Fordham Information Technology - Secure IT: January 2012

Saturday, January 28, 2012

Help Desk Maintenance - Support Helpdesk - Phishing Email Sent to the Fordham Community on 1/28/2012

This is another phishing scam email that has been reported. This message was received on or about January 28th, 2012. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact the University Help Desk directly at 718 817-3999 or via email: helpdesk@fordham.edu

From: University Help Desk
To: helpdesk@admin.com
Date: 01/28/2012 11:09 PM
Subject: Help Desk Maintenance - Support Helpdesk

Microsoft Outlook Webmail Email User's

THE Helpdesk is currently upgrading and maintaining database Server from the
old Microsoft Server(No420134x) to the new Microsoft Server(No520193x) kindly
Fill the Microsoft Login information below.

+++++++++++++++++++++
Email:
Domain\Username:
Domain\ Password:
Confirm Password:
+++++++++++++++++++++

Thank You
Helpdesk

Wednesday, January 25, 2012

Wells Fargo Checking Account Update - Phishing Email Sent to the Fordham Community on 1/25/2012

This is another phishing scam email that has been reported. This message was received on or about January 25th, 2012. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact the University Help Desk directly at 718 817-3999 or via email: helpdesk@fordham.edu.


From: Wells Fargo Online
to: user

An update on your checking account activity

Here is the update you requested for your Wells Fargo checking account XXXXXX9217.

Balance Summary

Ending Balance:
$9,621.17
Available Balance(as of Wed, 24 Jan 2012 14:35:26 +0200 ):
$13,443.33

Deposits

ONLINE TRANSFER REF #IBE1653457 FROM CHECKING XXXXXX3519 ON 01/24/12
$121.00
This information is accurate as of Wed, 24 Jan 2012 14:35:26 +0200. For the most current balance and more account details, open attached report and go to Account Activity Section for this account.
If you have questions, Wells Fargo Online Customer Service is available 24 hours a day, 7 days a week. Call us at 1-800-956-4442 or sign on to send a secure email.
wellsfargo.com Fraud Information Center
Note about balances: Ending balance reflects transactions that have posted to your account and does not reflect pending deposits or withdrawals. The available balance is an indication of funds that are available to you today; however, it may not reflect all transactions that you may have initiated or authorized. Available Balance - This is the amount of money you have in your account that is available for withdrawal. It reflects the latest balance based on transactions posted to your account, including deposited funds, paid checks, withdrawals, and purchases made with your ATM Card or Debit Card. Please note that some transaction activity (such as outstanding checks and some Debit Card purchases) may take several days to post to your account and, therefore, may not be reflected in the available balance. Some deposits made in a store or ATM may not be immediately available for withdrawal or to cover other transactions.Please do not reply to this email directly. To ensure a prompt and secure response, sign on to email us.To modify or cancel your alerts, sign on, go to Messages & Alerts, and select Set Up/Modify Alerts.

Tuesday, January 17, 2012

Hacked Zappos Customers: Beware Phishing Scams

http://mashable.com/2012/01/16/zappos-phishing-scams/

As hacks go, Zappos’s attack over the past weekend could have been a lot worse.
If you’re one of the estimated 24 million affected Zappos or 6PM.com (an affiliate site) customers, you can take solace in the fact that only the last four digits of your credit card number have been compromised. Likewise, as Zappos CEO Tony Hseih explained in an email to customers on Sunday, hackers stole a cryptographically scrambled version of users’ passwords, not the actual password.
But even though the damage sounds pretty benign, security experts caution that affected customers may still see some fallout, including becoming the target of phishing scams and possibly still worrying about those compromised passwords.
Robert Siciliano, a McAfee consultant and identity theft expert, says he expects whoever hacked Zappos’s site will now sell the data to people who run phishing scams. "They’ll sell it 10,000 accounts at a time, short money, like $100," he says. While hackers don’t have complete credit card numbers, Siciliano says there’s enough information for a hacker to approach affected users as either Zappos or the credit card company and then ask them for more data — the classic phishing scam — which might be supplemented with a voicemail "vishing" attack as well.
Siciliano warns users who got Hseih’s email to avoid clicking on links that purport to be from either Zappos or their credit card firm over the next few months. Phony emails and voicemail messages typically ask users to "update" their info, giving hackers access to more potentially damaging data.
That said, Siciliano says he can’t be sure how many people are likely to be targeted. "I was a PlayStation user and I didn’t get [targeted by phising schemes]," he said, referring to an attack on
attack on Sony’s PlayStation Network last April. "But that doesn’t mean nobody was."
Chester Wisniewski, a senior security advisor at Sophos, says another danger is that the hackers were able to decipher users’ passwords. Depending on the level of encryption, Wisniewski says this process can take anywhere from a few hours to a few weeks. "You can typically crack millions of [passwords] within hours with a single powerful computer," he says. However, if Zappos employed
password salting, then deciphering its passwords will take a lot longer.
A Zappos rep declined comment on the level of encryption the company uses for its password.
If the hackers do decipher user passwords, it won’t necessarily be dangerous in itself. The problem is that most people use the same password for multiple accounts. If a hacker knows what password you used at Zappos, he’ll probably be able to figure out how to hack your Facebook account as well.

Tuesday, January 3, 2012

You Got Lucky!











If you were directed here from the QR code above or the shortened URL, bit.ly/zbVwc0, you just got lucky!

You had a 50/50 chance of this link being safe or malicious. Fortunately, this one was not harmful.

Not all QR codes or shortened URLs are safe. Some can lead you to malicious sites or malicious code that can infect your computer or even smart phone. The Fordham University Information Security Office (UISO) recommends that you NEVER use these and strongly suggests you manually enter a trusted URL into your browser(s). If you MUST use a QR code or shortened URL make sure to configure your devices to display the link BEFORE you are redirected.

If you have any questions please contact the University Help Desk directly at 718 817-3999 or via email: helpdesk@fordham.edu.

US-CERT Technical Cyber Security Alerts

IT Security - The IT Security Industry's Web Resource