C&C has been investigating a break-in into computer systems belonging to several research departments on campus. The attacker(s) installed keystroke loggers and network sniffers on many machines, and was able to record passwords on central login-hosts.
Your UW NetID and password were used on one of the networks that contained compromised machines. We believe that it is highly likely that your password has become compromised, and your account may be used by the attacker for illegal purposes. Your account was disabled to prevent any further abuse by the attacker(s).
Because any and all passwords you use on various systems may be in the possession of these attackers, they should all be changed, and you should not choose the current passwords for use again in the future. This includes your UW NetID password, passwords for computers at other Universities, your own private accounts with Internet Service Providers, or Web Email Services.
They began turning off accounts at 10am today, and as of about 10 minutes ago (when I got mine reactivated) they had only gotten through the letter "m".
So, my question for you folks: What departments? I know my department (Math) was affected, and from gossip that (Atmospheric Sciences) was affected, but who else out there had a nasty surprise when they went to check their email?
Hopefully, if you've got a netid that starts with "n" or later, you've gotten a heads up now......