The University is receiving a new wave of phishing attacks — this time via phone. Individuals are calling indicating that they represent an IT organization and are asking for personal information. These calls are NOT legitimate.

The University will never ask you for personal information, logon ID, or passwords via phone. Do not provide any information to these individuals.

If you are unsure, request a phone number and ask to return their call, or call the University or Medical Center Help Desk to inquire about the suspicious activity.

—
Julie Myers
University Chief Information Security Officer

Michael W. Pinch
URMC Chief Information Security Officer