This uni thought it would be a good idea to do a phishing test with a fake Ebola scare

This uni thought it would be a good idea to do a phishing test with a fake Ebola scare

August 22, 2024 at 06:37AM

UC Santa Cruz students received a deceptive email warning about an Ebola case on campus, which turned out to be a phishing exercise aiming to raise awareness. The simulated attack caused panic and an apology was issued by the university’s chief information security officer. The incident emphasized the importance of accurate phishing training.

After reviewing the meeting notes, it seems that the University of California Santa Cruz (UCSC) conducted a simulated phishing exercise that caused some unintended panic. The email, titled “Emergency Notification: Ebola Virus Case on Campus,” was sent as part of a phishing awareness campaign. However, it led to concerns and prompted an apology from the university’s chief information security officer, Brian Hall. The university has acknowledged the oversight and is working to prevent similar incidents in the future. It is also mentioned that regular cybersecurity training and simulated phishing campaigns are conducted to educate faculty and staff about recognizing and handling suspicious emails. It’s evident that the intention was to raise awareness about phishing, but the chosen topic inadvertently caused distress. The notes also mentioned the importance of careful consideration in simulating phishing attacks to avoid creating distrust and friction among employees. The university is focused on protecting its community from online threats and is taking steps to improve its approach to training in this area.

Full Article