Viruses, malware and phishing alerts

HelpDesk Email Phishing Alert (9/8/14)

An email phishing attempt is being circulated. The email is made to look like a shared Google document and states:
“Please view the document I uploaded for you using Google docs. just sign in with your email to view the document its very important.” (Note: The poor punctuation is a typical sign of a phishing email)

DO NOT CLICK ON THE LINK OR GIVE OUT YOUR BRADLEY EMAIL CREDENTIALS!

Russian Hackers have stolen 1.2 Billion Usernames and Passwords (8/6/14)

Russian hackers have successfully stolen over 1.2 billion usernames and passwords from websites around the world. We strongly encourage you to change your passwords to all the sites that you visit. To help protect yourself and your information, we recommend using complex passwords and a unique password for each site.

For more information, please see the following article:

http://www.nydailynews.com/news/world/russian-hackers-stole-1-2-billion-passwords-safe-article-1.1893695

Google Docs Phishing Attempt Warning (5/29/14)

Phishing emails are circulating with the Subject: View the Attached Document. The email states that “You have new document Attached to view from Google docs”. The emails are originating from compromised Bradley accounts. If you are not expecting an email about a Google doc file from the sender, DO NOT CLICK ON THE LINK. If you receive a suspicious email please forward it to helpdesk@bradley.edu.

Bradley Email Phishing Attempt

A fake email phishing scam is being circulated that claims the you have exceeded your web bandwidth limit. It falsely claims that it was sent by Bradley. The email asks you to review the email and click a link to automatically renew your bandwidth. DO NOT CLICK ON THE LINK. Please delete the email immediately.

EBay Password Breach

EBay released a statement urging all of their users to change their passwords following a security breach. The security breach impacted the servers that handle encrypted passwords, customer names, addresses, phone numbers and dates of birth. If you have an EBay account, we strongly urge you to change your password immediately.

http://www.usatoday.com/story/tech/2014/05/21/ebay-breach/9368969/

Help Desk Email Phishing Attempt

A new email phishing attempt is being circulated claiming to be from the Administrator of the Bradley HelpDesk. The email claims that the HelpDesk is sending an email out to all account users for an upgrade and will deactivate all inactive accounts. Do not click on the link included in the email. Please delete the email immediately.

Bradley Signin Phishing Email Alert

A fake phishing email is circulating that asks the user to click a link to re-validate the user's email and scan for viruses. The email claims to be from Bradley Signin Service Management Support. DO NOT CLICK ON THE LINK OR ENTER ANY INFORMATION ON THE LINK'S DESTINATION. Delete the email immediately.

Bravesites.com Email Phishing Alert

A phishing email being circulated that has the Subject: Upgrade Email Now! and claims to be from bravesites.com. If you receive this email, delete it and DO NOT CLICK ON ANY LINK ENCLOSED.

MyBU PHISHING WARNING

There is a phishing email being circulated that claims to be sent from the MyBU IT Helpdesk. This email is a FAKE and DO NOT CLICK ON THE LINK in the email. The email has this subject title: Subject: Your Incident ID is: 130329-018715. The email claims that someone from Stockholm, Sweden has attempted to login to your account using an unrecognized device and asks you to follow a link.

PC CryptoLocker Malware Alert

There is a new malware email that says it’s from Intuit (creators of Quickbooks software) that includes an attached zip file. Once the zip file is clicked on, it installs an executable file that will then encrypt the user’s data on their hard drive, networked drives and external drives attached to the computer. The user will then get a CryptoLocker prompt (see image below) that say they have to pay $300 USD to get a key to unlock the data. If the money is not paid by a specific time, the data is then destroyed and will not be recoverable. If you receive this email, DO NOT OPEN THE ATTACHED ZIP FILE.

CryptoLocker Prompt

If you have any other questions, please contact the HelpDesk at (309) 677-2964 or visit us in the Cullom-Davis Library.

WARNING: New "Beta Bot" Malware

A new malware threat has emerged that is being called "Beta Bot". This malware is disguising itself as a "User Account Control" Windows update pop-up box. DO NOT CLICK YES TO INSTALL!

Beta Bot Malware

Once the user clicks "yes" to install it, the malware will disable your antivirus and stop web access to the vendor so the definitions can not be updated. It will then steal your user name and passwords for financial institutions, social networks, e-commerce sites and more.

"Pintsized" MAC Trojan

A new malware trojan has been discovered by the name of Pintsized. The new trojan is able to bypass the built-in firewall in OS X Lion (10.7) and Mountain Lion (10.8) through a security flaw. The trojan isn't wide spread yet, so the best way to protect your computer is to only go to trusted websites. Do not download or install any files or installers from sources that are not trusted. This security flaw will be patched by Apple and be included in an update from them.

Java 6 Updated from Apple

Apple has just released an update for Java 6. The patch will fix a security flaw that could be used by hackers and disable the Java 6 web plugin for browser. We strongly suggest that you install the latest Java 6 update to prevent your computer from being hacked. To get the new Java 6 update, go to the Apple in the menu bar and select Software Update. Once the Software Update window is finished loading, click the Update button next to the Java 6 update option.

Viruses, malware and phishing attempts

If you are in doubt about any email message or believe that you may have a virus or malware on your computer, contact the Technology HelpDesk at (309) 677-2964 for assistance.