Compromised Account - Changing your Password

 
 

This guide is to aid StFX account users in regaining access to their account in the event it becomes compromised due to spam/phishing attempts.

If you are receiving this knowledge based article, your account has been identified as compromised recently. This typically occurs when credentials are provided through the various spear phishing emails recently circulated. It is likely that you may have clicked on one of the email links and logged to a fake portal that was replicated to look like it originated from StFX or potentially opened an attachment.

What does this mean?
Your identity was compromised, data in your email, contacts and OneDrive may have been copied.
Your email account will be used to send spam and phishing messages ­ this may result in you seeing undeliverable messages for next few weeks.
Your mailbox access has been disabled to prevent any further spam messages from being sent.

What do I do next?

Change your password:

  1. Using the mypassword.stfx.ca tool. (Click here to access the myPassword tool)
    • Do not go back to the password you were using at the time your account became compromised.
    • Choose the appropriate option if you have added the required additional information to your account before your account became compromised.
      • Note: We recommend adding both an external email address & cell phone number.
    • Reset your webFX password.
    •  
  2. If you are unable to reach the myPassword tool please click the following link to access our secondary password reset too. (Click here to access secondary password tool)
    • Click the "Update Profile" option.
      • Enter your StFX username. (x20**abc)
        • Authenticate Using challenge Question.
          • Answer 3 out of 5 question you would have set up prior about yourself.
        • Authenticate Using Text Message.
          • Take verification code sent to phone number and enter it back into verification box - click continue.
        • Authenticate Using Alternate Email Address.
          • Take verification code sent to external email address number and enter it back into verification box - click continue.
      • Confirm that all information is correct/update any outstanding requirements and click finish.
    • Click the "Reset Password" option.
      • Enter your webFX username. (x20**abc)
        • Authenticate Using challenge Question.
          • Answer 3 out of 5 question you would have set up prior about yourself.
        • Authenticate Using Text Message.
          • Take verification code sent to phone number and enter it back into verification box - click continue.
        • Authenticate Using Alternate Email Address.
          • Take verification code sent to external email address number and enter it back into verification box - click continue.
        • Click "Continue".
        • Enter in a new password and click "Reset". Ensure the password change was successful.

Test your new StFX password.

You can log into moodle.stfx.ca to confirm that your newly changed StFX password works, if you are able to log into mesAMIS Reply back to to this email confirming you have changed your password to have your mailbox access restored.

You will notice that if you try to log into office365.stfx.ca you may be prompted to add some additional information to your account, please go ahead and add both an external email address (Hotmail, Gmail, etc) and a cell phone number to your account. These will only be used to verify your identity in the event your need to reset your password/reactive your account in the future.

You may also notice if you click on the "Mail" tile from your Office365 portal you will get a "Protocol Error" message. This will resolve itself in 2-4 hours from the time you change your password in which you will receive one more knowledge based article from us before we can sign off on the validity of your account state.

 

Details

Article ID: 35575
Created
Mon 8/21/17 11:18 PM
Modified
Fri 6/22/18 10:52 AM