Re: Blackboard Phishing Emails

["Baillio, Aaron" <abaillio () OU EDU>]

Kyle,

We had a similar attach today.  They hot linked to our OZONE web pages.  We blocked the spam and the phishing URL 
within 20 minutes of when we were first alerted to the phishing email.

We collected stats on those who clicked through and posted to the site...15% click rate!!  That's better than most of 
our internal marketing campaigns!

Provides a lot of fodder for us to get an email gateway with URL rewrites.

B. Aaron Baillio, Sec+, CEH, CISSP
University of Oklahoma, Information Technology
Managing Director, Security Operations and Architecture
O: 405-325-7948
C: 254-400-6404



From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Johnson, 
Kyle A
Sent: Thursday, August 25, 2016 3:54 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Blackboard Phishing Emails

All,

Just wanted to give everyone a heads up that we have been dealing with a bunch of Blackboard phishing emails lately. 
Not sure if everyone else is too, but please be on the lookout for them. Ours have had a link in them that will then 
ask for credentials, and unfortunately, we have had a good amount of people enter them in because the emails appear to 
be coming from trustworthy sources, including our own employees.

Stay safe!

Kyle Johnson, GSEC
Information Security Officer
 [IndianaTech_Signatures]
kajohnson () indianatech edu<mailto:kajohnson () indianatech edu> / www.IndianaTech.edu<http://www.indianatech.edu/>
O: 260-422-5561 x2107
M: 260-343-1606
1600 E. Washington Blvd. / Fort Wayne, IN 46803