Huge rash of phishing emails that look like Google Drive requests. Do not click the link. Report the message to abuse@tcnj.edu and delete the message Continue Reading
Security Notices
Important message Phish
Another phishing message reported. From: The College of New Jersey <noreply@tcnj.edu> Date: Tue, Apr 18, 2017 at 2:40 PM Subject: Important message from TCNJ Faculty/Staff To: Recipients <noreply@tcnj.edu> Dear Employee: You have new important message from Faculty/Staff. Click here to read Thank You Information Technology Services The College of New Jersey The message linked to… Continue Reading
WIRE TRANSFER Phish
New phishing message From: XXXX Subject: RE: WIRE TRANSFER NOTIFICATION Date: April 4, 2017 at 2:17:16 PM EDT To: XXXX Hello, Can you please confirm funds made to your account mistakenly by bursary Dept. Followed by an image that links to site that copied our login screen Continue Reading
W-2 Scam Notice
It’s that time of the year again. With tax season upon us, attackers are stepping up their efforts to steal your data. The IRS is reporting an increase in scam emails regarding W-2 information. IRS Scam Notice Let’s take some time to review safe email practices. Always be skeptical – an email “From” address can… Continue Reading
WebEx Extension RCE
A vulnerability has been made public that could allow an an attacker to remotely execute code on a victim’s computer using the WebEx browser plugin. The vulnerability can be exploited by visiting a specially crafted website. WebEx has released an update to address this vulnerability. Make sure all web browsers are plugins are up to date… Continue Reading
Another Payroll Phish
This is another payroll phishing attack Subject: E-Notification of Your Payroll 2016 Dear Member, You have 1 new notification regarding your payroll 2016. Click Here To Renew Regards, IT Help Desk © 2016 The College of New Jersey Continue Reading
Payroll Phish
Please be aware that TCNJ was recently targeted in a payroll phishing attack. If you received an email similar to the one bellow please ignore the message and do not click any of the links. If you did visit the attacker’s website and submit your login credentials you should change your password immediately. Dear: Account… Continue Reading
College student “Work-from-home” scam
January 12, 2015 – College students across the United States have been targeted to participate in work-from-home scams. Students have been receiving e-mails to their school accounts recruiting them for payroll and/or human resource positions with fictitious companies. The “position” simply requires the student to provide his/her bank account number to receive a deposit and… Continue Reading
College Employee Scam
January 12, 2015 – College and University employees are receiving fraudulent e-mails indicating a change in their human resource status. The e-mail contains a link directing the employee to login to their human resources website to identify this change. The website provided appears very similar to the legitimate site in an effort to steal the… Continue Reading
University Direct Deposit Account Credentials Targeted by Phishing Emails
In at least three separate incidents in 2014, malicious actors sent phishing emails with malicious links to University employees; employees who clicked on the link were taken to fraudulent websites that collected single sign-on credentials, which were used to modify the employee’s direct deposit account information. By changing this information, the malicious actors rerouted the… Continue Reading