To maintain a safe and secure online environment, and to protect users of the University's IT facilities, Information Strategy & Technology Services (ISTS) regularly post announcements to educate users about IT security issues and steps to overcome them.
The UniSA IT Help Desk will NEVER ask you to verify your username and password and/or personal information via email, they will always speak to you over the phone and verify your identity.
Unfortunately, phishing can also be conducted through hoax phone calls. If you receive a phone call claiming to be from the IT Help Desk you are welcome (and encouraged) to ask for a job reference number, you can then call the UniSA IT Help Desk (after locating their contact number on the UniSA website) and quote the reference number to confirm you are speaking with a UniSA staff member.
This article discusses a few simple steps to improve the security of your University login.
The University login provides staff with access to many resources required to perform their work tasks such as email, Internet access, staff portal, file sharing, etc. For some staff this login also gives access to confidential information relating to University administrative processes.
In order to improve the security of your account:
UniSA, along with other Australian universities, are seeing a large number of malicious emails being sent to staff mailboxes. These messages are intended to trick you into opening an attached file or clicking an included link in order to compromise your computer, lock your files for ransom and steal your logon credentials.
Recent malicious messages have been disguised as:
If you receive an unexpected email with an attached document or included link then the best course of action is to not open the attached document and not click the link.
To make it easier to recognise suspicious email, ISTS have published examples with information and pointers that show the email is not legitimate. This information is available here: https://i.unisa.edu.au/askit/staff/email/nuisance/
Example suspicious emails can be found on the IT Security Alerts page.
To protect yourself against fraudulent activity:
Social engineering attacks are designed to convince you to perform actions that result in the release of sensitive data such as UniSA login credentials, bank account details or other personal and confidential information.
As UniSA staff are often subjected to these types of attack, this list of common social engineering techniques is provided to increase your awareness and help you to avoid being tricked:
If you think you have been subjected to any of these attempts please report them to and seek advice from the IT Help Desk.
The targeting of electronic devices used by personnel during overseas travel is a real and persistent threat. Electronic devices likely to be targeted include, but are not limited to, corporate and personal laptops, phones, tablets and removable media such as USB drives and SD cards. The compromise of electronic devices could impact the ongoing operation and security of any organisation.
Generally, the risks associated with electronic device usage during overseas travel involve compromise of electronic devices that will allow attackers to:
If Staff are travelling overseas on University business, contact IT Help Desk for options on increasing security while travelling including use of temporary mobile devices and laptops.
Additional tips to consider while travelling include: