Malicious Chrome Browser Extension Being Distributed via Phishing Emails

Per the notification issued by UH University Information Technology on December 13, 2016, Blackboard has issued a security advisory to inform Blackboard users about a malicious Chrome browser extension being distributed via phishing emails.  The OneClass Chrome Extension attempts to collect users’ usernames and passwords and also attempts to gather course information and email the users’ classmates with additional links to the extension.

The content of the phishing email is:

"Hey guys, I just found some really helpful notes for the upcoming exams for <University Name> courses at https://oneclass.com/s/signup. I highly recommend signing up for an account now that way your first download is free!"

Do not install this extension! Do not respond to the messages or go to the website included in the messages.  Delete these messages immediately!

If you have already installed the extension, please contact UHCL's University Computing & Telecommunications (UCT) Support Center immediately for assistance. They may be contact via email at supportcenter@uhcl.edu or via phone at 281-283-2828.