News & Alerts
We'd like to recognize Ismail Tasdelen for their efforts in uncovering a cross-site scripting vulnerability on a Duke Health Systems website.
The Duke IT Security Office has received multiple reports of the following widespread phishing attack. It is important to note that the message contains a PDF attachment that directs you to a phishing page that attempts to steal your NetID and password.
The Duke IT Security Office has received multiple reports of the following widespread phishing attacks with the subjects "Duke - Scanned PDF", "Duke University - Scanned PDF" and "School Confirmation Receipt.
Please be advised that Duke University has contracted with an outside group to conduct a sexual harassment survey via campus email.
The IT Security Office has recently received several reports of email fraud attempts where attackers are attempting to impersonate Duke staff. This particular campaign is asking users to purchase iTunes gift cards so that they can use the codes to steal funds.
The IT Security Office has recently received several reports of email fraud attempts where attackers are attempting to impersonate Duke staff.
These attacks usually attempt to impersonate staff members in management positions and follow the same general format:
The Duke IT Security Office has received multiple reports of the following widespread phishing attack.
The Duke IT Security Office has received multiple reports of the following scam email making rounds in the Duke community.
The IT Security Office will be sending the following email around to users whose NetID passwords have not been updated in the last 3 years or more.
Researchers sometimes discover security vulnerabilities with university systems and networks, and Duke recognizes the value of identifying and remediating these issues, in accordance with the university’s responsible disclosure policy found here