Category: Security

Retiring Microsoft 2011 for managed macs

As of the Tue 10 Oct, Microsoft will no longer offer support for Office 2011 on Mac (e.g. Word, Excel, Powerpoint, Outlook etc). If you are using this version on your managed PC, please uninstall it and upgrade to 2016 so you continue to receive security updates.

How do I upgrade to 2016?

  1. Go to the Self Service window on your Mac desktop.
  2. Click the Common/Optional category
  3. Click Install next to Microsoft Office 2016

If you are unable to install this, it may mean that your PC is over 9 years old and cannot run the new update. If this is the case, we would recommend that your device be replaced and that you contact your manager or department head to discuss this.

Uninstalling Microsoft 2011

It is important that you remove the older software, as it is considered vulnerable.

  1. Go to the Self Service window on your Mac desktop
  2. Click the Maintenance category
  3. Uninstall Microsoft 2011

If you would like further support when upgrading, please contact Help4U.

 

Training on how to best use the software

Various OPD courses are available or you can visit Lynda.com.

Fake Invoice Emails

There are fake emails landing in the inboxes of some University Users today.  The original email looks like the following:

From: xxxxxx <sales@dundee.ac.uk>
Sent: Tuesday, September 26, 2017 10:03:58 AM
To: xxxxxx(Staff)
Subject: INVOICE

Dear Sir,

PLEAS FIND ATTACHED YOUR INVOICE AS REQUESTED.

Thank you and Kind regard’s

xxxxxxx
For Techno-Packaging.

P Please consider the environment – only print this e-mail if absolutely necessary

 

If you receive one of these emails, please do not reply to it or click any links in the body of the email – instead, please report the issue to help4u@dundee.ac.uk

Delayed Implementation: New Email Security Feature

This change was not implemented on Tue 15 Aug due to unforeseen circumstances.

The Sender Policy Framework (SPF) will instead be applied to the University’s email system on Thu 28 Sep. This best practice measure is part of an ongoing effort to help everyone stay safe and secure.

What does SPF do?
It passes your received email through an automatic ‘check’ to:

  • Verify that it comes from the University’s email system
  • Confirm that the displayed sender address matches the one found in the email header (i.e. it is not from a ‘spoofed’ account)

SPF inserts a warning message into any email that fails either/both of these checks to let you know it carries the tell-tale signs of an illegitimate message. From then on, it is up to you to make some informed decisions.


Will I notice anything different?
Potentially, yes. If any of the emails you receive fail the SPF check, they will be tagged with text (outlined below) in the subject line and the email body itself as a header to highlight this to you:

  • Subject line: ‘UNVERIFIED SENDER’
  • Email body: ‘The University e-mail system cannot verify the authenticity of this message; treat it with caution’

Does that mean it’s definitely spam?
No. The check itself is not 100% fool proof and on occasion, it may fail legitimate emails. If there are grounds for you to think this is the case, for example you were expecting an email from that person or on that subject, personally check with the sender to confirm their email is genuine before engaging with anything in it.

What is it for then?
SPF is here to enhance your ability to identify malicious emails, not to replace your important and continued role in the process of doing so. Please always consider each email you receive with care and exercise the sound thinking we’ve shared with you on many occasions before interacting with any links, attachments or calls to action they contain, as we know you already endeavour to do.

What should I do if I receive an email with the warning message?

  • Follow the advice given above and be cautious with it until you are confident it is legitimate. If you cannot confirm this yourself, please contact IT via Help4U so we can investigate on your behalf.
  • Follow the instructions below in the event the email is suspicious and we will apply appropriate technical measures to prevent that sender entering anything into your email system again.

How do I report a suspicious email?
Send (do not forward) it to us as an attachment using the instructions on this webpage.

Why are we doing this?
Every day brings with it more headlines about accounts being hacked, ransomware attacks making their way around the world and systems being compromised. The University takes security seriously and SPF is a small factor we can introduce that will help you contribute to keeping your place of work or study as cyber safe as it can be.

