Phishing email which will take you to a Mail Center landing page and attempt to harvest your credentials. Do not enter any information or click any links in this email.
The Information Technology Security Program intends to protect Internet and Information Technology systems resources and assure their availability to support all of the College’s operations.
View our latest guidelines for Working Remotely
Join us at 10AM on the 2nd Friday of every month for a virtual informal cybersecurity discussion. Learn More
Cybersecurity Alerts
Get alerts about the latest cybersecurity threats and ask questions about any security related topics.
EXPLOIT – CVE-2021-30860 – FORCEDENTRY zero-day exploit on Apple devices
The FORCEDENTRY vulnerability was discovered last week by CitizenLab. This vulnerability allows attackers to craft malicious PDF files which the device then process and runs the attackers code, leading to data theft, impersonation and potential device takeover. This vulnerability exploits Apple’s image rendering library, CoreGraphics and requires no interaction from the user once the text…
Exploit – CVE-2021-40444 – MSHTML RCE Vulnerbility via malicious Microsoft Office documents
This week Microsoft reported that they are seeing this vulnerability being actively exploited in the wild. The attacker crafts a Microsoft Office document which contains a malicious ActiveX control, that once installed, grants the attacker the same rights as the user who opened the document. This can allow the attacker to run code, install and…
Phish – Subject: Document shared with you: “DC.docx”
Another Google Drive Shared File Phish Reported lmack7010@gmail.com shared a document Unknown profile photo lmack7010@gmail.com has shared the following document: XXXXXXXX DC.docx
Phish – Subject: I shared a Doc via Dropbox with you
New phish reported that looks like a Dropbox email. It links to an external site the attempts to capture credentials.
Phish – Subject:Evaulation.docx01.docx
New phish reported, 04/28/2021. Mail comes from a Jeremy Keifer in the From field and the email appears to be from some variation of share-drive-noreply@google.com. It is impersonating Kathryn Foster and claims to share a file from Sharepoint (it also has a typo and misspells “has”). Do not open this attachment or enter any information.…
Phish – Subject: HHS COLLEGE RELIEF FUND ( RE: Finance Department )
New phish reported, with a pdf attachment that links to a phishing site. From: Dr. Peter Ausburn <p4ausburn@outlook.com> Date: Mon, Feb 22, 2021 at 2:16 PM Subject: HHS COLLEGE RELIEF FUND ( RE: Finance Department ) To: XXX@tcnj.edu <XXX@tcnj.edu> Hello good day, Please find attached the summary of the previous meeting between the College Finanace…
Phish – Available cell phone number?
New phish reported 2/16/2021 From: XXXXX <chair.departments@gmail.com> Date: Tue, Feb 16, 2021 at 1:12 PM Subject: To: <XXX@tcnj.edu> Available cell phone number? Best Regardsz, XXXXXX Chair of XXXXX The College of New Jersey
Phish – Subject: HHS RELIEF FUND FOR STAFF AND STUDENTS
Phish reported with encrypted pdf that links to a malicious site. From: Dr. Peter Ausburn <p4ausburn@outlook.com> Date: Tue, Jan 12, 2021 at 6:51 PM Subject: HHS RELIEF FUND FOR STAFF AND STUDENTS To: XXX@tcnj.edu <XXX@tcnj.edu> Hello good day, my name is Dr. Peter from the HHS (U.S. Department of Health & Human Services). Find attached…
Phish – Subject: TCNJ Help Desk
New phish reported. Link to a jotform site From: “TCNJ” <XXXXXX> Subject: TCNJ Help Desk Date: November 25, 2020 at 7:00:29 PM EST To: XXX@tcnj.edu Hello, Your request to deactivate your TCNJ account has been received and will be completed shortly. You can cancel the request here to keep your account active Thank You TCNJ…