Tag: Information Security

Fake student loan emails

New or returning student? Please be cautious with your emails. Fraudsters have been targeting students across the UK with the email phishing scam pictured below:


This is not a genuine communication, as can be seen by the many errors included in the text. It is designed to trick you into giving up your personal information, which may then be used to defraud or steal your identity. Do not click on any of the links if you receive it and report it to us before deleting from your inbox.

Did you receive this and act on it?
Paul Mason, Executive Director of Repayments and Counter Fraud, said: “We will never request a student’s personal or banking details by email or text message. Anyone who receives a scam email about student finance should send it to us at phishing@slc.co.uk in addition to reporting it to Action Fraud, as this allows us to close the site down and stop students from being caught out.

More information about this phishing scam can be reached on the Action Fraud website.

 

Ransomware – Be Vigilant Please

You will see widespread news reports regarding ransomware affecting organisations across the world.

We have tested and deployed access protection proactive measures, which will protect all staff and student desktops as advised by our vendor, however, please:

Educate yourself
An email cannot corrupt your device on its own, you have to interact with it. Think:

  • When you receive an email to your University account, consider if you were expecting correspondence on that topic, from that recipient. If you weren’t, and the message is calling for you to act either by sending information, clicking on an active link, or downloading an attachment, first ask the IT Service Desk to confirm its legitimacy.
  • Never tick/check enable macros on attachments, unless you explicitly need to and trust the sender.
  • Don’t run a program if you don’t know where it has come from and you have not chosen to install it yourself.

Further advice can be found on the Information Security website section.

Getting help
UoD IT staff are available 09:00-22:00 Mon-Fri and 10:00-22:00 Sat-Sun. Please log a call for assistance via Help4U if you have any concerns.

Phishing scam: ‘Expiration Notice’

An unknown number of users have received a phishing scam message:

From: Helen Murray <userservices.supervisor@gmail.com>

Subject: Expiration Notice

The message claims that ‘your access to “My Dundee” will soon expire’. It goes on to state “You can reactivate it by logging in through the following URL” which is hyperlinked into the email.

Do NOT click on the link provided. The link is NOT to a Dundee site, but to leads to a .Dundee.ac.neze address, which is not legitimate.

Users should always change or reset passwords using proper University methods.

Best practice is to delete the email entirely. Please do not reply to the e-mail or click/copy-paste the link within it.

More information about Phishing and how to identify email scams can be found on our website.

Please contact the IT Service Desk if you have clicked on the link or pasted it into your browser’s address window, or if you need additional information or support.

Phishing scam alert

It has come to our attention that a similar phishing scam message (see below) has been distributed to an unknown number of UoD members:

phish

If you have received a similar message like the one above, please refrain from clicking on the attachment as you may be introducing a security threat to your computer.

The sender “accounts@dundee.ac.uk” is not an official University account and is blocked at the gateway to ensure it cannot issue further messages into our email system.

More information about Phishing and how to identify email scams can be found on our website.

Please contact the IT Service Desk if you have clicked on the attachment.

Heartbleed – for IT professionals

More info IT specialists

Many of you will have seen the recent announcement in the news regarding a vulnerability named Heartbleed.

If not, you can find out about it here:

http://www.theguardian.com/technology/2014/apr/08/heartbleed-bug-puts-encryption-at-risk-for-hundreds-of-thousands-of-servers

http://heartbleed.com/

We were lucky enough to be informed about the vulnerability a few hours before most of the UK and as a result we were able to identify and patch many of our servers quickly. Those we didn’t get initially were later identified through persistent scanning.

This wasn’t an easy task, the ability to scan and identify affected servers with this new vulnerability took time to perfect and our specialists worked non-stop to find and patch the systems.

We have now patched all of our servers and are in the process of replacing certificates wherever necessary.

Information Security alert – Apple, British Airways & Royal Mail

Be vigilant to the following three Information Security issues.

  1. Due to a recent security alert, Apple have released updates in the last week for OS X and iOS 7. Select Software Update from your Mac or mobile device for the latest release. You are advised to back up your device before installing updates.
  2. We are aware of a scam phishing email, claiming to be from British Airways, which includes a booking reference, departure date/time, and prices. Recipients are encouraged to download a ticket from a suspicious link which is likely to contain malware. If you receive this email, delete it. If you have clicked on the link, contact Service Desk.
  3. Another scam email claims to be a notification from Royal Mail that a parcel is being held at a local sorting office for you. The recipient is encouraged to download a file which will install cryptolocker to your PC. This will encrypt your files and you will be asked to pay for the key to unlock them by a deadline or the files will be destroyed. If you receive this email, delete it. If you have clicked on the download link, contact Service Desk.

If you have any questions or concerns about Information Security, and scam emails in particular, please contact Service Desk. We regularly update our Facebook and Twitter pages with Information Security advice. See www.facebook.com/uodit and www.twitter.com/uod_it.