IT Impersonation Phishing
IT Impersonation Phishing
Threat Level: Medium
Threat Type: Hybrid Phishing / Social Engineering
Advisory Date: 03/13/2026
Description
A hybrid phishing attack combining email spam flooding with Microsoft Teams voice calls has been observed targeting organizations.
The victim receives a large volume of spam emails in a short period, creating confusion and urgency. Shortly after, the target receives a Microsoft Teams call from an external party identifying themselves as part of the Help Desk or the IS Service Desk team. The caller then requests personal information or account credentials.
What to do:
Legitimate University of Regina IT staff will never ask for your password over the phone.
If you receive an unexpected flood of spam emails followed by a any call from an external party, do not provide any information.
Resolution
If you believe you have been targeted, please contact the IS Service Desk and forward any suspicious emails as an attachment to
Report.Phishing@uregina.ca.
If you are concerned about the security of your account after receiving a phishing message, you can take the following actions:
- Change your password. https://app2.uregina.ca/perl/chpass.pl
- Choose a password that is:
- Completely different than your previous password.
- Not used anywhere else.
- Does not contain your previous password.
- Check your account for email forwarding and mailbox rules.
- Choose a password that is:
Resources
Please contact the IS Service Desk, if you have any questions or require assistance:
Email: Service.Desk@uregina.ca
Phone: 306-585-4685
Toll-free in Canada: 1-844-585-4685
Take cyber security awareness training available to all faculty and staff on Beauceron: https://www.uregina.ca/is/security/training/training-register.html