Skip to main content
Skip header
Report expired on 31. 5. 2023!

Statement on the phishing attack

Statement on the phishing attack
yesterday and this morning (May 11-12, 2023), there was a large-scale phishing attack on the users of the University through a misleading message referring to obchod-vsb.cz.

This attack was organised with the knowledge of University staff responsible for IT systems security at the University and the Cyber Security Management Committee. It was, therefore, a "simulated attack".

Staff and students are assured that no orders have been implemented and no payments have been or will be made. The information systems were entirely under control during this attack, and the entire course of the test was monitored and documented.

This type of security testing is commonly applied as prevention and mapping IT security practices within an organisation and is essential for developing IT security in organisations. This carefully prepared test aimed to map the reactions of users and IT staff to this type of attack. The attack was conducted using artificial intelligence and technical means commonly available to foreign attackers.

The correct user procedure is not to react to this type of attack and report the incident through the helpdesk system.

We thank everyone who acted in this way; we thank them for their cooperation, patience and timely reporting of this attack. We would also like to reassure those users who entered their login credentials into the fake IT system that their account has not been misused. Nevertheless, the login credentials should be considered misused, and therefore users who have entered their password into the phishing site will be automatically prompted to change their password.

A detailed analysis will be carried out in the near future, and the outputs from this test will be applied to enhance the University's IT security.

Created: 12. 5. 2023
Category:  Announcements
Entered by:  Administrator
Department: 9920 - Public Relations
Back