[Phish] Online Data entry part-time job.Work From Home

Details:

From: COMPROMISED ACCOUNT <COMPROMISED.ACCOUNT@mail.utoronto.ca>

To: [redacted]

Subject: Online Data entry part-time job.Work From Home

Text:

Work an hour a day remotely from your location entering data for various companies and hospitals.

 

Skills needed

Good in Excel
Accuracy
Basic computer knowledge

Send your resume and all inquiries to:

BADGUY-ACCOUNT@gmail DOT com

[Phish] JOB

Details:

From: COMPROMISED ACCOUNT <COMPROMISED.ACCOUNT@mail.utoronto.ca>

To: [RECIPIENT] <[redacted]@mail.utoronto.ca>

Cc: [redacted]@LPL.COM

Subject: JOB

Text:

Are you interested in this position account receivables agent for Metscco Heavy Steel Industries Co. Ltd, who can handle its account from its customers/clients in Canada or USA

Thanks,

The HR Team

[Phish] Got a moment

Details:

From: Dr. Jane Doe <Jane.Doe.utoronto.ca@gmail.com>

To: [redacted]@mail.utoronto.ca

Subject: Got a moment

Text:

Available?
– –

Dr. Jane Doe
University Professor
B.Eng., M.Eng (McGill), Ph.D. (Stanford), P.Eng.
Canada Research Chair in in Transnational Molecular Geometry

[Phish] < no subject >

Details:

From: COMPROMISED ACCOUNT <COMPROMISED.ACCOUNT@mail.utoronto.ca>

To: [Recipient] <[redacted]@mail.utoronto.ca>

Subject: <no subject>

Text:

All Staffs and Student are expected to migrate to the New 2020 Utoronto Web portal to access  click here to migrate:

Updated Cyber Security Awareness Month resources

Security Matters has updated its resource page with this year’s University of Toronto (U of T) Cyber Security Awareness Month (CSAM) educational materials. These materials include: 

  • A guide on what steps to take if you suspect you have received a phishing email. 
  • An overview of U of T’s Information Security (IS) unit priorities for the next year. 

U of T staff, students and faculty are encouraged to read, share and discuss these resources with their own peers in support of this year’s key IS and CSAM message: One team. One goal. 

What’s your information security style?

How much is the right amount of information to post about yourself online? Should you share everything or only certain information? Or should you keep all of your accounts locked down and even swear off social media altogether? Truth is, it’s your choice. What’s most important is to ensure that you are making mindful choices as you engage online.

One way to think about online risk is by comparing it to your own personal level of comfort. Some people are an open book, happy to share all of the intimate details of their lives, while others prefer to be private, never divulging information about themselves. However, the vast majority of people probably identify as somewhere in the middle.

Once you have identified where you land on the information security scale, make sure that your settings match your preference. For example:

  • Privacy settings: The default privacy setting for most social media platforms is set to open. Before sharing, consider your comfort level and select your privacy setting accordingly.
  • App permissions: Before downloading any app, take a moment to consider the permission settings. Do you want the app to have access to your camera, mic or Wi-Fi connection info?
  • Location access: When using apps, consider whether they need access to your location. Often this is only a convenience and keep in mind that this information is often collected for marketing.

If you take these steps, you can rest assured knowing that your online presence accurately reflects your personality and preferences.

To learn more about managing your online presence visit www.securitymatters.utoronto.ca.

Who are our information security professionals?

The arrival of October hails the start of Cyber Security Awareness Month (CSAM). The University of Toronto’s (U of T) Information Technology Services’ (ITS) Information Security (IS) team supported by Education and Awareness is participating by hosting educational activities throughout the month, promoting the theme: ‘One team. One goal.’

During this campaign, ITS will engage the U of T tri-campus community, sharing information and answering questions related to information security.

This week’s questions

Who are the University’s information security professionals?

U of T’s information security community are teams of highly skilled individuals across the St. George, Mississauga and Scarborough campuses. They are dedicated to safeguarding the institutional and personal data of its tri-campus staff, students and faculty members.  

The teams are comprised of information security architects, analysts, project managers, administrators and coordinators who specialize in risk assessment, identity and access management, privacy analysis, incident response, cloud security, authentication and more! 

What do the University’s information security professionals do?

