Web Quota Spam, DO NOT CLICK

5 11 2011

It was just brought to our attention that there is a phishing e-mail going around campus with the subject “Dear Account User‏”

This is spam, please do not click on the link. They will attempt to get your login information and compromise our network.

The text of one such e-mail is below.

From: onwatch1@wavecable.com
To: undisclosed-recipients: ;
Date: Sat, 05 Nov 2011 10:02:53 -0700
Subject: Dear Account User‏
Dear scranton.edu Subscriber,

We are currently carrying-out a upgrading mantainance process to all scranton.edu account. Please click the link below to boost your scranton.edu webmail quota.


Comments : Leave a Comment »
Tags: , , ,
Categories : Email, Security

IT Matters Winter 2010 Issue

30 11 2010

The new issue of IR’s IT Matters newsletter is available in PDF format.

As in the last issue, many of the articles deal with issues we’ve already been discussing here on the TAG site, but there’s a few new items of interest:

  • See p. 1 for a note from VP Jerry DeSanto on the email transition.
  • P. 3 has a quick update from the Mobile Applications team about the upcoming University mobile app.
  • On p. 4, Jim Franceschelli reminds everyone that completed Microcomputer Budget Forms need to be in by December 13 — so faculty members need to get any requests to their department chairs ASAP!
  • Also on p. 4: Some notes about Microsoft Forefront, which will be replacing McAfee Anti-Virus.  IR is beginning deployment this December, and McAfee will be removed from University computers by May 2011 at the latest.
  • P. 6: The Computer Maintenance Center has set a goal of having all four computer technicians Apple Certified by the end of December 2010.  So far, two of the four (Glen and Karl) have passed their certification tests.
  • Standard user accounts are mentioned on p. 7, but no further details on what kinds of software we will and own’t be able to install on our own computers.
  • My.Scranton is being updated – there will be a brand new version out, with an “improved user interface,” around Fall 2011 (p. 9).
  • Vince Merkel explains thin clients on p. 11.
  • Gus Fernandez goes through the steps of how the Computer Security Incident Response Team responds to infected computers (p. 14).
  • Information Security Manager Tony Maszeroski has some pointers for us on phishing scams on p. 15.  This is a must-read for faculty — TAG has heard from IR that faculty members have fallen for phishing scams in the past.
  • On p. 16, Cal Krzywiec reports that the University is planning to increase our wireless coverage from 300 wireless access points to closer to 1000. Wahoo! And the wireless network will be upgraded to accommodate higher demand. Wahoo again!
  • There will be a new Employee Applications tab on my.scranton.

Comments : Leave a Comment »
Tags: , , , , , , , , , , , ,
Categories : Announcements

Meeting Notes 11/11/2010

11 11 2010

Another month, another TAG meeting.  We had a packed agenda today and did our best to at least touch on each issue.

New member:

  • Anne Marie Stamford, Assistant Provost for Operations, has joined the committee as a representative for the academic administration.  Anne Marie was invited to join after we realized she was dealing with some of the same questions as TAG (e.g., how to get feedback from faculty on technology issues). Welcome, Anne Marie!

Follow-up on survey results:

  • The results from our 2010 survey on faculty communication have been posted to the TAG site, both summarized and in full.
  • Jim, Jeremy, and Kristen drafted up responses to the “Top 9” major concerns from the survey comments.  TAG members have until Monday to make any edits/suggestions.
  • What’s the best way to distribute these “Top 9” responses to faculty?  On one hand, we want to get the information out quickly rather than holding it back – and some of the issues (i.e., requesting new computers) are time sensitive. On the other hand, we do want people to actually consider and respond to the “Top 9,” not just ignore them as tl;dr.  Our current plan is to post them (individually) to the TAG site, and then send out an all-faculty email with the first response on communication, and links to the next 8 responses.  If we don’t get a lot of feedback on the other 8 responses, we can also send out updates on the next 8 posts at regularly spaced intervals (e.g., 2x/week).  Jeremy and Kristen will coordinate this with Anne Marie.
  • Sending email to all faculty that includes non-scranton.edu links is somewhat of an issue. IR wants to make sure that people are very cautious about what links they click on, in light of the many recent phishing attacks.
  • Anne Marie suggested that some of the “Top 9” responses would be of interest to staff.  She will share them with the Data Technologies group.
  • More detailed statistical analysis of the survey results is on the way.

