Email Scam Advisory--May 29, 2018

From: Office of Information Technology
Sent: Tuesday, May 29, 2018
To: College Community
Subject: Email Scams Advisory

CCNY IT header imageCCNY OIT


Dear City College Community Member:

This is a reminder to be alert to the innumerable online scams. One of the most prevalent is known as a “phishing” email. These emails are designed to look like legitimate emails originating from your bank, a friend, or even the United States government. However, they are a ruse to persuade you to download malicious software and/or reveal account credentials and personal information that can be used for identity theft.

Phishing emails often direct you to submit sensitive information, threaten to deactivate an account, advise you to change your password or activate or upgrade an account by clicking a link. These schemes also use less alarming ruses, including attaching invoices, taxes, or financial aid forms that contain viruses. Their goal is to compromise the security of your personal computer or smartphone, to harvest your valuable information, and, ultimately, to defraud you and your colleagues, friends and family.

How to Protect Yourself
Always remember, an official entity, including CCNY and CUNY, will never use email to request your userid, password, or social security number or ask for detailed personal and financial information such as PIN numbers, or secret access information for credit card, bank or other financial accounts. Be suspicious if you receive emails or visit websites requesting any of this information, also:

  • DO NOT click on the links.
  • DO NOT download the attachments.
  • DO NOT enter your credentials.
  • DO NOT reply to the original email.
  • DO NOT forward it to acquaintances.

If a suspicious message seems legitimate, contact the originating office by phone (using the phone number on the CCNY directory listing) before responding. Or try opening a new browser window and typing the address directly. Please also notify ITSecurity@ccny.cuny.edu

If you inadvertently disclose your user ID and password change your password immediately on any and all systems where that password is used. Using your account credentials from one hacked system cyber-criminals may be able to determine your username on other systems. If you use the same password on those systems they too could be compromised.

For more information please read the CUNY Phishing Advisory posted at:http://security.cuny.edu under the CUNY Issued Security Advisories.

In addition, we suggest you complete the 30-minute Security Awareness Course viewable here: http://security.cuny.edu

The following links provide useful resources to help you better understand, identify and avoid phishing scams and how to protect yourself from cyber fraud:

Screenshots of Convincing Phishing Emails
http://www.malwarehelp.org/screenshots-of-phishing-email-messages.html

Ouch! security newsletter on the topic
http://www.ccny.cuny.edu/it/upload/2013-02_OUCH_Email-Phishing-Attacks.pdf

CCNY Information Security website, including CCNY/ CUNY policies
http://www.ccny.cuny.edu/it/security

United States Computer Emergency Readiness Team
http://www.us-cert.gov/nav/report_phishing.html

Federal Trade Commission
http://www.ftc.gov/bcp/edu/microsites/idtheft

IT footer servicedesk@ccny.cuny.edu " shape="rect"> Facebook IT Twitter CCNY IT YouTube

<< Back to IT Security

Contact Information
IT Security Office
e: ITsecurity@ccny.cuny.edu
 
Service Desk
Location: North Academic Center (NAC)
Room: NA 1/301
p: 212.650.7878
e: servicedesk@ccny.cuny.edu

Last Updated: 04/01/2024 10:18