Broadcast Time: 09:00 AM

Date: Friday, January 7, 2022

Type: Community Safety Alert (CSA)

Occurrence #: N/A

The University of Toronto Campus Safety Special Constable Service and ITS is alerting the community about a new phishing email that has been sent to several users in the U of T community.

The phishing email has been marked as External and purports to be a voicemail-to-email containing a .HTM file as an attachment. This is NOT a legitimate voicemail email sent by the University's VoIP provider.

If you have received such an email, do not click on the attachment. Report it to phishing@utoronto.ca and delete the email.

Sample of the Phishing Email

What to do if you suspect a phishing attempt/attack…

• If you suspect your password may have been compromised, immediately change it.

• If you receive a phishing message(s) and are using U of T Office 365/UTMail+, please report it using the "report message" function in your inbox. Otherwise, please report it to: phishing@utoronto.ca

• When in doubt about the legitimacy of an email, call or ask the sender in person to confirm if they sent the email.

• If you opened an attachment that was sent in a phishing email, reach out to your local IT service desk immediately.