Catalog

  • There are several reasons why faculty feel strongly about having paper copies of the catalog (e.g., ease of advising, being able to bookmark/make notes, concerns about monitor sharing…).  This seems to be a major issue mostly in CAS, where most faculty are advisors (unlike in PCPS and KSOM, which have professional advisors).
  • We posted a PDF of the catalog to the TAG site.  Anne Marie has 10 printed copies of the catalog in the Provost’s Office if anyone wants one, and she will look into printing enough copies of the catalog for all advisors next year.

Feedback from English Department

  • Teresa brought feedback from the English department on three main issues: the need for a print copy of the phone book/directory, recommendations for a WYSIWYG editor for HTML code (for the CMS), and difficulty with TSC customer service.
  • In general, TAG will respond to faculty feedback like this by 1) posting a summary of the question, with a response from TAG, to the TAG site and 2) emailing the faculty member directly with the response.
  • Kristen will coordinate with Teresa to get responses to these concerns posted to the TAG site.

Soliciting faculty feedback

  • There are several issues on which faculty feedback is needed, including the CMS (per Anne Marie), classroom mediation (per Jim), and faculty areas of technology interest/expertise.  What’s the best way for TAG to gather this information? Our communication survey was useful, but didn’t hit all faculty.
  • TAG will work on assigning liaisons from TAG to each department.  Liaisons could visit February department meetings to solicit feedback from entire departments.  They’d also be able to let faculty know that TAG exists and talk about how we can be a resource.
  • To assign TAG members to departments, Cathy will work on dividing PCPS departments between herself and Kevin, and Jeremy and Teresa will work on assigning CAS departments between them, Tim, and Kristen.  Neither SP or Sufian were in attendance, so we will ask them to choose KSOM departments.  Jim and Anne Marie will send Kristen specific questions on which they need faculty feedback.

Email and Calendaring change

  • Campus email will be moving to Microsoft Live@Edu.  To smooth this transition, TAG has offered to help IR communicate with faculty about the transition.
  • Since this is a big issue, we’ll have a meeting sometime after January specifically dedicated to the email issue.  By then, we should have some test accounts so TAG members can identify potential faculty concerns.
  • We discussed describing the change as a benefit rather than an annoyance – while faculty will have to learn a new interface, they’ll get a much larger quota and along with other new features. We also need to communicate to Google fans that, while Gmail was considered, IR did have valid reasons for choosing Microsoft.

TAG Policy

  • A few TAG members drafted a policy for codifying how TAG interacts with IR and facilitates faculty feedback into technology decisions.  We’d like the rest of the TAG members’ feedback on the draft policy, with an eventual goal of passing it up to the Faculty Senate Academic Support committee.   We’ll post the policy on the TAG site next week after all members have gotten to review it.
  • Cathy pointed out that the policy does not address all of TAG’s original goals – so we need to be clear that the document is not a mission statement for TAG but instead a single policy that defines one aspect of TAG’s goals.

Other points of discussion

  • We discussed the idea of visiting Dean’s Conferences in order to spread the word about TAG, but we agreed that checking in with the Faculty Senate would be best before approaching the Deans directly.
  • Cathy and Kristen will meet after Thanksgiving to start working on aggregating classroom technology resources for faculty.

Comments : Leave a Comment »
Tags: , , , , , , , , , ,
Categories : Classroom Mediation, CMS and University Website, Email, TAG Administrative

More Phishing

18 10 2010

IR sent out another memo today about phishing – the email went out to all faculty (wahoo!) in addition to being posted to the my.scranton portal.  If you missed it:

Over the past weekend, several University members have received phishing emails.   Phishing is where you receive an email from what appears to be the University, your bank, or other financial institution, requesting you to reset or confirm your security details.  The scams often urge individuals to follow a link and enter their username and passwords.  However, these links will usually take you to a fake website with the aim of getting hold of your personal or financial details to defraud you.

IT Services urges all users not to follow links sent in email requesting your username and passwords.  Any information that the University of Scranton needs will be posted within the my.scranton Portal.  Emails guiding individuals to click on a link should be ignored.   Authorized emails sent by IT Services will be of an informative nature only.  They will not contain links and will not request that you provide any personal information.

If you received emails that are in question, please contact the Technology Support Center at extension 4357. 


