Compromised UMS User Account?

If you've recently been notified by the IT Helpdesk that your account was compromised and you are wondering what to do next, here are some ideas!

Detailed Information

UMS Account:

• Change your password
• Review your Gmail filters (Settings / All Settings / Filters and Blocked Addresses), especially for any that automatically trash inbound messages matching certain keywords (e.g. Direct Deposit, Banking, etc)
• Review your Gmail account settings at myaccount.google.com AND in Gmail settings (Settings / All Settings / Accounts and Import, etc)
  • Sometimes your Google display name may be changed to impersonate an individual or department
• Check other UMS systems where you store sensitive data, starting with MaineStreet Employee Self Service if you have Direct Deposit
• Use Google's Security Checkup tool (myaccount.google.com/u/0/security-checkup) and follow any recommendations you find there.
• Consider impact of possible exposure of any other sensitive information intentionally or accidentally stored in your UMS email account (driver's license ID, bank account, SSN, credit card numbers, passwords to other accounts, etc). 
• To become more phishing resistent, turn on MFA for your UMS account if you haven't already 

Non-UMS Accounts:

• Change Passwords to any non-UMS accounts where you might have used the same or similar password.
• Visit the FTC.gov site on Identity Theft for recommendations on protecting your personal information.
• Place Credit Freeze on your account at Major Credit Agencies (Equifax, Experian, and TransUnion)

Related Articles

• Opt-In Phishing Awareness Program

Environment

• accounts
• security