Quick Links

phishing

Phishing scam: "RE: ITSUPPORT"

A phishing attempt is circulating with the subject line "RE: ITSUPPORT". The message says that your email will be blocked and you are advised to verify your email account by clicking on a fraudulent website. A sample of the email is shown below.

Please DO NOT click on the link. Delete this email immediately! It does NOT come from a McGill source.

It is a fraudulent attempt to gain access to your personal information. McGill never solicits any such information by email.

Published: 28Jan2015

Phishing scam: "Subject: Faculty And Staff Mailbox Alert."

A phishing attempt is circulating with the subject line "Faculty And Staff Mailbox Alert.". The message says that your password will expire in the next 2 days and asks you to log on to a fraudulent website to validate your e-mail address and password. A sample of the email is shown below.

Please DO NOT click on the link. Delete this email immediately! It does NOT come from a McGill source.

It is a fraudulent attempt to gain access to your personal information. McGill never solicits any such information by email.

Published: 22Dec2014

Phishing scam: "Subject: IT Help Desk"

A phishing attempt is circulating with the subject line "IT Help Desk". The message says that your webmail has exceeded the 95% quota threshold and asks you to click on a fraudulent link to upgrade. A sample of the email is shown below.

Please DO NOT click on the link. Delete this email immediately! It does NOT come from a McGill source.

It is a fraudulent attempt to gain access to your personal information. McGill never solicits any such information by email.

Published: 17Dec2014

Phishing scam: "faculty and staff mailbox alert!!!"

A phishing attempt is circulating with the subject line "faculty and staff mailbox alert!!!". The message says that your email password will expire and asks you to log into a fake IT Website. A sample of the email is shown below.

Please DO NOT click on the link. Delete this email immediately! It does NOT come from a McGill source.

It is a fraudulent attempt to gain access to your personal information. McGill never solicits any such information by email.

Published: 8Dec2014

Check it before you click it!

With holidays fast approaching, cybercriminals are taking advantage of people's vacation planning, online shopping, and expected package deliveries. Millions of phishing scam emails are being sent out daily, spoofing trusted brands, retailers, postal services, banks, stores, and more. Many of these emails look legitimate, and it gets harder to tell what's a real email, and what's a scam.

Published: 5Dec2014

IT Security Alert: Phishing scam "Suspicious Activity - Security Email Alert"

A phishing attempt is circulating with the subject line: "Suspicious Activity - Security Email Alert". The message says that your account has been used from a different location, and you need to verify your account withing 48 hours. A sample of the email is shown below.

Published: 14Nov2014

Phishing Scam from "RBC Express"; Subject: Important Notice for all RBC Express Online Users

A phishing attempt is circulating purporting to come from RBC Express (Royal Bank of Canada), with the Subject: "Important Notice for all RBC Express Online Users". It seems to be targeted to McGill staff and asks recipients to sign in using their RBC login credentials. 

Please delete this email immediately! It is a phishing scam.

If you have received the message and attempted to log in, please contact Peter Guertin, in McGill Financial Services, ASAP so that he can freeze the account and take the appropriate action.

Published: 27Oct2014

Bash security vulnerability

Yesterday, a new security vulnerability, affecting Bash, was announced. The Bash shell, commonly accessed through Command Prompt or the Terminal application, is a part of many Linux, Unix, and Mac systems. Since it has been around for more than two decades, older devices are also vulnerable. If used maliciously, Bash allows an attacker to take over an operating system, access confidential information, make changes, etc.. 

McGill’s IT Services is devoting their full attention to addressing any potential threat this may cause to centrally-managed IT systems.

Published: 25Sep2014

IT will go phishing to improve awareness about scams

Each year, the McGill community is targeted by hundreds of phishing emails, many of which can be hard to recognize and identify.

Published: 11Sep2014

IT Security Alert: Fraudulent email containing zip file attachment

A trojan is currently circulating in various email systems across the globe. Find a sample of the email below.

The email has a zip attachment and a subject line "New order 399749 from site."

Published: 18Aug2014