Fordham University Information Security Office

New Scary Email Scam Goes After Your Banking Info

From Fox News: A new email scam that goes after your banking information looks so legit it could fool you. The scam pretends to be Citibank replete with an authentic-looking website, according to cybersecurity news site BleepingComputer, which credits MalwareHunterTeam as the organization that discovered the scam. The fake Citibank domain, or website address, is a convincing fake: “update-citi .com.” That’s a

‘Do not open’: Scam Text Message Poses as Package Tracking Notification, Report Says

From Fox5NY: ORLANDO, Fla. – Online technology magazine ‘How-To-Geek’ said that scammers are targeting people through believable text messages posing as shipping and delivery confirmation messages. The magazine goes on to say that although this is not the first time that scam SMS texts have been sent out, it does seem that more people are receiving these messages. If

Scam – Fraudulent Purchase Orders

Purchase order fraud occurs when a scammer contacts a vendor and impersonates a legitimate customer. While posing as the representative of a legitimate organization, the scammer requests a quote and orders large quantities of a product, such as flash drives or mugs. The vendor ships the product to the fake company and bills the legitimate

FBI Offers Tips for Safe Online Shopping

From ZDNet: Ahead of the yearly Christmas shopping spree, one of the FBI’s regional offices has published yesterday a series of security tips to help users stay safe while they shop online. The security tips, part of the bureau’s weekly tech advice column, deal with everything from keeping devices up-to-date to avoiding online scams. While

Phishing Email ALERT: “Payroll Schedule Message”

A number of Fordham users have received phishing messages from senders with the address format “username@colorado.edu.” The subject line is some variation of “Payroll Schedule Message.” The messages contain links to a fraudulent sign-in page that mimics the login page for my.fordham.edu. This message is NOT legitimate and is part of a credential-harvesting scam. Here is an

Spam and
Phishing

One of the most common cyber attacks involves sending e-mails posing as friends, professors and coworkers. Attackers are hoping you share your credentials and other personal information that they can use to compromise your account.

Learn how to identify and protect yourself against Spam and Phishing attacks HERE.

Cofense
Reporter

Need to quickly report a phishing or spam e-mail? Cofense Reporter lets Fordham members easily report and delete spam and phishing e-mails. The Cofense Reporter button is available to use once you log into your Fordham Gmail account.

Learn how to use Cofense Reporter HERE.

Ransomware
Awareness

Ransomware attacks are on the rise and can cripple entire businesses and institutions. Attackers are looking to encrypt and lock your data so that you or your organization will have to pay money to get it back.

Learn more about Ransomware and how to protect yourself HERE.

Cybersecurity Tips

Cybersecurity is the shared responsibility of everyone. Students, staff and faculty alike can help contribute to an enviroment of safe online practices. There are many things you can do to help keep everyone’s information safe.

Use a hard to guess password with special characters and random numbers.
Refrain from including dictionary words and instead use abbreviations or acronyms of phrases you'll remember. Include random numbers and special characters, such as #, to make it more secure against password cracking software. Never share your password with anyone else.
Never download links or attachments from untrusted e-mails and websites.
When presented a link from an e-mail or webpage, hover your mouse over the link to make sure the URL is recognizable. For example, if you intend to download something from Microsoft and you see the URL is from “microzooft.com”, then most likely the link is not legitimate and possibly malicious.
Avoid using public Wi-Fi and computers when traveling.
When using an open wireless network, other people may be able to sniff and view your online traffic. Do not conduct sensitive activities such online shopping, banking or university work. If you must, only visit sites that start with "https://" and not "http://". Be cautious of using public computers in places like hotels, libraries and cyber cafes as they may have malware and key loggers installed.
Protect and watch over your devices when traveling and in public.
To prevent theft of your devices, always check your surroundings and make sure your devices are within eye sight. Do not leave phones, laptops, USB and external hard drives unattended. Ensure your work devices and hard drives are encrypted before traveling. For more information, see the top menu of this page under Resources > Disk Encryption for Fordham's Encryption Policies.
Don’t leave confidential information out in the open.
If you are handling confidential information with anyone's personal identifiable information, make sure to lock your computer or keep papers locked away in a secure space.

Social

Quick Links

IT Security Blog

GDPR Reference Site

Fordham IT News

Security Alerts

UISO TWITTER FEED

My Tweets

Spam and Phishing

Cofense Reporter

RansomwareAwareness