Information security and cloud email security teams have worked together to identify the source of the phishing events that hit UNMC users Friday, as well as other institutions including Towson and Colorado.
The source has been shut down, and the incident is contained.
UNMC/Nebraska Medicine IT advises: We are receiving reports of people who clicked on the link in the email and entered their credentials. Those people need to change their password IMMEDIATELY and contact the Help Desk at 402-559-7700 so we can take further steps to ensure no hacker is accessing their account.
An example of the email is pictured below:
A second phishing email is pictured here: