!

Box

Cloud Storage (pitt.box.com)

All students, faculty, and staff have access to unlimited cloud storage space through pitt.box.com.

Phishing Alert: Multifactor Scam Mimics Pitt Passport Login Page

Friday, December 9, 2016 - 13:29

 

Computing Services and Systems Development (CSSD) is responding to a new email phishing scam that claims new authentication requirements are coming to Pitt. The email asks readers to click a link to set up Duo multifactor authentication. The link directs readers to a harmful site that mimics the Pitt Passport login page and attempts to collect their username and password. The email scam usually originates from a non-University email address.

The following is a sample of the recent fraudulent email. If you receive this message (or any message similar to it), please report it as a phishing scam by forwarding the email message as an attachment to phish@pitt.edu. Detailed instructions on reporting scams are available at http://technology.pitt.edu/phishingscams.

******************* VERSION 1 OF SCAM *******************************

Subject: New Authentication Requirements Coming Soon for All PITT Users

Hello Pitt!!

Set Up your Duo University of Pittsburgh Authentication Now Click the Link Below.

<Link Removed>

Thanks

******************************************************************************

 

******************* VERSION 2 OF SCAM *******************************

Subject: Authentication Requirements for All PITT Users

Hello Pitt!!

Sign in your University of Pittsburgh email For Quick Authentication Now!  Click the Link Below.

Update button leads to fake Pitt Passport page

Thanks

University of Pittsburgh

******************************************************************************

The link in the phishing email directs readers to a malicious Web page (shown below) that mimics the Pitt Passport login page. Remember that the real Pitt Passport login page always begins with https://passport.pitt.edu in the address bar.

Fake Pitt Passport Login Page

CSSD strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. Avoid clicking on links contained in such emails, as these may lead to sites that contain harmful software. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, CSSD recommends that all users install Symantec Endpoint Protection software and use the LiveUpdate feature to get the latest virus definitions. As a complement to Symantec Endpoint Protection, CSSD offers Malwarebytes Premium for individuals and departments at no cost. Students, faculty, and staff can download Malwarebytes and Symantec Endpoint Protection at no cost through the Software Download Service at My Pitt. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Please contact the Technology Help Desk at 412-624-HELP [4357] if you have any questions regarding this announcement.

Phishing Alert: Outlook Web App Upgrade Scam

Tuesday, December 13, 2016 - 09:13

 

Computing Services and Systems Development (CSSD) is responding to a new email phishing scam that claims to be from the IT Service Desk Support. The email states that Webmail has been improved and that staff and faculty should click on the link to update it. The link directs the user to a malicious Web page which attempts to steal the user's credientails. 

The following is a sample of the recent fraudulent email. If you receive this message (or any message similar to it), please report it as a phishing scam by forwarding the email message as an attachment to phish@pitt.edu. Detailed instructions on reporting scams are available at http://technology.pitt.edu/phishingscams.

******************************************************************************

Subject: To All Faculty\Staff

 To All Faculty\Staff

Take note of this important update that our new web mail has been improved with a new messaging system from Outlook Web Access which also include faster usage on email, shared calendar, web-documents and the new 2016 anti-spam version.  

Please use the link below to complete your upgrade for our new Outlook Web Access improved web mail.
CLICK on FACULTYANDSTAFFUPGRADE (link removed)

Regards,

IT Service Desk Support.

******************************************************************************

The link in the phishing email directs readers to a malicious Web page (shown below) that mimics the Outlook Web App login page.

[[{"type":"media","view_mode":"media_large","fid":"996","attributes":{"alt":"","class":"media-image","height":"480","typeof":"foaf:Image","width":"454"}}]]

CSSD strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. Avoid clicking on links contained in such emails, as these may lead to sites that contain harmful software. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, CSSD recommends that all users install Symantec Endpoint Protection software and use the LiveUpdate feature to get the latest virus definitions. As a complement to Symantec Endpoint Protection, CSSD offers Malwarebytes Premium for individuals and departments at no cost. Students, faculty, and staff can download Malwarebytes and Symantec Endpoint Protection at no cost through the Software Download Service at My Pitt. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Please contact the Technology Help Desk at 412-624-HELP [4357] if you have any questions regarding this announcement.

