We have received reports of a QR code phishing scheme claiming to contain details of a pay increase. Screenshots are below. The email utilizes an attachment that contains a QR code and prompts the user to scan it to view details. The link takes the user to a false Microsoft login page which prompts for…
The Information Technology Security Program intends to protect Internet and Information Technology systems resources and assure their availability to support all of the College’s operations.
View our latest guidelines for Working Remotely
Join us at 10AM on the 2nd Friday of every month for a virtual informal cybersecurity discussion. Learn More
Cybersecurity Alerts
Get alerts about the latest cybersecurity threats and ask questions about any security related topics.
[PHISH] Amended The College Of New Jersey Handbook Updated Policy
We received reports of a phishing email that claimed to contain an updated handbook for TCNJ. The email address of the sender is not a TCNJ address, which is a clear indicator that this is not legitimate. The attached PDF document contains a QR code that leads to a fake Microsoft login page; the URL…
[PHISH] Immediate Action Require: MFA System Upgrade
We received reports of an email utilizing a QR code attachment imitating TCNJ and warning of account lockout. Note the email did not come from a tcnj.edu email address and the entire email was an attachment. The QR code (if scanned) does not lead to a tcnj.edu website. Do not reply to the sender nor…
[PHISH] [TCNJ: Information Security Advisory] 2FA Authentication!
A number of users received a QR code phishing email this morning impersonating TCNJ. Note that the email originated from a Gmail account and not a TCNJ email address. The entire email body was an image rather than text, which attackers use to bypass filters. Do not scan the QR code. The landing page for…
[PHISH] Text Message Phish about Shutting Down Email
We’ve received some reports regarding another text message attack impersonating our help desk. Be aware our TCNJ Help Desk will not contact you via text message. You should also note that the area code of the phone number is outside the NJ area. Another point is that the attacker uses a sense of urgency in…
[PHISH] Chris Hann shared “HannWriting Inc.2025-03-18 14.07.29.pdf” with you
We are receiving reports of a phishing email utilizing Dropbox as a conduit to attempt to get users to download a malicious PDF. See example email below. Attackers often will use 3rd party services such as Dropbox to host malicious files and bypass spam filters. Be cautious of any file sharing links that you are…
[PHISH] Q1 Employee Handbook|Policy Reviews-88638-ZHDN-NHHD-UPQN
We have received reports about an attacker impersonating our HR department. See example email below. Note that the sender email address is not a tcnj.edu address. Hovering over the link also shows an unusual URL destination. The email also uses a TCNJ logo and enticing wording to attempt to lure people into clicking the link. …
[PHISH] You sent a payment (from PayPal)
We are receiving reports of a PayPal scam being sent to TCNJ users. The attacks leverage compromised PayPal accounts to send false money transfers and requests and include a false phone number to contact regarding the transfer. Note that the phone number substitutes digits for letters to attempt to evade filtering. Do not call this…
[PHISH] You added a new address – PayPal
We received reports of a PayPal phishing scam that appears to be rather sophisticated. The emails and link in the body do appear to come from paypal.com but are not legitimate, the phone number included is not associated with PayPal and the link may be used to redirect to a false login page. If you…
[PHISH] Text Messages Regarding Shutting Down Email
We have received reports of users receiving text messages claiming to be from the IT Help Desk stating their school email is being shut down. They request approving a Duo push to prevent cancellation, and if the password they have doesn’t work, they are requesting the password. The TCNJ IT Help Desk will never contact…