Educause Security Discussion mailing list archives
Re: Fake Student Applications/Registrations
From: "Tomassetti, Tina" <tomassettitm () SUNYBROOME EDU>
Date: Mon, 27 Jul 2020 13:05:39 -0400
I remembered this happening here too so I got some info from our Asst. Dir of Administrative Information Systems: Yes. We shut down all of the instant admission channels such as Banner Self Service Non Matriculated applications and those now are done via Wufoo. We also added a Re-Captcha to the Wufoo form, and advised the Registrar's Office on what to watch for on those forms that would indicate an invalid application. If they recognize those patterns they follow through asking more information from the 'applicant' with a time limit for response. This has weeded them out over time. We also inactivated all of the invalid ones in Banner/Gmail, etc. that came in before we caught it. Scot Beekman Assistant Director of Administrative Information Systems Information Technology Services Phone: +1 (607) 778-5255 Email: beekmansa () sunybroome ed <beekmansa () sunybroome edu> Tina M. Tomassetti Assistant Director of Networking and Telecommunications Information Technology Services SUNY Broome Community College PO Box 1017 MS# 63 Binghamton, NY 13902 PH: 607-778-5011 FX: 607-778-5119 tomassettitm () sunybroome edu <tomassetti () sunybroome edu> On Fri, Jul 24, 2020 at 4:19 PM Wesolowski, Nathan R. < Nathan.Wesolowski () nwtc edu> wrote:
Hello everyone, this is my first time posting here. Since last weekend we have observed an unusually high number of new student applications/registrations containing fake information. After investigating, I discovered that our College was recently featured on a Chinese blog. The blog’s “educational welfare” category lists dozens of other colleges and universities, along with step-by-step details for obtaining free accounts/email addresses - hxxps://404edublog.cf/ <https://404edublog.cf/>. It is obvious that these scammers are after a .EDU email address. With the ongoing COVID situation, we have waved or postponed certain fees in an attempt to reduce any registration barriers. I believe that this is contributing to our problem. While we have tools in place to help us identify and remove fake identities, I am curious to know what others have done about this problem. Thanks, Nate *Nate Wesolowski* Information Security Analyst Northeast Wisconsin Technical College 2740 W. Mason Street Green Bay, WI 54307 *O* 920.498.6943 | *T* 800-422-NWTC *nate.wesolowski () nwtc edu <nate.wesolowski () nwtc edu>* | nwtc.edu <https://www.nwtc.edu/> CONFIDENTIALITY: This e-mail (including any attachments) may contain confidential, proprietary and privileged information, and unauthorized disclosure or use is prohibited. If you received this e-mail in error, please notify the sender and delete this e-mail from your system. ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
Current thread:
- Re: Fake Student Applications/Registrations Wesolowski, Nathan R. (Jul 24)
- Re: Fake Student Applications/Registrations Von Welch (Work) (Jul 24)
- Re: Fake Student Applications/Registrations Tomassetti, Tina (Jul 27)
- Re: [EXTERNAL] Re: [SECURITY] Fake Student Applications/Registrations James Valente (Jul 28)