We apologise for any inconvenience caused by this delay, particularly to anyone who has received suspicious emails in the interim.

If you have any questions or concerns about this change, please contact us via Help4U (ref C1707-023).

Fake student loan emails

New or returning student? Please be cautious with your emails. Fraudsters have been targeting students across the UK with the email phishing scam pictured below:


This is not a genuine communication, as can be seen by the many errors included in the text. It is designed to trick you into giving up your personal information, which may then be used to defraud or steal your identity. Do not click on any of the links if you receive it and report it to us before deleting from your inbox.

Did you receive this and act on it?
Paul Mason, Executive Director of Repayments and Counter Fraud, said: “We will never request a student’s personal or banking details by email or text message. Anyone who receives a scam email about student finance should send it to us at phishing@slc.co.uk in addition to reporting it to Action Fraud, as this allows us to close the site down and stop students from being caught out.

More information about this phishing scam can be reached on the Action Fraud website.

 

Ransomware – Be Vigilant Please

You will see widespread news reports regarding ransomware affecting organisations across the world.

We have tested and deployed access protection proactive measures, which will protect all staff and student desktops as advised by our vendor, however, please:

Educate yourself
An email cannot corrupt your device on its own, you have to interact with it. Think:

  • When you receive an email to your University account, consider if you were expecting correspondence on that topic, from that recipient. If you weren’t, and the message is calling for you to act either by sending information, clicking on an active link, or downloading an attachment, first ask the IT Service Desk to confirm its legitimacy.
  • Never tick/check enable macros on attachments, unless you explicitly need to and trust the sender.
  • Don’t run a program if you don’t know where it has come from and haven’t chosen to install it yourself.

Further advice can be found on the Information Security website section.

Getting help
UoD IT staff are available 09:00-22:00 Mon-Fri and 10:00-22:00 Sat-Sun. Please log a call for assistance via Help4U if you have any concerns.

Phishing Scam: ‘FW: Urgent Attention Required.’

Some users are receiving emails with the Subject: FW: Urgent Attention Required.

These emails look like they are coming from a member of staff within the University – the content is “You have received a secured document “Outstanding Payment”. To view the document click here.”

Do NOT click on the link provided. If you have clicked on the link, please reset your password straight away.

If you have any queries, please contact Help4U.

Junk Mail from: scot-ccm-noreply@eurodyn.com

An unknown number of users have received spam mail:

From: <scot-ccm-noreply@eurodyn.com>

We are taking action to have these blocked from coming into the University, however locally you can:

Highlight the email (Right Click) -> Junk -> Block Sender

More information about Spam Mail and how to identify email scams can be found on our website.

Please contact the IT Service Desk if you have clicked on any links/attachments or if you need additional information or support.

Nuisance calls that appear to come from an internal number

The University has recently experienced a small number of nuisance calls. Whilst they appear to be from numbers within the University, they do not originate from our systems.

What is the easiest way to check if the call is legitimate?
Nuisance calls that appear to be from a University extension will display an 01382 dial code in front of the University number. Genuine internal calls will normally only display a five-digit short number on your office telephone.

Colleagues should feel comfortable ending any call which uses threatening or abusive language and should not feel that they are required to engage with any caller displaying such behaviour.

Phishing scam: ‘Expiration Notice’

An unknown number of users have received a phishing scam message:

From: Helen Murray <userservices.supervisor@gmail.com>

Subject: Expiration Notice

The message claims that ‘your access to “My Dundee” will soon expire’. It goes on to state “You can reactivate it by logging in through the following URL” which is hyperlinked into the email.

Do NOT click on the link provided. The link is NOT to a Dundee site, but to leads to a .Dundee.ac.neze address, which is not legitimate.

Users should always change or reset passwords using proper University methods.

Best practice is to delete the email entirely. Please do not reply to the e-mail or click/copy-paste the link within it.

More information about Phishing and how to identify email scams can be found on our website.

Please contact the IT Service Desk if you have clicked on the link or pasted it into your browser’s address window, or if you need additional information or support.