This site requires JavaScript to be enabled
An updated version of this article is available

Office 365: University disclaimers on external, suspect, or malicious email

33 views

20.0 - Updated on 2024-04-01 by Matt Anderegg

19.0 - Updated on 2024-03-04 by Christopher Parker

18.0 - Updated on 2023-09-27 by Stephen Walker

17.0 - Updated on 2023-03-13 by Robert Hilker

16.0 - Updated on 2022-09-26 by Matt Anderegg

15.0 - Updated on 2021-08-26 by Chase M

14.0 - Updated on 2020-05-06 by Chase M

13.0 - Updated on 2019-05-09 by Chase M

12.0 - Updated on 2019-05-08 by Chase M

11.0 - Updated on 2019-05-07 by Donald Nash

10.0 - Updated on 2019-05-07 by Chase M

9.0 - Updated on 2019-06-22 by Chase M

8.0 - Updated on 2019-05-06 by Chase M

7.0 - Updated on 2019-05-03 by Chase M

6.0 - Updated on 2019-05-03 by Chase M

5.0 - Updated on 2019-06-22 by Chase M

4.0 - Updated on 2019-05-03 by Chase M

3.0 - Updated on 2019-04-30 by Chase M

2.0 - Updated on 2019-01-18 by Allen Hernandez

1.0 - Authored on 2017-10-25 by Jennifer Plunkett

 

Contents
 What Is Changing?
 Why Is This Changing?
 Replacing Existing Notices
 Plain Text Email Clients

 

What is changing?

Starting 5/3/2019, Office 365 Exchange users will begin to see disclaimers inserted into certain received or, in extremely rare cases, sent messages. These disclaimers are meant to make the recipient aware of message attributes that could indicate that the sender is misrepresenting who they are, or that the email contains possibly unwanted or malicious content.

The most frequent message disclaimer will warn when a message is sent from a source external to The University of Texas.

 

 

 

Occasionally, a red disclaimer will appear indicating that the external sender shares the name of someone within our tenant. If the sender of one of these messages claims to be someone representing the University of Texas, then this disclaimer is a good indication that the sender could be fraudulent.

 

Why is this changing?

The purpose of this disclaimer is to make the recipient aware that the message originated from outside of our organization. Increasingly, the university is targeted by phishing attacks that leverages some form of email spoofing. Email spoofing involves an external email address impersonating a staff or faculty member in order to mislead, manipulate, and scam an unsuspecting victim. A more obvious version of a spoofed, or impersonated, message can be seen below.

 

The context of this message, combined with the new external message disclaimer, should indicate to the recipient that the sender is not really who they say they are. In this case, the message can be deleted and the sender can be blocked in your local outlook client. Don't hesitate to report particularly egregious or offensive phishing or spoofing emails to our Information Security Office by forwarding the message as an attachment to security@utexas.edu.

More information about phishing and spoofing can be found at the Information Security Office Phishing Outreach page.

 

Replacing existing notices with body disclaimers:

Existing [UTEXAS: SUSPECTED SPAM] and [UTEXAS: POSSIBLY MALICIOUS CONTENT] subject line warnings will be replaced with the new body disclaimers:

 

 

More information on why those disclaimers may appear on an email can be found in KB0011402 and KB0011404.

All email disclaimers are intended to encourage you to exercise caution and are not authoritative on whether the sending email is safe or malicious.

 

Plain text email clients

If your email client only displays plain text, an alternate text-only version of the above disclaimers will be displayed:

>> This message is from an external sender. Learn more about why this <<
>> matters at http://links.utexas.edu/cwghsmi. <<

 

 

 

 

 

 

Revised by Chase M
Last modified 2019-06-22 04:23:22