Educause Security Discussion mailing list archives
Re: Recent Phishing Uptick
From: "Shettler, David" <dshettle () HOLYCROSS EDU>
Date: Wed, 19 Feb 2014 20:29:59 -0500
Phishing went from a nominal amount of our time, to a solid 20% since calendar year change; a dramatic impact on other endeavors. We're also a Google Apps school. The M.O. has been to compromise an account, and email the phishing scam to other apps domain contacts until hitting the apps sending limit, compromise those recipients, rinse, repeat. It took hours to hit 10% of the student body before we were able to react and stop it -- very worm-like, and not fun, and has highlighted the "student gap" in our awareness program. While staff also received it, very few fell for it. As for the spear phishing attack targeting direct deposit, we heard of this two weeks ago and responded by shutting down direct deposit self-service. We plan to implement two factor prior to re-implementation, if we do it at all. Is it a specific ERP system being targeted? Been a chaotic 2014 -- between phishing and DDoS attacks. Anyone go through the iModules DDoS? -- David Shettler Information Security Officer College of the Holy Cross 508-793-3073
Current thread:
- Recent Phishing Uptick Peter Setlak (Feb 19)
- Re: Recent Phishing Uptick Bob Bayn (Feb 19)
- Re: Recent Phishing Uptick Peter Setlak (Feb 19)
- Re: Recent Phishing Uptick Bob Bayn (Feb 19)
- Re: Recent Phishing Uptick Peter Setlak (Feb 19)
- Re: Recent Phishing Uptick Gary Warner (Feb 19)
- Re: Recent Phishing Uptick Peter Setlak (Feb 19)
- Re: Recent Phishing Uptick Bob Bayn (Feb 19)
- Re: Recent Phishing Uptick David Curry (Feb 19)
- Re: Recent Phishing Uptick Shettler, David (Feb 19)
- Re: Recent Phishing Uptick Bob Bayn (Feb 19)
- Re: Recent Phishing Uptick Bob Bayn (Feb 19)
- Re: Recent Phishing Uptick Gary Warner (Feb 19)
- Re: Recent Phishing Uptick Bob Bayn (Feb 19)
- Re: Recent Phishing Uptick Brandon Hume (Feb 20)
- Re: Recent Phishing Uptick Roger A Safian (Feb 20)
- Re: Recent Phishing Uptick Paul Chauvet (Feb 20)
- Re: Recent Phishing Uptick Derek Diget (Feb 20)
- Re: Recent Phishing Uptick Shettler, David (Feb 19)
- Re: Recent Phishing Uptick David Curry (Feb 20)