University Letter

UND's faculty and staff newsletter

Beware of Zoom-bombing and phishing attacks related to COVID-19

April 2, 2020

The news coverage and impact surrounding the coronavirus has continued to create an opportunity for cybercriminals to take advantage of individuals in the form of phishing attacks, email scams, and hijacking videoconferences.

In an effort to exploit the public’s fears, as well as take advantage of the exponential increase in remote work, cybercriminals are sending email messages claiming to be from legitimate organizations with information about the COVID-19 and pending government stimulus checks. Additionally, Zoom phishing emails and Zoom-bombing of video conferences have increased significantly over the last month.

We ask all UND email and on-line application users to maintain awareness and vigilance.

Phishing Email Awareness

Phishing messages will utilize tactics with a COVID-19 spin to them. Here are some things to be on the lookout for:

  • An email asking you to open an attachment claiming to “provide the latest statistics on the virus”
  • Encouraging you to click a link that will provide helpful information on “staying clear of the virus”
  • Asking you to provide personal information to “see if your area is being affected by the virus”
  • An email asking for information to receive government stimulus checks

If you suspect you received a phishing email, delete it. Additionally, you can report suspected phishing emails via the PhishNotify button on your Office 365/Outlook email.

Zoom Video Conferencing Awareness

Across higher education, there is an increase in Zoom related phishing emails and Zoom-bombing incidents. Zoom-bombing is where Zoom video conferences used for online lessons and business meetings are hijacked and disrupted.  Zoom phishing emails may come in the form of a Zoom meeting request from an official-looking, branded, and registered Zoom domain.  They may include links such as zoom-us-zoom_##########.exe which likely contains malware.  Some best practices to apply when using Zoom include:

  • When utilizing Zoom for official UND business, use the und.zoom.us domain
  • Utilize private meeting rooms
  • Do not share Zoom conference links on public social media
  • Manage screen-sharing options (such as screen sharing to “Host Only”)
  • When accepting a Zoom meeting request, verify it is from a known person and Zoom domain

Additional Zoom best practice security requirements and settings will be provided in the coming weeks.

More information is located on the UIT Working Remotely webpage.

Related Posts

UND Theatre presents ‘Marcus is Walking’ April 16-20
April 16, 2024

Faculty Affairs hosting retired faculty panel April 18
April 16, 2024

Policies posted for campus comment: Catering, Duress Buttons, Religious Accommodations
April 16, 2024