Important CyberSecurity Tip from UTS: Don’t get Sway-ed

Grant Pearson Posted on January 14, 2020 Posted in General

Microsoft Sway is a powerful tool for creating presentations and interactive reports that are distributed via the web. One of Sway‘s biggest advantages is its flexibility. One can make a Sway report look like anything. Since we’re a customer of Microsoft, and we use some of Microsoft’s online services, we tend to trust links to Microsoft products. Attackers are taking advantage of the trust and flexibility built into Sway to create some convincing tricks meant to steal your password.

Here’s an example of a report, created on Sway, to look like you’ve received a fax:

Sway Fax Received Sample

Here’s one that looks like you’ve received a voicemail in Teams:

Fake Microsoft Teams Site in Sway

Typically, you would receive an email with links to one of these pages, and upon clicking further you would be asked for your username and password.

Stay safe with these tips:

If you click a link in an email, and your address bar shows sway.microsoft.com, be on the alert.
Question everything. Is that message really from your coworker? Was I expecting a fax? Would HR send a survey link this way? Does that sound like the President?
Pay attention to detail, and pick up the phone (or use a separate messaging tool) to confirm with the sender before clicking on any links or files you did not ask for or weren’t expecting.
If you aren’t sure about an email you’ve received, contact UTS.

UTS does not want to discourage the use of Sway. It can be a powerful and useful tool. However, useful tools, like email itself can often be misused in ways that were not anticipated. Please stay diligent, and understand the risks.

‘Junk gun’ ransomware: Peashooters can still pack a punch April 17, 2024
A Sophos X-Ops investigation finds that a wave of crude, cheap ransomware could spell trouble for small businesses and individuals – but also provide insights into threat actor career development and the wider threat landscape
Sophos Guidance on the Digital Operational Resilience Act (DORA) April 15, 2024
Guidance to support financial entities in the EU impacted by the Digital Operational Resilience Act (DORA).
A tumultuous, titanic Patch Tuesday as Microsoft makes some changes April 10, 2024
The largest CVE count in recent history rolls out
Smoke and (screen) mirrors: A strange signed backdoor April 9, 2024
Sophos X-Ops discovers a curious backdoored (and signed) executable, masquerading as something else entirely
Sophos Named Best MSP Solution by SE Labs April 9, 2024
Sophos has been recognized for enabling MSPs to effectively defend customers against today’s complex cyberattacks.
Introducing Sophos Managed Risk, Powered by Tenable April 3, 2024
Sophos Managed Risk combines vulnerability management technology from Tenable with Sophos’ threat expertise as a fully managed service.
Unpatched Vulnerabilities: The Most Brutal Ransomware Attack Vector April 3, 2024
While all ransomware attacks have negative outcomes, those that start by exploiting unpatched vulnerabilities have the greatest business impact.
It’s Oh So Quiet (?): The Sophos Active Adversary Report for 1H 2024 April 3, 2024
The latter half of 2023 found numerous fronts on which attackers failed to press ahead. Are defenders failing to take advantage?
Sophos Firewall Once Again Recognized as the #1 Firewall Solution by G2 Users April 1, 2024
Top rated based on a high customer satisfaction score and large market presence
The impact of compromised backups on ransomware outcomes March 26, 2024
Insights into the financial and operational implications of having backups compromised in a ransomware attack.

Nipissing University
100 College Drive, Box 5002
North Bay, ON, Canada
P1B 8L7
Tel: 705.474.3450
Fax: 705.474.1947

Phone Directory
NU Mail
Health & Safety
Site Map

MyNipissing
WebAdvisor
Blackboard
Library