Avoid falling prey to multifactor fatigue
A cyberattack gaining in popularity is “multifactor fatigue,” when numerous fraudulent push notifications are sent to the owner of a compromised account. The victim is tricked into clicking the “accept” checkmark button thinking it’s legitimate or to make the notifications stop. If you receive a Duo Mobile access prompt on your device that does not directly coincide with your login request (VPN, Citrix, Microsoft Office 365), deny the request(s).
- Immediately change your password.
- If you are using the Duo app, press the red “deny” button to alert Information Security.
- If you are receiving phone calls or texts outside of the Duo app, contact the ServiceDesk to let them know of the incident.
ServiceDesk@UTSouthwestern.edu the ServiceDesk or informationsecurity@utsouthwestern.edu Information Security with questions.