Category: Security

Service Disruption: Sateon Door Access

***RESOLVED***

————————————————————————————————————————————————————————–

***Update***

Other than a handful of internal doors we have now reinstated the swipe door access to all affected buildings.  UoD IT and Estates and Buildings thank you for your patience whilst this issue was rectified.

—————————————————————————————————————————————————————————

There is currently an issue affecting swipe door access across the University Campus. Our third party provider has been contacted and we are working on a resolution as quickly as possible.

If you require access to a building urgently, please contact Campus Security on 01382 (3)85850

Further updates will be posted here in due course.

Scheduled Maintenance: University Web site 21/08/19

We are migrating some services, including the University Web site, to new infrastructure during the following maintenance window:

08:00-08:15 (BST) Wednesday 21st August 2019.

Please note that there will be some disruption to the web site during this time.

If you have any questions about this work, please contact the Service Desk quoting reference number: 1908-2444

Decommission of legacy VPN

The University’s legacy Cisco VPN (pictured below) will be taken out of action this month (Jan) because it has now been replaced by the new SonicWall VPN.

Anyone using the old VPN is advised to install the new one as soon as possible to avoid disruption in the near future. Use the instructions on the IT website to help you do so.

SLS staff information: This is not a replacement for the Life Sciences VPN as yet. Since migrating your wifi to eduroam, you no longer need to use the Life Sciences VPN to access JBC resources when roaming campus. You do, however, need to continue to use the Life Sciences VPN when offsite to access these resources.

University network penetration testing

From 3-11 September, an authorised scan will be conducted by JISC to identify any weaknesses on the University network.

Impact

All systems connected to the University network should be considered at risk during the scanning period. This will be the first in a series of regular scans to ensure our Network defences are up to the job of protecting our systems and data from various cyber-attacks.

Benefit

This work will safeguard the ongoing security of our network. It will also ensure the University’s compliance with certain parts of the Government’s Cyber Essentials Scheme 

Get help / report issues 

If you have any questions about this or experience any issues during the work window, please contact the Service Desk. 

Phishing email: Undelivered Mail

UoDIT is aware of more phishing emails being received by staff at the University.

Example Email below:


Dundee server detected your [username]@dundee.ac.uk email have (14) undelivered mails since the 16th of December 2017, which are awaiting your approval to be delivered.

Be aware that this should fix any mailbox malfunctions, kindly ask you to follow instructions as below.

* Move pending messagesnfrom Server to Inbox
* Review pending messagenwith Dundee Cloud server

Further messages might not be delivered if any of the above actions are not performed.


Please remain vigilant and please do not click any links in these emails and do not interact with the email if you have received it and delete from your inbox immediately.

Did you click?

  • If you have supplied your credentials or personal information, change your password immediately.
  • If the device you used when interacting with it is University-owned (i.e. a Student / Staff Desktop), please contact the IT Service Desk for advice.
  • If the device you used when interacting with it is your own (i.e. a personal device), we advise that you run an anti-malware software from a reputable source and perform a scan on your device yourself.

Educate yourself
The most common phishing attack method is by emails. These authentic-looking messages, usually called phishing scams, are designed to exploit information from the recipients; either by asking them to reply to an email message or by clicking on a link/attachment within the email.

These emails cannot corrupt your device on its own, you have to interact with it. Think:

  • When you receive an email to your University account, consider if you were expecting correspondence on that topic, from that recipient. If you weren’t, and the message is calling for you to act either by sending information, clicking on an active link, or downloading an attachment, first ask the IT Service Desk to confirm its legitimacy.
  • Never tick/check enable macros on attachments, unless you explicitly need to and trust the sender.
  • Don’t run a program if you don’t know where it has come from and you have not chosen to install it yourself
  • Do not provide your username and password, especially if you have any concern over the legitimacy of an email

Further advice can be found on the Information Security website section.

https://www.dundee.ac.uk/it/services/security/

Getting help
UoD IT staff are available 09:00-22:00 Mon-Fri and 10:00-22:00 Sat-Sun. Please log a call for assistance via Help4U if you have any concerns.

Phishing email named Your Office Email Storage Space Low

UoDIT is aware of more phishing emails being received by staff at the University.

Example Email below:


Subject: Your Office Email Storage Space Low

Microsoft Office Email 365
You are out of storage space.

