RIT Information Security Alert--Verizon and Other Phishing Attacks on RIT Users

DSD Logo

RIT Information Security Alert--Verizon and Other Phishing Attacks on RIT Users

 


Why are we posting this message?

RIT has received several rounds of phishing attacks this fall. On average, almost 25 RIT users will respond to a well-crafted phish. 

If you've receive a message asking for your password or login credentials, please delete it. Here's an example of some recent phishes we've received, designed to trick you into logging into what you think are legitimate websites where you'll enter login information.

  • From AccountNotify@verizonwireless.com, with the subject line: "Your Bill is Now Available." Addressed to your email account.



    The e-mail embeds Verizon graphics and appears like an authentic notification. However, the links in the graphic do not go to Verizon. (Screenshot below.) 

Verizon Phish

  • From UPS Shipments, with "Your package has arrived" in the subject line 

From: UPS Shipments [mailto:tracking@ups.com]

Sent: Tuesday, August 30, 2011 9:34 AM

To: Your Name

Subject: Your package has arrived!

Dear client

Your package has arrived.

The tracking # is : 07D8B1F11FD9C351 and can be used at :

http://www.ups.com/tracking/tracking.html

The shipping invoice can be downloaded from :

Link Removed



Thank you,

United Parcel Service

*** This is an automatically generated email, please do not reply ***

What is RIT doing to protect me?

  • RIT is working to block the phishing/malware attacks from reaching RIT e-mail accounts.
  • myMail.rit.edu has not been compromised.
  • McAfee VirusScan with up-to-date virus definitions will protect against viruses and many other threats that may be associated with phishing emails. (Antivirus software is available free to RIT students, faculty, and staff for home use from http://www.rit.edu/its/services/security/).
  • MySpam will block many of these phishing e-mails. However, senders actively modify messages to avoid spam traps like Brightmail, and that allows a few to slip through.

What can I do to protect myself?

Delete the e-mail. If you clicked on the link, change your password NOW, scan your systems for viruses and spyware,  and report the situation to your Help Desk (SCOB, NTID, ITS).

Visit the RIT Information Security Phishing page at http://www.rit.edu/security/content/phishing for information on keeping yourself safe from phishing attempts.

REMEMBER: RIT will NEVER ask for your password through e-mail.