minsterg | Information Security

[PHISH] Chris Hann shared “HannWriting Inc.2025-03-18 14.07.29.pdf” with you

Posted on March 18, 2025 by minsterg • 0 Comments

We are receiving reports of a phishing email utilizing Dropbox as a conduit to attempt to get users to download a malicious PDF. See example email below. Attackers often will use 3rd party services such as Dropbox to host malicious files and bypass spam filters. Be cautious of any file sharing links that you are not expecting and verify via alternative means than any email or phone number contained in the email (as they may be attacker controlled) that the file shared is not malicious. Thank you for remaining vigilant against these attackers and please report any suspicious messages to us at phish@tcnj.edu.

[PHISH] Q1 Employee Handbook|Policy Reviews-88638-ZHDN-NHHD-UPQN

Posted on March 6, 2025 by minsterg • 0 Comments

We have received reports about an attacker impersonating our HR department. See example email below. Note that the sender email address is not a tcnj.edu address. Hovering over the link also shows an unusual URL destination. The email also uses a TCNJ logo and enticing wording to attempt to lure people into clicking the link. … Continue Reading

[PHISH] You sent a payment (from PayPal)

Posted on February 4, 2025 by minsterg • 0 Comments

We are receiving reports of a PayPal scam being sent to TCNJ users. The attacks leverage compromised PayPal accounts to send false money transfers and requests and include a false phone number to contact regarding the transfer. Note that the phone number substitutes digits for letters to attempt to evade filtering. Do not call this… Continue Reading

[PHISH] You added a new address – PayPal

Posted on January 30, 2025 by minsterg • 0 Comments

We received reports of a PayPal phishing scam that appears to be rather sophisticated. The emails and link in the body do appear to come from paypal.com but are not legitimate, the phone number included is not associated with PayPal and the link may be used to redirect to a false login page. If you… Continue Reading

[PHISH] Text Messages Regarding Shutting Down Email

Posted on December 18, 2024 by minsterg • 0 Comments

We have received reports of users receiving text messages claiming to be from the IT Help Desk stating their school email is being shut down. They request approving a Duo push to prevent cancellation, and if the password they have doesn’t work, they are requesting the password. The TCNJ IT Help Desk will never contact… Continue Reading

[PHISH] ACT NOW

Posted on December 3, 2024 by minsterg • 0 Comments

We are seeing a number of TCNJ user’s receiving emails regarding inactive accounts prompting them to complete a Google form to maintain access. Note that the attacker’s intentionally avoid using the word Password in the form as this will alert Google to potential phishing activity. Always verify any emails of this nature by reporting them… Continue Reading

[PHISH] SMS message asking about closing TCNJ email

Posted on November 6, 2024 by minsterg • 0 Comments

See example below. TCNJ’s Help Desk will never contact you via text message in this manner. Please note the area code in the screenshot is outside of New Jersey as well. Be sure to always verify suspicious messages via alternative means, such as emailing us here at phish@tcnj.edu. Thank you. Continue Reading

[PHISH] Broker Seeking Student Assistant: Part-Time Position

Posted on October 1, 2024 by minsterg • 0 Comments

This morning we received reports of users receiving a job offer scam. This is a common phishing attack using an online form to gather information for further exploitation. Note that the sender’s email does not match the name in the signature. Do not reply to the sender or click on any links in the email. … Continue Reading

[PHISH] SMS Impersonation

Posted on September 20, 2024 by minsterg • 0 Comments

Please be aware of attackers using text messages to impersonate TCNJ employees. See a recent example below. Indicators of fake text messages are similar to those in phishing emails, as well as out-of-state area codes or numbers marked private. Continue Reading

[PHISH] Available?

Posted on July 30, 2024 by minsterg • 0 Comments

We’ve received reports of attackers impersonating TCNJ faculty making the rounds again. See the example email below. Be sure to check the sender’s email address beyond the display name. Report any suspicious emails to phish@tcnj.edu Continue Reading

Author Archives: minsterg