From IT:

IT Communication Bulletin #22092021-1 – SECURITY ALERT – Phishing Email Cyber-Security Awareness

This bulletin contains important cyber-security alert information.

Please be on alert for malicious emails that may have been sent to your company mailbox.

These emails were primarily sent from external email addresses. Some emails may have also been sent from (or appears to be sent from) staff and student mailboxes.

Some phishing emails may be masquerading as fax notifications, mailbox alerts, job offers, or even contain spoofed email warning header alerts.

Please note that the emails are illegitimate and all information inside them should be disregarded.

Examples of malicious emails:

1. Spoof Fax Notifications

2. Fake Job Offers

3. False alerts

4. Spoofed Email Warning Header Alert

*To see picture examples, click here and here

Take the following actions:

Receiving Malicious Emails

· Immediately delete emails you suspect to be malicious from your mailbox and do not click on any links inside such emails

· Ensure that the email originates from a legitimate sender. On the top of the email, ensure that the sender’s display name and email address is correct.

· Report any suspicious emails by creating a Help Desk ticket.

· Watch for legitimate email warning headers on Outlook to help you determine if emails that are sent to you are legitimate.

Securing Sensitive Data

· Always lock your computer when away (Tip: Quickly lock your Windows computer by pressing Windows key and L)

· If you are requested by any senior staff members to do anything out of the ordinary, always confirm with the requester directly. Examples include requests such as directly sending a sensitive file to an external email address, purchase gift cards, and providing passwords to your accounts.

· Never send your login information or password via any medium if requested by anyone, whether someone purported to be from inside the company or externally, or on any websites/online forms. Never provide your password to someone claiming to be your supervisor/manager or an individual from the Information Technology department. Your passwords are for your eyes only.

Please report all potential malicious cybersecurity activities to Information Technology and/or your instructor