December Microsoft Security Bulletins

Tuesday, December 13, 2016 - 16:24

 

Microsoft Corporation has announced six new critical security vulnerabilities affecting Microsoft Windows, Microsoft Internet Explorer, Microsoft Edge, Microsoft Office, and Adobe Flash Player. CSSD recommends that users immediately identify and install the security updates necessary to repair these vulnerabilities by using Microsoft's Windows Update feature on their computers as soon as possible.

In addition to installing the Microsoft patches, CSSD also recommends that all users install Symantec Endpoint Protection software and use the LiveUpdate feature to get the latest virus definitions. As a complement to Symantec Endpoint Protection, CSSD offers Malwarebytes Premium for individuals and departments at no cost. Students, faculty, and staff can download Malwarebytes and Symantec Endpoint Protection at no cost through the Software Download Service at My Pitt. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Please contact the Technology Help Desk at 412 624-HELP [4357] if you have any questions regarding this announcement.

Maintenance to Affect Several Enterprise Systems Dec. 22-23

Thursday, December 15, 2016 - 13:28

 

Maintenance on the University Central Directory Service will affect several enterprise systems from 11:00 p.m. on Thursday, December 22 through 1:00 a.m. on Friday, December 23.

The Manage My Account feature on My Pitt and the Panther Central ID system will be unavailable while the work is being completed. Students, faculty, and staff will not be able to sign up for, or make changes to, information in the Emergency Notification Service during this time as well. (Please note that the University will be able to deliver emergency notifications to subscribers while the work takes place.)

Several other services will also be unavailable during the maintenance period, including some features of My Pitt (my.pitt.edu), CourseWeb, the self-service password reset service, some features of the Student Information System (PeopleSoft), access to grades and class schedules, the Find People Web site (find.pitt.edu), Outside the Classroom Curriculum, self-service account activations, the Parchment transcript request system, the PantherBuy system, new Guest Wireless requests, Read Green, and online help forms on the technology.pitt.edu Web site. 

Please contact the Technology Help Desk at 412-624-HELP [4357] if you have questions regarding this announcement.

CourseWeb Extended Maintenance Scheduled for Dec. 26-27

Thursday, December 15, 2016 - 15:11

 

CourseWeb, the University of Pittsburgh's implementation of Blackboard Learn, will be unavailable during an extended maintenance period from 10:00 p.m. on Monday, December 26 through 5:00 p.m. on Tuesday, December 27. Access to My Pitt Video will also be unavailable during this time.

Although a maintenance period has been scheduled during these times, the systems will be returned to service earlier if work is completed ahead of schedule. This maintenance is necessary to maintain the stability and reliability of the CourseWeb system.

Please contact the Technology Help Desk at 412-624-HELP [4357] if you have any questions regarding this announcement.

Network Maintenance to Affect Several Buildings on Dec. 23-24

Thursday, December 15, 2016 - 17:02

 

Network equipment will be upgraded on Friday, December 23rd beginning at 11:00 p.m.  The work is expected to be completed by 1:00 a.m. on Saturday, December 24th.

During the maintenance period, wired and wireless network service and telecommunications service will be unavailable for the following buildings on the Pittsburgh campus:

  • Biomedical Science Tower 1 (BST)
  • Petersen Events Center

This maintenance is necessary to enhance the stability and reliability of the network.

Please contact the Technology Help Desk at 412 624-HELP [4357] if you have any questions about this announcement.

Box: Log in to Box

From a Desktop (Windows or Mac)

  1. Open a Web browser to pitt.box.com.
    Note: You can also log in to My Pitt and click Box Login on the right-hand side of the page.
  2. Click Continue .
    Box for Pitt Login

Box: Using FTP with Box

Box supports secure FTP file transfers using port 990 and an application-specific password.

Box FTP Connections to Require Port 990 Beginning Mar. 8

Wednesday, February 8, 2017 - 16:44

 

If you use a File Transport Protocol (FTP) client to send files securely to Box, please be aware that beginning March 8 all Box FTP connections will require the use of port 990. If your FTP client connection currently uses port 21, please change your setting to port 990 before March 8.

Using an FTP client with Box can be useful when you need to transfer large amounts of files, such as during server migrations. For details about using an FTP client with Box, please visit http://technology.pitt.edu/boxftp.