Quick Links

phishing

McGill’s phishing expedition

Thu, 2015-03-12 14:52

Educating computer users on the consequences of phishing is a challenge, especially since cybercriminals develop more sophisticated-looking emails and schemes every day. We’re all incredibly busy and bombarded with emails; even the most tech-savvy among us have fallen into their trap.Last week, IT Services phished all faculty and staff members of the McGill community. Yesterday, March 11, they did it again. Some people ask why is this necessary?

Read the full McGill Reporter article →

Category:
Source Site: /it

It's time for a phishing expedition

Tue, 2015-02-17 17:04

Periodically, IT Services will send out mock phishing emails to the McGill community as part of a proactive approach to increase awareness of the dangers of phishing. Users who click on a link in one of these emails will be redirected to a page informing them that they have participated in a phishing awareness exercise, and will be encouraged to learn how to identify and avoid falling victim to these types of scams.

Don’t want to wait and risk taking the bait? Sign up now for IT Services’ online Security Awareness training, or read more about spotting phishing scams:

Category:
Source Site: /it

Phishing scam: "RE: ITSUPPORT"

Wed, 2015-01-28 09:41

A phishing attempt is circulating with the subject line "RE: ITSUPPORT". The message says that your email will be blocked and you are advised to verify your email account by clicking on a fraudulent website. A sample of the email is shown below.

Please DO NOT click on the link. Delete this email immediately! It does NOT come from a McGill source.

It is a fraudulent attempt to gain access to your personal information. McGill never solicits any such information by email.

Category:
Source Site: /it

Phishing scam: "Subject: Faculty And Staff Mailbox Alert."

Mon, 2014-12-22 11:30

A phishing attempt is circulating with the subject line "Faculty And Staff Mailbox Alert.". The message says that your password will expire in the next 2 days and asks you to log on to a fraudulent website to validate your e-mail address and password. A sample of the email is shown below.

Please DO NOT click on the link. Delete this email immediately! It does NOT come from a McGill source.

It is a fraudulent attempt to gain access to your personal information. McGill never solicits any such information by email.

Category:
Source Site: /it

Phishing scam: "Subject: IT Help Desk"

Wed, 2014-12-17 15:22

A phishing attempt is circulating with the subject line "IT Help Desk". The message says that your webmail has exceeded the 95% quota threshold and asks you to click on a fraudulent link to upgrade. A sample of the email is shown below.

Please DO NOT click on the link. Delete this email immediately! It does NOT come from a McGill source.

It is a fraudulent attempt to gain access to your personal information. McGill never solicits any such information by email.

Category:
Source Site: /it

Phishing scam: "faculty and staff mailbox alert!!!"

Mon, 2014-12-08 15:12

A phishing attempt is circulating with the subject line "faculty and staff mailbox alert!!!". The message says that your email password will expire and asks you to log into a fake IT Website. A sample of the email is shown below.

Please DO NOT click on the link. Delete this email immediately! It does NOT come from a McGill source.

It is a fraudulent attempt to gain access to your personal information. McGill never solicits any such information by email.

Category:
Source Site: /it

Check it before you click it!

Fri, 2014-12-05 11:44

With holidays fast approaching, cybercriminals are taking advantage of people's vacation planning, online shopping, and expected package deliveries. Millions of phishing scam emails are being sent out daily, spoofing trusted brands, retailers, postal services, banks, stores, and more. Many of these emails look legitimate, and it gets harder to tell what's a real email, and what's a scam.

Category:
Source Site: /it

IT Security Alert: Phishing scam "Suspicious Activity - Security Email Alert"

Fri, 2014-11-14 14:02

A phishing attempt is circulating with the subject line: "Suspicious Activity - Security Email Alert". The message says that your account has been used from a different location, and you need to verify your account withing 48 hours. A sample of the email is shown below.

Category:
Source Site: /it

Phishing Scam from "RBC Express"; Subject: Important Notice for all RBC Express Online Users

Mon, 2014-10-27 16:52

A phishing attempt is circulating purporting to come from RBC Express (Royal Bank of Canada), with the Subject: "Important Notice for all RBC Express Online Users". It seems to be targeted to McGill staff and asks recipients to sign in using their RBC login credentials. 

Please delete this email immediately! It is a phishing scam.

If you have received the message and attempted to log in, please contact Peter Guertin, in McGill Financial Services, ASAP so that he can freeze the account and take the appropriate action.

Category:
Source Site: /it

Bash security vulnerability

Thu, 2014-09-25 11:56

Yesterday, a new security vulnerability, affecting Bash, was announced. The Bash shell, commonly accessed through Command Prompt or the Terminal application, is a part of many Linux, Unix, and Mac systems. Since it has been around for more than two decades, older devices are also vulnerable. If used maliciously, Bash allows an attacker to take over an operating system, access confidential information, make changes, etc.. 

McGill’s IT Services is devoting their full attention to addressing any potential threat this may cause to centrally-managed IT systems.

Category:
Source Site: /it