The College of New Jersey

Apply     Visit     Give     |     Alumni     Parents     Offices     TCNJ Today     Three Bar Menu

The Information Technology Security Program intends to protect Internet and Information Technology systems resources and assure their availability to support all of the College’s operations.

View our latest guidelines for Working Remotely

Join us at 10AM on the 2nd Friday of every month for a virtual informal cybersecurity discussion. Learn More

Cybersecurity Alerts

Get alerts about the latest cybersecurity threats and ask questions about any security related topics.

Join Here

PHISH – Invoice_US_CMR_LRB_10295419121_2021-12-13.pdf

Recently an email was sent out that contains a malicious PDF.  If you receive this email do not click the link embedded in the PDF or download it.  Notify and delete the email.  Thank you.  

Cybersecurity Awareness Month 2021

October is Cybersecurity Awareness Month. The theme, just like last year, is “Do Your Part. #BeCyberSmart” which emphasizes the important role we all must play in protecting ourselves and the College from cyber attacks. It is our shared responsibility to be good digital citizens. No individual is solely responsible for securing the Internet. Everyone must…

EXPLOIT – CVE-2021-30860 – FORCEDENTRY zero-day exploit on Apple devices

The FORCEDENTRY vulnerability was discovered last week by CitizenLab.  This vulnerability allows attackers to craft malicious PDF files which the device then process and runs the attackers code, leading to data theft, impersonation and potential device takeover.  This vulnerability exploits Apple’s image rendering library, CoreGraphics and requires no interaction from the user once the text…

Exploit – CVE-2021-40444 – MSHTML RCE Vulnerbility via malicious Microsoft Office documents

This week Microsoft reported that they are seeing this vulnerability being actively exploited in the wild.  The attacker crafts a Microsoft Office document which contains a malicious ActiveX control, that once installed, grants the attacker the same rights as the user who opened the document.  This can allow the attacker to run code, install and…

Phish – Subject:Evaulation.docx01.docx

New phish reported, 04/28/2021.  Mail comes from a Jeremy Keifer in the From field and the email appears to be from some variation of  It is impersonating Kathryn Foster and claims to share a file from Sharepoint (it also has a typo and misspells “has”).  Do not open this attachment or enter any information.…

Phish – Subject: HHS COLLEGE RELIEF FUND ( RE: Finance Department )

New phish reported, with a pdf attachment that links to a phishing site.  From: Dr. Peter Ausburn <> Date: Mon, Feb 22, 2021 at 2:16 PM Subject: HHS COLLEGE RELIEF FUND ( RE: Finance Department ) To: <> Hello good day, Please find attached the summary of the previous meeting between the College Finanace…