Account lockouts due to compromised passwords

Tuesday, February 25, 2014

What is happening? Starting Saturday, February 22, we have observed a much higher incidence than usual of uwaterloo email accounts being used to send spam.

Why is this happening? Based on feedback from affected individuals, IST Information Security Services believes that this is a result of passwords compromised in a breach of LinkedIn in 2012 and GitHub in 2013.

What should you do to protect yourself? If you have used your uwaterloo email address and WatIAM password on a LinkedIn or GitHub account you should *immediately* change your passwords on both services. IST recommends that everyone should avoid using the same password for more than one service.

What should I do if my account is locked out? Contact the IST Service Desk (CHIP), helpdesk@uwaterloo.ca or ext. 44357 or your faculty IT/helpdesk.

Questions/concerns? Please contact the IST Service Desk (CHIP), helpdesk@uwaterloo.ca or ext. 44357.

  1. 2020 (43)
    1. April (3)
    2. March (13)
    3. February (10)
    4. January (17)
  2. 2019 (124)
    1. December (17)
    2. November (12)
    3. October (11)
    4. September (8)
    5. August (12)
    6. July (9)
    7. June (9)
    8. May (13)
    9. April (8)
    10. March (8)
    11. February (7)
    12. January (10)
  3. 2018 (112)
    1. December (6)
    2. November (7)
    3. October (8)
    4. September (10)
    5. August (9)
    6. July (11)
    7. June (11)
    8. May (12)
    9. April (9)
    10. March (8)
    11. February (5)
    12. January (16)
  4. 2017 (113)
  5. 2016 (136)
  6. 2015 (203)
  7. 2014 (210)
  8. 2013 (95)
  9. 2012 (187)
  10. 2011 (120)
  11. 2010 (114)
  12. 2009 (233)
  13. 2008 (100)
  14. 2007 (2)