Comments : 1 Comment »
Tags: , ,
Categories : Email, Security

University Email Blacklist Update

29 09 2010

IT Services just sent this out to all faculty via email (it’s also been posted to Bboard, and should be up on the portal soon) —

We have been experiencing intermittent problems with outgoing email delivery from the University’s email servers since last week.  This problem is a result of the phishing attack on September 20th when several campus members responded to an email requesting the password to their email account; this information was then used to generate thousands of spam emails from these compromised email accounts. Because of this, University email has been blacklisted on the mail servers of numerous external organizations. This blacklisted status can be in place for up to 30 days depending on the organization’s security policies. If you attempt to send an email to one of these organizations it will “bounce back” to your email inbox as undeliverable.

Our IT Infrastructure group has stopped the spam emails being sent from these University accounts and is working with AOL, EPIX and the other Internet Service Providers to restore the ability for University email to be received. For the next 30 days, we recommend that you ask recipients of mission critical email to call or text you if the email isn’t received within four hours. Please report any email “bounce backs” to the Technology Support Center at (941-HELP or techsupport@scranton.edu), this will assist us with monitoring the situation and getting the University off of blacklisted sites.

We appreciate your patience and remind all campus community members that you should never share your University account passwords with anyone.


Comments : Leave a Comment »
Tags: , , ,
Categories : Email, Security

Another Email Scam

22 09 2010

This morning, many University email accounts received an email ostensibly from one of our former faculty members (Scott Bader-Saye) requesting financial assistance.  The Technology Support Center has confirmed that this email message is a scam and should be ignored and deleted.

Thanks to the Provost’s office for emailing the University Community with this information right away!


Comments : Leave a Comment »
Tags: , ,
Categories : Email, Security

University Phishing Attempt

20 09 2010

An e-mail from “The University of Scranton” (vc@scranton.edu) with the subject “Warning” is a phishing attempt. DO NOT CLICK ANY LINKS FROM THIS EMAIL!

Notice that the links in the e-mail do NOT point to any university of scranton website. DO NOT follow any links or reply to the email address. The text of the e-mail is below.

Your web mail account will be deleted in the next 24 hours due to congestion in The University of Scranton web mail user account. However if you wish to continue using your web mail account. you will have to confirm that is a present use account by clicking the secure Link Below. The personal information requested is for the safety of your account. Please leave all information

click here:secure login

click here:email activation

Warning!!! Failure to update correctly within 24 hours of receiving this warning will lose your email permanently.
Thanks

Vice-Chancellor

Copyright ©2010 The University of Scranton


Comments : 1 Comment »
Tags: , , ,
Categories : Announcements, Email, Security

Phishing Scam

3 09 2010

Heads up, y’all. If you get a weird looking email from “The University of ScrantonScranton,” don’t click on the link – just delete it. This is a phishing scam.  IR posted a notice about it on my.scranton last night:

There has been a fake phishing email sent to an unknown number of Scranton.edu email addresses. It is from webmasterr@scranton.edu and says the following: “Dear Web mail User, Due to congestion in all The University of Scranton!webmail users accounts,The University of Scranton!would be shutting down some webmail account.In order to avoid the deactivation of your webmail account,you will have to confirm that is a present use account by clicking the secure Link Below.The personal information requested is for the safety of your account. Please leave all information requested.. Please leave all information requested.” Please, if you receive this email, do not click on the link and enter your personal information. This email is not from the University and we would never request your personal information via an email.

——————————-

Update 9/7: This phishing episode sparked a bit of discussion about the timeliness of communication about significant technology issues.  Here’s what we’ve worked out as a timeline for the incident (thanks to Jim and Jeremy for hashing out the details):

  • Thursday evening: First phishing emails were received, and the TSC received numerous reports. The TSC notified the security manager, who blocked access to the phishing web site from the U’s network (though this wouldn’t prevent faculty/staff from getting there from their home ISP).  The TSC put a notice in the my.scranton portal around 6:30pm.
  • Friday morning: The TSC posted a note to Bboard.  TAG posted the notice to our site here (thanks to Jim for the heads up about it).
  • Friday noon: The Provost emailed all faculty about the phishing attempt.
  • Throughout the day on Friday, the TSC responded to several calls about the email.  Sometime on Friday, the security manager contacted the host site and had the malicious site taken off line.

So it seems that from the IR side, everything went as planned — the information security manager was involved right away, notices were posted right away, etc.  However, anecdotally, it doesn’t seem like faculty or staff picked up on the alerts (especially the my.scranton notices) right away.  Most people didn’t seem to know about the scam until they got an email about it.


Comments : 1 Comment »
Tags: , , ,
Categories : Security