Re: Student phishing, "internship" opportunities, etc.

["Banks, Teresa E - (tbanks)" <tbanks () EMAIL ARIZONA EDU>]

Thanks to all for your replies.  As we move forward on plans for awareness around this issue, I’ll update the list.

 

Best wishes,

Teresa E. Banks

Manager, Information Security 

The University of Arizona

Office:  520.621.8476

Cell:  520.909.6057

 <mailto:tbanks () arizona edu> tbanks () arizona edu

security.arizona.edu

 

This email and any attachments thereto may contain private, confidential, and/or privileged material for the sole use 
of the intended recipient. Any review, copying, or distribution of this email (or any attachments thereto) by others is 
strictly prohibited. If you are not the intended recipient, please contact the sender immediately and permanently 
delete the original and any copies of this email and any attachments thereto.

 

From: The EDUCAUSE Security Constituent Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> On Behalf Of Andrea Tanner
Sent: Tuesday, July 31, 2018 8:20 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Student phishing, "internship" opportunities, etc.

 

I read the latest McAfee Labs Threat report for June 2018 and thought about your question as I was reading.  The report 
says that ransomware is trending downwards. Cypto coin mining malware is on the rise by 629% from the first quarter to 
the second--which really jumped out at me.  It made me wonder if they are targeting your students (and other U 
students) because of perceived untapped bandwidth in the res halls.  I guess the answer lies in the malware that is on 
the other end of these phish attempts.  :)  

 

Either way, the statistic about Cypto coin mining malware's dramatic increase was pretty eye-opening to me.  

 

Cheers,

 

Andrea




Andrea Tanner, M.S. 
Assistant Director of Client Services
Morgan State University
andrea.tanner () morgan edu <mailto:andrea.tanner () morgan edu> 
(443) 885-4445

 

On Mon, Jul 30, 2018 at 12:56 PM, Banks, Teresa E - (tbanks) <tbanks () email arizona edu <mailto:tbanks () email 
arizona edu> > wrote:

Hi everyone,

 

Our students have been getting pummeled with emails offering them “internship opportunities” or “jobs” that appear to 
be sent from a faculty member, but turn out to be fraudulent (see sample at 
https://security.arizona.edu/phishing-alert/72618-internship-opportunity).

 

Are other universities experiencing this?  If so, what is the approach (beyond posting the phish as an alert) to help 
students understand that they are targets for fraud?  

 

We want to take a strategic approach to helping our students, and thought we would see if the community had any good 
advice.

 

Thanks in advance,

Teresa E. Banks

Manager, Information Security

Information Security Office

The University of Arizona

Office:  520.621.8476

Cell:  520.909.6057

Email:   <mailto:tbanks () email arizona edu> tbanks () email arizona edu

security.arizona.edu <http://security.arizona.edu> 

 



 

This email and any attachments thereto may contain private, confidential, and/or privileged material for the sole use 
of the intended recipient. Any review, copying, or distribution of this email (or any attachments thereto) by others is 
strictly prohibited. If you are not the intended recipient, please contact the sender immediately and permanently 
delete the original and any copies of this email and any attachments thereto.

Attachment: smime.p7s
Description: