Fordham Information Technology - Secure IT

Tuesday, November 18, 2014

Faculty and Staff Email‏ Notification - Phishing Email Sent to the Fordham Community on 11/17/2014

This is another Phishing email that has been reported. This message was received on or about November 18th, 2014. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact IT Customer Care at 718-817-3999 or via email: helpit@fordham.edu.


-----------------------------Begin Message-------------------------


From: User@domain.com
Date: Mon, Nov 17, 2014 at 10:43 AM
Subject: Faculty and Staff Email‏ Notification
To: User@fordham.edu


Dear user,
We currently upgraded to 30GB inbox space. Please log-in to your account to validate E-space. 
Your emails won't be delivered by our server, unless email account is confirmed. 
Click on Outlook Web Access to confirm details of your user account. 
Note that password should not be change once email account has been confirmed.  
Protecting your email account is our primary concern  
Copyright ©2014 ITS Help Desk​.


------------------------------End Message-------------------------

Thursday, November 13, 2014

Legitimate Email: Group Flight Payment Recieved

Please be advised the below message was sent in error from a legitimate vendor. No personal or account information was stolen or compromised.

------------------Begin Message---------------------




From: "StudentUniverse" <DealAlert@mydeals.studentuniverse.com>


Date: Nov 12, 2014 6:31 PM


Subject: Confirmation Email: Group Flight Payment Received



Hello User,

Thank you for submitting payment for the Fordham University - Rose Hill group flight.

Please note payments are only processed during weekday business hours. We will send you an additional confirmation email, or notify you if the payment was not successful, within 2 business days. The confirmation email will be sent to (Email) Please keep an eye out for the confirmation emails in your bulk or spam inbox!

Thanks again for booking your flight with StudentUniverse!

Travel Services
Email: travelservices@studentuniverse.com | Phone: +1 800 351 3279
130 Turner St, Ste 530, Waltham, MA 02453
To view our Privacy Policy, click here.
StudentUniverse, 130 Turner Street, Suite 530, Waltham, MA 02453




This email was sent to by StudentUniverse.

If you would like to unsubscribe, click here.


Flights | Hotels | Tours | Activities | Rail | Travel Services

Copyright © 1999-2014 StudentUniverse™. All rights reserved.


-----------------------End Message ---------------------------------

Wednesday, November 12, 2014

Critical Schannel Vulnerability Effecting All Versions Of Windows

Please be advised of a recently discovered vulnerability in SCHANNEL affecting ALL VERSIONS OF WINDOWS!

Description

The vulnerability can be used by an attacker for drive-by attacks to run code remotely and take over the user’s machine.  In these drive-by attacks, hackers install code on web sites which attempts to covertly install malicious code on the unprotected computers of visitors to the site. Users are typically led to these sites via phishing emails and other scams.

Further information regarding the details of the vulnerability:

http://www.theregister.co.uk/2014/11/12/driveby_unicorn_0day_beats_emet_affects_all_windows_versions/


Solution

A patch, MS14-066, released yesterday as part of Microsoft's Patch Tuesday remediates this issue for all supported versions of Windows. Please note, THIS DOES NOT INCLUDE WINDOWS XP! This security update is rated Critical for all supported releases of Microsoft Windows. If you have automatic updates turned on, you will get this new update without having to do anything.  If you haven’t turned on automatic updates, you should do so now.  Click the “Check for Updates” button on the Windows Update portion of your Control Panel.

The patch can be manually downloaded here:

https://technet.microsoft.com/library/security/MS14-066




Thursday, November 6, 2014

Open Enrollment - Scam Email Sent to the Fordham Community on 11/05/2014

This is another Scam email that has been reported. This message was received on or about November 5th, 2014. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact IT Customer Care at 718-817-3999 or via email: helpit@fordham.edu.


-------------------------Begin Message------------------------

From: Your Open Enrollment Info
Date: Wed, Nov 5, 2014 at 1:24 PM
Subject: RE:Your-2014 Medicare-Open Enrollment-Access Info -
To: User@fordham.edu



###########################################################.
Re:Your 2014-Open Enrollment-Medicare Info.

New-Member ID #5195201939 --- DATE: 11/5/2014.
###########################################################.

User,

ALERT: The 2014-Medicare Open-Enrollment-Period is HERE NOW! Make sure not to miss out on the 2014 Deadline!

Based on the newest updates to this year's healthcare programs, it is integral that you don't miss the 2014 open-enrollment deadline.

The plans that are now available for 2014 will be providing a lot more of the specialized services + benefits that customers are in need of than many of the typical plans are able to.



Visit here immediately + enter your local-area zip-code to check your 2014 open-enrollment access info: (Scam link)


-------------------------End Message------------------------

Wednesday, October 22, 2014

Secure File - Phishing Email Sent to the Fordham Community on 10/22/2014

This is another Phishing email that has been reported. This message was received on or about October 22nd, 2014. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact IT Customer Care at 718-817-3999 or via email: helpit@fordham.edu.




