Latest Security Threats at GHC
|02-19-2014||Phishing Scam - @Account Security Upgrade|
Please see below. The following is a phishing scam first reported to us on Wednesday, February 19, 2014. Please do NOT respond to this email, open any attachments, or click any links contained within. If you have already done so, please immediately contact ITS at 706-295-6775 or submit a ticket to email@example.com.
Our records indicate that your account has not been updated as a part of our regular account maintenance.
Our new SSL servers check each account for activity and your information has been randomly chosen for verification.
Email Management Center strives to serve their email user with better and secure email service.
Please click on the link below to update
Notification: Failure to update your account information may result in account limitation.
Thank you very much for your cooperation!
It is likely many of you have read about a large instance of the Pony Botnet Controller discovered by security research firm Trustwave's SpiderLabs. More than 2 million passwords from Facebook, LinkedIn, Twitter, Google, and ADP were stolen. USG has informed us that eight (8) individuals within the University System had their ADP accounts compromised as a result of this malware. None of the affected individuals were from GHC. We urge you to read more regarding this malware and the steps you can take to protect your credentials.
From the official blog of Trustwave's SpiderLabs:
It’s likely many of you have read about a new piece of ransomware called CryptoLocker. In short, CryptoLocker is malware that encrypts data on your machine and then holds that data “hostage”, requiring you to pay money within a certain time period to decrypt the data. The encryption algorithms used are high-grade (RSA-2048 and AES-256), and without the private key held by the malicious actors it is not possible to decrypt the data. The malware is spreading quickly, and the primary method of propagation appears to be via phishing campaigns. In particular, we ask that you be on the lookout for any emails you may receive containing the following subject lines:
These emails contain malicious attachments that install the malware on to your computer. Do NOT open any emails with these, or similar, subjects unless you are certain of their origin and content.
For more information, please visit: