The OIT security team recently completed an analysis of passwords and other information available online due to the many security breaches that have occurred in the past few years. These breaches include Yahoo, LinkedIn, Tumblr, AntiPublic, and hundreds of others. The analysis indicated that many users’ myBama account password was also used as a password at one of these hundreds of sites and services.
The University of Alabama has not experienced a breach, we have simply noted that many myBama passwords may have been compromised due to use on other websites that have been breached (Yahoo, LinkedIn, etc.).
If you received an email from OIT, we strongly recommend that you change your myBama password immediately. To change your password, visit mybama.ua.edu and click the change your password link on the right column. We also recommend that you change any other online account that used this password. Remember, you should have a complex and unique password for every online account.
Additionally, if you are not a DUO user, we recommend you activate DUO two-factor authentication to better protect your UA account. DUO provides a second layer of security to your account by requiring two factors to verify identity.
If you have any questions or concerns, please contact the IT Service Desk at firstname.lastname@example.org.