External Email Banner for Faculty and Staff
Due to the rise in email impersonations and phishing attacks, the Office of the Chief Information Security Officer (CISO) will be adding a banner to all external email to help faculty and staff quickly identify whether a message is from outside the institution or from a U of T sender.
Beginning July 2020, the new external email banner will be rolled-out to UTM faculty and staff in three phases: early adopters in July, administrative staff in early August, and faculty in late August.
How it works
An external email banner will be added to the beginning of email originating from outside of U of T’s UTmail+ service. This may include newsletters and notifications. If you believe a message has been flagged as external in error, submit a ticket to the UTM Service Desk.
Universities worldwide are facing an increase in fraudulent email, known as phishing attacks, directed at faculty and staff. The University community is especially vulnerable due to the rapid move to remote work and learning due to the COVID-19 pandemic.
Fraudulent email impersonations
Many institutions, including the U of T, have noted an increase in fraudulent email impersonations of faculty and staff in leadership positions. These messages usually originate from free email accounts, which at first glance, may appear to be from a legitimate U of T sender, often looking for free gift cards or asking to send money.
Phishing attacks are becoming increasingly sophisticated and anyone can fall victim to one. However, the following resources outline steps you can take to protect yourself:
- UTM Anti-Phishing/Fraudulent Resources
- Citizen Lab’s Security Planner
- Canadian Centre for Cyber Security
- U of T Security Matters