Stop! A DUO Push You Didn't Initiate Cybersecurity Awareness Month

Hello UMBC Community,


We rely on Duo two-factor authentication to protect our accounts, and it's an excellent defense. However, cybercriminals are always looking for new ways to get past our security. This week's topic is all about what to do if you receive a Duo push notification you didn't initiate.

You're working on your computer, not logging into anything new, and suddenly your phone buzzes with Duo push notifications, including SMS texts or phone calls from Duo. What's happening? This is likely an attacker who has obtained your password and is attempting to bypass Duo to access your account.

Your immediate action is critical.

Remember, a Duo push notification is like a digital handshake. You must be the one to initiate it. If someone else is trying to shake your hand, don't approve the connection!

If you received a Duo push notification you did not initiate, deny the request, change your password, and immediately report the event to the security team at security@umbc.edu. Your report helps protect everyone!

Stay safe out there.

Fraudulent DUO Push Notification with an example. ]]> Hello UMBC Community, We rely on Duo two-factor authentication to protect our accounts, and it's an excellent defense. However, cybercriminals are always looking for new ways to get past our... Image https://assets2-dev.my.umbc.edu/system/shared/attachments/3e667df2a67ad128d5210c451e434bbe/69e5ad69/news/000/152/867/74cf190d5c38c1a052d96e4ad0ec10fd/Week 4.png?1758732647 https://dev.my.umbc.edu/api/v0/pixel/news/152867/guest@my.umbc.edu/2cc7078ed3918c2bb439a52bc0d0239e/api/pixel cybersecurity mfa security Division of Information Technology (DoIT) https://dev.my.umbc.edu/groups/doit https://assets2-dev.my.umbc.edu/system/shared/avatars/groups/000/000/021/d27760c5de12c74b73faec8d0e631acf/xsmall.png?1727453227 https://assets2-dev.my.umbc.edu/system/shared/avatars/groups/000/000/021/d27760c5de12c74b73faec8d0e631acf/original.JPG?1727453227 https://assets1-dev.my.umbc.edu/system/shared/avatars/groups/000/000/021/d27760c5de12c74b73faec8d0e631acf/xxlarge.png?1727453227 https://assets3-dev.my.umbc.edu/system/shared/avatars/groups/000/000/021/d27760c5de12c74b73faec8d0e631acf/xlarge.png?1727453227 https://assets2-dev.my.umbc.edu/system/shared/avatars/groups/000/000/021/d27760c5de12c74b73faec8d0e631acf/large.png?1727453227 https://assets2-dev.my.umbc.edu/system/shared/avatars/groups/000/000/021/d27760c5de12c74b73faec8d0e631acf/medium.png?1727453227 https://assets2-dev.my.umbc.edu/system/shared/avatars/groups/000/000/021/d27760c5de12c74b73faec8d0e631acf/small.png?1727453227 https://assets2-dev.my.umbc.edu/system/shared/avatars/groups/000/000/021/d27760c5de12c74b73faec8d0e631acf/xsmall.png?1727453227 https://assets4-dev.my.umbc.edu/system/shared/avatars/groups/000/000/021/d27760c5de12c74b73faec8d0e631acf/xxsmall.png?1727453227 Division of Information Technology (DoIT) https://assets3-dev.my.umbc.edu/system/shared/thumbnails/news/000/152/867/b70cbf9796f10cb59eabad854ce1ca91/xxlarge.jpg?1758732569 https://assets3-dev.my.umbc.edu/system/shared/thumbnails/news/000/152/867/b70cbf9796f10cb59eabad854ce1ca91/xlarge.jpg?1758732569 https://assets3-dev.my.umbc.edu/system/shared/thumbnails/news/000/152/867/b70cbf9796f10cb59eabad854ce1ca91/large.jpg?1758732569 https://assets2-dev.my.umbc.edu/system/shared/thumbnails/news/000/152/867/b70cbf9796f10cb59eabad854ce1ca91/medium.jpg?1758732569 https://assets2-dev.my.umbc.edu/system/shared/thumbnails/news/000/152/867/b70cbf9796f10cb59eabad854ce1ca91/small.jpg?1758732569 https://assets3-dev.my.umbc.edu/system/shared/thumbnails/news/000/152/867/b70cbf9796f10cb59eabad854ce1ca91/xsmall.jpg?1758732569 https://assets4-dev.my.umbc.edu/system/shared/thumbnails/news/000/152/867/b70cbf9796f10cb59eabad854ce1ca91/xxsmall.jpg?1758732569 Cybersecurity Awareness Month: Fraudulent DUO Push Notifications 16 0 true Mon, 13 Oct 2025 09:01:44 -0400