Re: Fake Xerox Message | 07-17-2013

[Bob Bayn <bob.bayn () USU EDU>]

Yup, we got about a hundred (all blocked) mixed in with seven real scans from Xerox machines.  Fortunately, most of our 
real Xerox scanners have been locally customized to include the sending office name, a real sender address, a real 
machine location (included in the body) and a customized message body that includes contact information for the office 
that owns the scanner.  So, our recipients tend to be a little more skeptical of the default message format.

Bob Bayn    SER 301    (435)797-2396       IT Security Team
Office of Information Technology,     Utah State University
     three common hazardous email scams to watch out for:
     1) unfamiliar transaction report from familiar business
     2) attachment with no explanation in message body
     3) "phishing" for your email password
________________________________
From: The EDUCAUSE Security Constituent Group Listserv [SECURITY () LISTSERV EDUCAUSE EDU] on behalf of Thorpe, Glenn 
[Glenn.Thorpe () UNTSYSTEM EDU]
Sent: Wednesday, July 17, 2013 8:53 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Fake Xerox Message | 07-17-2013

Anyone else get hit by this attack this morning?  We got it pretty good…

http://techhelplist.com/index.php/spam-list/97-scanned-image-from-a-xerox-workcentre
At the time we started seeing it it wasn't being detected, but now the AV's are catching up.



Glenn Thorpe III
Asst. Director, Information Security
University of North Texas System
T: 940.369.8884
E: glenn.thorpe () untsystem edu<mailto:glenn.thorpe () untsystem edu>
[cid:5F085E3B-7497-4EB2-89EC-3E29AA2041AB]