Good afternoon, everyone.

Today I want to tell you about a current threat that several people have reported this week. I want to remind you again about the UT Systemwide transition for purchasing and renewing software, as well as completing the UT Compliance Training, if you haven’t already done so.

Current Threat

• Afterpay Text Message (smishing)
  • I have been asked by multiple users in various departments about a text message they have received.
  • The text message is coming through UT’s RingCentral.
  • The sender says they are with Afterpay.
  • The number used in the message is actually Afterpay’s customer support number and the text sender’s number is 23837, but it is likely the sender is spoofing that number.
  • The message mentions “notifications and verification codes” and gives you a six-digit code.
  • If you get one of these text messages and you do use Afterpay, please change your password immediately and contact Afterpay at their known number or email address.
  • However, the people I have spoken with do not use Afterpay so please don’t click and links, don’t share the code (even if someone calls claiming to be from Afterpay), and don’t respond to the message.
  • Finally, please choose “Block number” then “Block & report spam”.

Important Reminders

• UT Systemwide Transition to New Data & Technology Risk Review
  • UT System has now transitioned to a new systemwide process for technology and data-related risk reviews.
  • This went into effect for UTIA, IPS, UTK, UTS and UTSA on Friday, 10/31/2025.
  • All requests that involve software purchases or renewals will use the TDX Data and Technology Risk Review Intake Form.
  • The intake form should be completed before submitting a requisition or contract.
  • The intake form replaces the current IT Questionnaire you have been using.
  • Once the form has been reviewed, you will receive an Authorization to Proceed, which must be attached to your requisition or contract. For RFP and RFQ requests, please continue to use the DASH Requisition Intake process.
  • Please note that the intake form is also required for UTIA software purchases and renewals using p-cards, as it helps with our software inventory, but more importantly it ensures that we are installing only approved software that has the necessary security controls in place to protect both our data and our network.
  • This change is expected to improve efficiency, consistency, and turnaround across all UT campuses and institutes.

• 2025-2026 UTK Compliance Training
  • Please remember to complete your 2025-2026 UTK Compliance Training.
  • This annual training is required for all UT employees.
  • The assignment includes the IT Security Awareness Training.
  • For UTIA employees, the IT Security Awareness Training course must be completed by 12/31/2025, or the user’s NetID will be temporarily disabled, causing the inability to connect to anything using the NetID for authentication, including email, DASH, Banner, Microsoft 365, K@TE, etc.
  • I highly recommend completing the training by 11/30, since things tend to get pretty busy prior to our holiday/administrative closing in December.
  • If you are a TSU employee and you do not have the assignment yet, please know that UTSA HR has said they are updating the TSU employees to show the correct department in DASH so the training can be assigned.

Thank you so much for everything you do to protect the Institute and its data, students, employees, clients, and yourself. Please let me know anytime you have any questions or concerns.

Sandy

Important Note: Thank you so much for sharing these e-newsletters with family, friends, clients, students, and anyone else who may benefit from the information. I would like to stress that you should keep your students in mind, as non-employee students will not get this information without someone sharing. If anyone has an email group for students who are not employees of your department, please let me know what that address is, and I can include it. I do this as a blind copy so student names and addresses will not show up!