Compromised Accounts

Despite appropriate security precautions, there is always a risk that an unauthorized individual may gain access to a user account. Account credentials, including usernames and passwords, are high-value targets frequently exploited to gain access to sensitive or financial information.

If you suspect that any of your accounts (UTA or personal) have been compromised, take the following actions immediately:

Required Actions

Change Your Password(s)

Immediately update the password for the affected account
Avoid using the same password for other accounts not associated with the employee or student account
Ensure new passwords are strong, unique, and not reused across systems

Review Email Account Settings

Check for Unauthorized Auto-Responses

Verify that no automatic replies have been created or modified
Remove any suspicious or unauthorized content

Check for Unauthorized Email Forwarding

Ensure emails are not being redirected to unknown external addresses

Inspect Email Activity

Review your Sent folder for messages you did not send
Check your Inbox for suspicious activity

Check for Password Reset Activity

Review Inbox and Trash folders for password reset emails
Be aware that attackers may delete these messages to avoid detection

Additional Recommendations

Enable Multi-Factor Authentication (MFA)
Monitor accounts for unusual activity
Run antivirus or endpoint security scans

Report the Incident

All suspected account compromises must be reported immediately

Report Incident