if you aren’t paying attention, you just handed the bad guy your credentials. ANY system using those same credentials where 2FA is not required can become compromised. 2FA is great for protecting information systems, but you still must protect your credentials.
 
Follow the tips below to stay safe from SMISHING and similar scams:
·       Always use caution and skepticism when receiving and attending to unexpected text messages. While this scam targets a particular SSO service (Okta), this technique can be used with any authentication service.
·       Think before you click! Cyberattacks are designed to catch you off guard and count on you to act impulsively.
·       Don’t tap on a link in a text message that you aren’t expecting. Instead, open your internet browser and navigate to the organization’s official website.
·       NEVER re-use your UT credentials (your official UT NetID and password) for any other sites (i.e., Facebook, Dropbox, Snapchat, etc.).

If you do fall prey to such a scam, call the OIT HelpDesk at (865) 974-9900 and report it. Then, immediately change your password!