Re: Compromised accounts at other institutes

["Joel L. Rosenblatt" <joel () COLUMBIA EDU>]

Send it to the security people at the other University - or send it to
the postmaster account if you can't fine the security person.

Joel


Joel Rosenblatt, Director Network & Computer Security
Columbia Information Security Office (CISO)
Columbia University, 612 W 115th Street, NY, NY 10025 / 212 854 3033
http://www.columbia.edu/~joel
Public PGP key
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x90BD740BCC7326C3


On Fri, Apr 25, 2014 at 12:24 PM, Frank Barton <bartonf () husson edu> wrote:
> We are seeing a massive increase in the number of spear-phishing attempts
> being directed at our users. Many of these are coming from compromised
> accounts at other universities. The couple of folks that we have had fall
> for these phishing attempts seem to have their accounts used to send further
> spear-phishing attempts to yet more universities.
>
> Aside from the obvious account security steps to take when we detect a
> compromised account on our system, what steps (if any) are others taking
> when you get messages that are symptomatic of compromised accounts at other
> universities?
>
> Thank You
>
> --
> Frank Barton
> Apple Certified Mac Technician
> Technology Support Coordinator
> Husson University