Your email xxxxx@dundee.ac.uk is out of storage space and will soon be stopped from sending or receiving emails until you
enable or buy more storage space

We recommend you to enable or buy more storage space by checking enable more storage below
for you to enable sending and receiving emails and to avoid your email being compromised

Enable More Storage

This action will take a brief period before this request takes effect
This is a mandatory communication about the service. To set communication preferences for other cases.
This message was sent from the email address is not monitored. Do not reply to this message.
Privacy | Legal Notices

Microsoft Corporation
600 Pine Street, Suite 352,
Seattle,
WA 98101, USA.


 

Please remain vigilant and please do not click any links in these emails and do not interact with the email if you have received it and delete from your inbox immediately.

Did you click?

  • If you have supplied your credentials or personal information, change your password immediately.
  • If the device you used when interacting with it is University-owned (i.e. a Student / Staff Desktop), please contact the IT Service Desk for advice.
  • If the device you used when interacting with it is your own (i.e. a personal device), we advise that you run an anti-malware software from a reputable source and perform a scan on your device yourself.

Educate yourself
The most common phishing attack method is by emails. These authentic-looking messages, usually called phishing scams, are designed to exploit information from the recipients; either by asking them to reply to an email message or by clicking on a link/attachment within the email.

These emails cannot corrupt your device on its own, you have to interact with it. Think:

  • When you receive an email to your University account, consider if you were expecting correspondence on that topic, from that recipient. If you weren’t, and the message is calling for you to act either by sending information, clicking on an active link, or downloading an attachment, first ask the IT Service Desk to confirm its legitimacy.
  • Never tick/check enable macros on attachments, unless you explicitly need to and trust the sender.
  • Don’t run a program if you don’t know where it has come from and you have not chosen to install it yourself
  • Do not provide your username and password, especially if you have any concern over the legitimacy of an email

Further advice can be found on the Information Security website section.

https://www.dundee.ac.uk/it/services/security/

Getting help
UoD IT staff are available 09:00-22:00 Mon-Fri and 10:00-22:00 Sat-Sun. Please log a call for assistance via Help4U if you have any concerns.

Phishing email – Overdue Invoice – Urgent

UoDIT is aware of more phishing emails being received by staff at the University.

Example Email below:


Subject: Overdue Invoice – Urgent

Attached is your Avfuel Overdue Invoice. If you have any questions, do not reply to this email – instead, contact Avfuel at 800-521-7806.
Download your invoice online Download Invoice

Thank you for being an Avfuel customer!

Global Supplier of Aviation Fuel and Services

Attachments area

To make sure you keep getting these emails, please add invoice@avfuel.com to your address book or whitelist us.

Want to stop receiving mails to this list Unsubscribe or if you want to stop getting all communication from us Unsubscribe All.

Our postal address: HQ San Francisco, California, United States

 


 

Please remain vigilant and please do not click any links in these emails and do not interact with the email if you have received it and delete from your inbox immediately.

Did you click?

  • If you have supplied your credentials or personal information, change your password immediately.
  • If the device you used when interacting with it is University-owned (i.e. a Student / Staff Desktop), please contact the IT Service Desk for advice.
  • If the device you used when interacting with it is your own (i.e. a personal device), we advise that you run an anti-malware software from a reputable source and perform a scan on your device yourself.

Educate yourself
The most common phishing attack method is by emails. These authentic-looking messages, usually called phishing scams, are designed to exploit information from the recipients; either by asking them to reply to an email message or by clicking on a link/attachment within the email.

These emails cannot corrupt your device on its own, you have to interact with it. Think:

  • When you receive an email to your University account, consider if you were expecting correspondence on that topic, from that recipient. If you weren’t, and the message is calling for you to act either by sending information, clicking on an active link, or downloading an attachment, first ask the IT Service Desk to confirm its legitimacy.
  • Never tick/check enable macros on attachments, unless you explicitly need to and trust the sender.
  • Don’t run a program if you don’t know where it has come from and you have not chosen to install it yourself
  • Do not provide your username and password, especially if you have any concern over the legitimacy of an email

Further advice can be found on the Information Security website section.

https://www.dundee.ac.uk/it/services/security/

Getting help
UoD IT staff are available 09:00-22:00 Mon-Fri and 10:00-22:00 Sat-Sun. Please log a call for assistance via Help4U if you have any concerns.