Most cybercriminals will follow an event like what occurred with Canvas on May 7th with phishing and smishing attempts via phone, email or text to trick you into giving them more information that they will use to steal your identity, someone else's identity or use the information to gain unauthorized access into university computer systems.  

Be alert and follow these best practices: 

• Use the official link every time. Bookmark the university's official sign-in page (you can find it at the top right of every university website) or use the official mobile app — don't click sign-in links sent by email or text.  
  
• Be skeptical of urgent change password or sign-in alert emails. Messages like "your password expires today" or "unusual sign-in detected" are a common trick. Follow the official password reset process in the Service Portaland do not click on any links in suspicious emails.
  
• Deny unexpected Duo prompts. If you didn't try to sign in, don't approve the prompt. Report it to the Service Desk.  
  
• Never share a code — and never type in one someone sent you. The Service Desk will never ask for one, and a code that arrived from someone else in your email, text or chat is almost certainly an attack.  
  
• Use a different password for every account. A password manager makes this easy. If you saw anything unusual on Canvas during the breach window, it is strongly recommended that you reset your university password as a precaution.  
  
• Keep sensitive details out of Canvas messages. Medical, disciplinary and other private information shouldn't go in platform messages or free-text boxes.  
  • Faculty: please avoid unvetted third-party tools or free add-ons.  
• Pause when something feels off.  AI-cloned voices and convincing emails are making attacks harder to spot. A short skeptical pause — "does this feel right?" — is the single best defense.  

How to Report:  
When in doubt, report. Even small reports help protect the whole campus community.  

• Suspicious emails: Use the Report Phishing button in Outlook, find directions here.  
• Suspicious calls, texts and MFA prompts: Call the Service Desk at 303-724-4357 to report.