The University’s information security professionals deal with everything and anything relating to the security of U of T’s data. These dealings include: 

  • Providing information security services: They provide essential services that maintain the security of University accounts. These services include multi-factor authentication (MFA), UTORauthUTORvpn, Remote Desktop Gateway, network vulnerability scanning and much more. 
  • Informing University policies and guidelines: Our information security teams provide the University as a whole with essential information security and privacy guidelines. The guidelines inform numerous aspects of the management of U of T’s digital assets, from the U of T password policy to the procedure required when a security incident is reported (including phishing emails). 
  • Providing information risk management servicesThe University’s information security professionals provide divisional consultation services in the form of information risk management assessments(also add  ) These assessments help divisions to understand their information risks and to develop their risk management capacities. These risk assessments work to protect the tri-campus University community as a whole. 
  • Supplying information security toolsThey also offer a comprehensive list of information security tools. 

These dealings are, of course, just the tip of the iceberg: the scope of information security at U of T is as wide and varied as the community that it protects and is constantly evolving. To learn more about these developments stay tuned to this blog throughout October and visit our resource section for updates. 

New phishing scams are targeting U of T staff and students

September is a busy month for everyone at the University as we gear up for the fall semester. At the University of Toronto (U of T), communication between administrative staff and the student community is at its peak, making it the perfect time for attackers to phish people under the guise of administrative and student interaction.

This year, attackers are leveraging the communications of a new school semester in a variety of ways. Currently, two of the most common scams at U of T feature:

  1. Urgent email account upgrade notices that threaten account termination.
  2. Emails containing potentially malicious attachments.

Read below for a description of these phishing scams and tips on what to do if you receive one.


1. Upgrade notice

A widely-circulated email is asking students and staff to ‘upgrade’ their U of T email accounts before termination by providing a phone number that they are asked to text. The recipient is then asked to await further instruction. Examples of this phishing email can be viewed on the Security Matters PhishBowl here: https://securitymatters.utoronto.ca/phish-university-of-toronto/.

If you have received this email, Information Security and Enterprise Architecture (ISEA) recommends you take the following actions:

  • If you responded to the email and texted the phone number, you should immediately take steps to block that number. Information on how to block numbers can be found on your device’s webpage or FAQs.
  • If you followed further instructions and provided your UTORid and password, please immediately change your password by clicking on the ‘reset’ link in the Password and Account Management section at https://www.utorid.utoronto.ca.

2. Attachment ‘request’

The second common phishing email appears to come from someone in the U of T community. For example, the attackers attempt to engage administrative staff members by pretending to be a current student. The email claims to provide ‘requested’ details through an attachment that they prompt the recipient to download. The attachment contains potentially malicious content that, when opened, could affect the user. Examples of this phishing email can be viewed on the Security Matters PhishBowl here: https://securitymatters.utoronto.ca/phish-re-mbpgsa-email-friday-night-live-the-rom/.

If you have received this email, ISEA recommend you take the following actions:

  • If you opened an attachment that you suspect may be malicious, please run your anti-virus software. If you do not have anti-virus software or you are in a position where it cannot be run, you should contact helpdesk for further assistance at: http://help.ic.utoronto.ca.

During this busy time, ISEA would like to remind the U of T community to be vigilant and to report any communications that seem unexpected or odd. Please follow the guidelines outlined here: https://securitymatters.utoronto.ca/report/.

Recipients of phishing emails are also asked to report these messages using the “Report Message” function in Outlook, which can help reduce the number of times these emails are delivered. To report an email, follow these steps:

Select the email.

  1. For Outlook on desktop, look to the top right of the menu bar for a ‘Report Message’ icon. If you are using the online version of Outlook, look for the three dots to the right of the forward email symbol.
  2. Click on the arrow or dots and select the ‘Phishing’ option.
  3. In the popup window, confirm you would like to report. After confirming, the email will be reported and removed from your inbox.

For more tips on how to spot phishing emails and stay safe online, visit the Security Matters resource section.

[Phish] Re: MBPGSA Email – Friday Night Live @ the ROM!

Details:

From: [University of Toronto student]

To: [University of Toronto staff member]

Subject: Re: MBPGSA Email – Friday Night Live @ the ROM!

Text:

Hi there,

I hope everything is great

Here’s details you have demanded most recently. Please don’t hesitate to get the needed files as an attachment.

Feel free to make contact with me me in case you could have any inquiries.

Respectfully Yours,

[Readacted]
[Readacted].doc (161.3 KB)

[Phish] University of Toronto

Details:

From: [Redacted] To: [University of Toronto student]

Subject: University of Toronto

Text:

Dear User,

This is to inform you that our web-mail server has been scheduled for upgrade and maintenance.

To avoid your e-mail account been terminated during this upgrade Send “UTORONTO UPGRADE” to (xxx) xxx-0945

You will receive instructions via text on how to upgrade your account.

Your Email access will be disable if you fail to comply with the above. We do apologize for any inconvenience caused.

Regards
System Administrator
University of Toronto