!

IT

Phishing Alert: "Update Your Mailbox" Scam Attempts to Collect Username and Password

Sunday, June 18, 2017 - 20:31

Computing Services and Systems Development (CSSD) is responding to a new email phishing scam that claims you have exceeded your email quota and must update your account by clicking on a link. The link directs readers to a harmful Web site that attempts to collect your username and password. The email scam appears to originate from a compromised University email account. 

The following is a sample of the recent fraudulent email. If you receive this message (or any message similar to it), please report it as a phishing scam by forwarding the email message as an attachment to phish@pitt.edu. Detailed instructions on reporting scams are available at http://technology.pitt.edu/phishingscams.

*************************************************************************************

Subject: System Administrator

Your mailbox has exceeded the set quota limit by the admin please click here to update your mailbox and avoid being suspended.

Sincerely,
System Administrator.

 *************************************************************************************

The link in the phishing email directs readers to a malicious Web page (shown below) that mimics a Webmail login page. 

CSSD strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. Avoid clicking on links contained in such emails, as these may lead to sites that contain harmful software. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, CSSD recommends that all users install Symantec Endpoint Protection software and use the LiveUpdate feature to get the latest virus definitions. As a complement to Symantec Endpoint Protection, CSSD offers Malwarebytes Premium for individuals and departments at no cost. Students, faculty, and staff can download Malwarebytes and Symantec Endpoint Protection at no cost through the Software Download Service at My Pitt. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Please contact the Technology Help Desk at 412-624-HELP [4357] if you have any questions regarding this announcement.

gFTP for Faculty / Staff / Depts.

Securely transfer files between computers with this SFTP client for Linux.

Wireless PittNet Fast

 

Wireless-PittNet-Fast is a supplement to the University’s existing Wireless PittNet network. It will allow students, faculty, and staff with newer laptops, smartphones, and tablets to take advantage of faster wireless speeds. Wireless-PittNet-Fast is available on all campuses in the same locations where Wireless PittNet is available.

Professional Careers

Join our award-winning information technology team.

Online Service Request Forms

You can request many CSSD services by completing one of these online forms. If you have questions about which form to use, please call the Technology Help Desk at 412 624-HELP [4357].

Terms and Conditions for Departmental Use of Licensed University Software

The University, through CSSD Software Licensing Services, makes commercial software available for departmental research and academic use under the terms and conditions of agreements with software vendors. Your use of any and all such software is governed by applicable law, the University’s software contracts, University policy, and the University Student Code of Conduct. By installing and using software provided by the University, you agree to the following:

Guidelines for Departmental Software: Audit/Home-Use

Departmental Audit Guidelines

The following Departmental Audit guidelines will help ensure that software is properly licensed at the University:

FERPA

The Family Educational Rights and Privacy Act (FERPA) of 1974, also commonly referred to as the "Buckley Amendment," protects the rights of students by requiring controls for the creation, maintenance, and access to educational records. FERPA guarantees students access to their academic records while prohibiting unauthorized access by others.