Educause Security Discussion mailing list archives
Re: FYI: Another round of spear Phishing
From: "Lucas, Bryan" <b.lucas () TCU EDU>
Date: Wed, 2 Jul 2008 11:01:27 -0500
I think you're exactly correct, the method doesn't particularly matter. (e.g. our attacks have been through Outlook Web Access). We are implementing more user education and also utilizing this list (http://catalist.lsoft.com/scripts/wl.exe?SL1=HIED-EMAILADMIN&H=LISTSERV.ND.EDU) in our spam filters, but I don't know how frequently it is updated. Bryan Lucas Executive Director Technology Resources Texas Christian University -----Original Message----- From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Gasper, Rick Sent: Wednesday, July 02, 2008 10:54 AM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: Re: [SECURITY] FYI: Another round of spear Phishing I want to ask a rather simple question: if a spear phisher gets the account info, does it really matter if they use Imap or pop to connect? The way I see it, once they have the keys, it doesn't really matter if the use the front door or the back door. I could be missing something and if so please let me know. Rick Gasper Manager, Network Services King's College 133 N. River St Wilkes-Barre PA 18711 PH: 570-208-5845 Fax: 570-208-6072 Cell: 570-760-0335 rickgasper () kings edu -----Original Message----- From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Sweeny, Jonny Sent: Wednesday, July 02, 2008 9:09 AM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: Re: [SECURITY] FYI: Another round of spear Phishing
I am trying to find out if universities are still allowing users to POP mail and, if so, is it secure POP??
We moved everyone to IMAP several years ago. No POP here. More info at: https://kb.iu.edu/data/aims.html -- ~Jonny Sweeny, GSEC, GCWN, GCIH, GWAS, SSP-CNSA Incident Response Manager, Lead Security Analyst Office of the VP for Information Technology, Indiana University PGP key & S/MIME cert: http://informationpolicy.iu.edu/jsweeny jsweeny () iu edu - phone: (812)855-4194 - fax: (812)856-1011
Current thread:
- Re: FYI: Another round of spear Phishing STEVE MAGRIBY (Jul 01)
- <Possible follow-ups>
- Re: FYI: Another round of spear Phishing scott hollatz (Jul 01)
- Re: FYI: Another round of spear Phishing Jesse Thompson (Jul 01)
- Re: FYI: Another round of spear Phishing Sweeny, Jonny (Jul 02)
- Re: FYI: Another round of spear Phishing Gasper, Rick (Jul 02)
- Re: FYI: Another round of spear Phishing Joel Rosenblatt (Jul 02)
- Re: FYI: Another round of spear Phishing Lucas, Bryan (Jul 02)
- Re: FYI: Another round of spear Phishing Ken Connelly (Jul 02)
- Re: FYI: Another round of spear Phishing J. Fowler (Jul 02)
- Re: FYI: Another round of spear Phishing Joel Rosenblatt (Jul 02)
- Re: FYI: Another round of spear Phishing Paul Russell (Jul 02)
- Re: FYI: Another round of spear Phishing scott hollatz (Jul 02)
- Re: FYI: Another round of spear Phishing Gasper, Rick (Jul 03)