In recent weeks, an email has been sent multiple times to students and staff offering free, valuable products for which only shipping costs would need to be paid. This is a scam: offers that seem too good to be true usually are. Do not contact the mentioned sender or phone numbers.
Compromised accounts
These messages were sent from compromised accounts. These users have previously fallen victim to phishing.
Lately, we have been seeing many SharePoint or document sharing requests with subjects such as:
"<<User>> shared 'University of Twente May 2026 Payroll Notice' with you"
Although these emails may appear legitimate at first glance, they originate from malicious actors attempting to obtain login credentials.
Be critical
Therefore, always critically check whether the sender's identity aligns logically with the content of the message. Be extra vigilant regarding unexpected SharePoint or document sharing requests. In doubt? Do not open any links or attachments, and report this to cert@utwente.nl
Would you like to know more about how to recognise these types of SharePoint phishing emails? Then check out our blog for examples and indicators.
More recent news
Tue 9 Jun 2026Adjusted opening hours of UT buildings, Sport Centre, Vrijhof and catering locations during summer period 2026
Tue 9 Jun 2026TechMed Magazine 2026 is out now!
Mon 8 Jun 2026In memoriam: Rick van Zijl
Thu 4 Jun 2026Closures of bike and pedestrian paths
Wed 3 Jun 2026UT Graduates Help the Next Generation Find Their Way