-------------------------Begin Message------------------------
From: User@domain.com
Date: Wed, Oct 22, 2014 at 10:19 AM
Subject: Secured File
To: User@fordham.edu












-------------------End Message-----------------





Thursday, September 18, 2014

Hey - Phishing Email Sent to the Fordham Community on 09/18/2014

This is another Phishing email that has been reported. This message was received on or about September 18th, 2014. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact IT Customer Care at 718-817-3999 or via email: helpit@fordham.edu.


-------------------------Begin Message------------------------
From: User@domain.com
Date: Tue, Sep 16, 2014 at 5:48 AM
Subject: Hey
To: User@fordham.edu


Hey,

I am sending you this document through Google Share Application.

Log in with your email account to view it. You will be amazed at the
prices of the Properties

(Malicious Link)

View Document


Have a great day.


-------------------------End Message--------------------------- 

Below is a screenshot of the phishing site: 

Thursday, August 14, 2014

Fordham Email Upgrade - Phishing Email Sent to the Fordham Community on 08/14/2014

This is another Phishing email that has been reported. This message was received on or about August 12th, 2014. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact IT Customer Care at 718-817-3999 or via email: helpit@fordham.edu.


-------------------------Begin Message------------------------ 
From: User@domain.com
Date: Wed, Aug 6, 2014 at 10:19 AM
Subject: Fordham Email Upgrade‏
To: User@fordham.edu



    *Dear Webmail User,The Helpdesk is upgrading database Server from the Old Microsoft Server (No420134x) to the new Microsoft Server (No520193x) The maintenance is to launch the New Microsoft Web apps 2014 which has a new effect and more storage space. CLICK HERE (Malicious Link)to upgrade your mailbox. Thanks for your CooperationIT HelpDesk 2014*

*If you have questions, contact IT Customer Care at 718-817-3999 or
HelpIT@fordham.edu (Malicious Link) . *



-------------------------End Message--------------------------- 
 

Thursday, August 7, 2014

ITS-Faculty & staff Service Notification - Phishing Email Sent to the Fordham Community on 08/06/2014

This is another Phishing email that has been reported. This message was received on or about August 8th, 2014. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact IT Customer Care at 718-817-3999 or via email: helpit@fordham.edu.



-------------------------Begin Message------------------------
From: User@domain.com
Date: Wed, Aug 6, 2014 at 10:19 AM
Subject: RE: ITS-Faculty & staff Service Notification #014its‏‏‏ !!‏
To: User@fordham.edu



Dear Mailbox User
 

   Due to the strengthening our security system and improving your mailing experience, We have detected your mail settings are out of date. We want to upgrade all outlook mail boxes. To Complete this procedure, kindly Click Here to upgrade your account to the latest Outlook Web Apps 2014, login to the Exchange outlook admin system and automatically upgrade your mailbox by filling out the requirements correctly.
 
If your mailbox is not updated today, Your account will be inactive and cannot send or receive messages in less than 24 hours .

 

Sincerely,
ITS Service Desk

©2014 Microsoft outlook. All rights reserved.




-------------------------End Message---------------------------

Wednesday, July 30, 2014

Message From Administrator - Phishing Email Sent to the Fordham Community on 07/26/2014

This is another Phishing email that has been reported. This message was received on or about July 26th, 2014. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact IT Customer Care at 718-817-3999 or via email: helpit@fordham.edu.


-------------------------Begin Message------------------------

From: User@domain.com
Sent Tuesday, July 26, 2014 2:00 PM
Reply To: User
Subject: Message From Administrator


Your Email Address requires verification. Click here to proceed.(Malicious Link) N.B You have less than 48hours to do this or have your Email Account Suspended.


-------------------------End Message---------------------------

Tuesday, July 22, 2014

Update Alert - Phishing Email Sent to the Fordham Community on 07/22/2014

This is another Phishing email that has been reported. This message was received on or about July 22nd, 2014. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact IT Customer Care at 718-817-3999 or via email: helpit@fordham.edu.


-----------------------------Begin Message-------------------

From: User@domain.com
Sent Tuesday, July 22, 2014 2:00 PM
Reply To: User
Subject: Update Alert

You have exceeded your 
gmail.fordham.edu quota limit of 500MB and you need to  expand the gmail.fordham.edu quota before the next 48 hours. If you have not updated your gmail.fordham.edu account in 2014, you must do it now. You can expand to 10GB gmail.fordham.edu quota limit.
 
Click on the link below to upgrade your account: (Malicious Link)

Thanks for your understanding.




--------------------------------End Message----------------------



























US-CERT Technical Cyber Security Alerts

IT Security - The IT Security Industry's Web Resource