Tuesday, October 9, 2012

AUB: Information Security Alert: e-Scams‏

I received an email message from my University administrator that I would like to share:
AUB: American University of Beirut.

From: Administrator <administrator@mail.aub.edu>
Date: Tue, 9 Oct 2012 09:30:32 +0300
Subject: URGENT: Information Security Alert: e-Scams

Dear AUB users,
Some users are receiving messages (please check below) asking them to provide their credentials (e.g. username, password, email) in order to upgrade their accounts:

This is a scam message (also known as “phishing”), which involves Internet fraudsters who send spam emails or pop-up messages to lure innocent users to submit their personal information (passwords, credit card numbers, bank account information, Social Security numbers, or other sensitive information) from unsuspecting victims. In this case, the scammer’s interest is your AUBnet’s username and password.

So please beware of such scams and phishing messages and remember that the IT Staff in general and IT Helpdesk in particular at AUB and AUBMC will not request you to provide them with your Passwords via email, or in person, or via telephone. To counter these activities, the anti-spam tools that we have deployed on our systems would block the malicious emails and our IT team takes precautionary measures by blocking this type of emails.

If you provided your password by responding to the phishing email, please change your password IMMEDIATELY by doing the following: 
1-    Go to AUB’s home page (http://www.aub.edu.lb)
2-    Click on “Faculty and Staff” or “Student Life”
3-    Click on “Computing Services for AUB Faculty or Staff
4-    Under Quick Access, click on “Change AUBnet password”

For further help, please contact the IT Help Desk Team in the IT Customer Success department at Extension 2260.

For more information about online scams, please check http://www.fbi.gov/scams-safety/e-scams

For more information about phishing, please check http://www.aub.edu.lb/it/custsupp/alerts/Documents/cns-phishing.ppt

 The Original Scam message looks like this: 
From: American University of Beirut Webmaster
Date: 8. Oktober 2012 21:29:46 GMT+03:00

Reply-To: American University of Beirut Webmaster <aabuse1@gmail.com>

Dear AUB Communications Subscriber,
Strange activity has been detected in your AUB Communications account, which is against our Acceptable Use Policy (AUP). This account is suspected to have been hijacked, for a proof of ownership Kindly fill the blank space below for verification form within 48hours on receipt of this mail.

Full Name:
Current Username/ID:
Current Password:
Date of Birth:

Enter all this information accurate and complete, otherwise for security reasons we may have to close your AUB Communications account permanently. Please understand that this is a security measure intended to help protect you and your AUB Communications account.

We apologize for any inconvenience.

Webmaster Administrator
© - 2007 - (Web Master) AUB. All Rights Reserved

Best Regards,

No comments:

Post a Comment