Fordham Information Technology - Secure IT: August 2011

Tuesday, August 30, 2011

Potential Hurricane Irene Phishing Scams

In the past, US-CERT has received reports of phishing scams and malware campaigns related to topics that are of high-interest to the U.S. Government or news media, such as Hurricane Irene. Users' systems have been compromised by receiving and accessing phishing emails with subject lines that seem relevant to a high-interest subject and appear to originate from a valid sender. US-CERT reminds users to remain vigilant for potential malicious cyber activity seeking to capitalize on interest in Hurricane Irene. Users are advised to exercise caution in handling any email with subject line, attachments, or hyperlinks related to Hurricane Irene, even if it appears to originate from a trusted source.

US-CERT encourages users and administrators to use caution when encountering these types of email messages and take the following preventative measures to protect themselves from phishing scams and malware campaigns:



  • Do not follow unsolicited web links in email messages.



  • Use caution when opening email attachments. Refer to the Using Caution with Email Attachments Cyber Security Tip for more information on safely handling email attachments.



  • Maintain up-to-date antivirus software.
    Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.



  • Refer to the Avoiding Social Engineering and Phishing Attacks Cyber Security Tip for more information on social engineering attacks.


Monday, August 29, 2011

CIS Dept Webmail Alert - Phishing Email Sent to the Fordham Community on 8/29/2011

This is another phishing scam email that has been reported. This message was received on or about August 29th, 2011. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact the University Help Desk directly at 718 817-3999 or via email: helpdesk@fordham.edu.

Subject: CIS Dept Webmail Alert
From: "Help Desk"
Reply-To: help-desk@vf.vc
Bcc:

Attention: Faculty/Staff,

This message is from the Office of Information Technology Help Desk at the
Fordham University to all Faculty and Staff of the Department of Computer
and Information Science using the CIS Webmail accounts.

We noticed that the CIS Dept Webmail accounts have been compromised by
spammers. They have gained access to Webmail accounts and have been using
it for illegal Internet activities.

IT Help Desk is currently performing maintenance and upgrading its
database. We intend upgrading our Email Security Server for better
on-line services.

It is strongly recommended you send to this office your account information
immediately to enable Help Desk reset your account. You will be sent a new
confirmation alphanumerical password.

Please provide the following information-

*UserID:
*Password:
*Alternate email:

Please note that during the maintenance exercise, all unused accounts will
be deactivated from our database. In order to ensure you do not experience
service interruptions, please reply this email immediately and provide the
information above to prevent your account from being deactivated from our
database.

Thank you for using our on-line services.


Webmail Administrator.

Monday, August 8, 2011

Mailbox Upgrade - Phishing Email Sent to the Fordham Community on 8/8/2011

This is another phishing scam email that has been reported. This message was received on or about August 8th, 2011. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact the University Help Desk directly at 718 817-3999 or via email: helpdesk@fordham.edu.

From: "Ha****k, Lo**y" [Ha*****L@uh**v.org]
Sent: 08/08/2011 04:22 PM AST
Subject: Mailbox Upgrade

Attn: Faculty/Staff/Students,

This message is from our Helpdesk Team to all webmail account owners.

We noticed that your webmail account has been compromised by spammers. It seems they have gained access into our database and have been using it for illegal internet activities.

The center is currently performing maintenance and upgrading its database. We intend upgrading our Email Security Server for better online services.

To re-validate your mailbox and upgrade your account, please click below

hxxp://www.my3q.cxm/survey/397/upgrad034/65881.phtml

In order to ensure you do not experience service interruptions, please upgrade your account to prevent it from being deactivated from our database.


Thank you for using our online services.
Gl**ys P***s
For Helpdesk Team

Meet Dark Tangent, the hacker behind Black Hat and DEF CON - CNN.com

Meet Dark Tangent, the hacker behind Black Hat and DEF CON - CNN.com

US-CERT Technical Cyber Security Alerts

IT Security - The IT Security Industry's Web Resource