[Tech-l] WARNING: Phishing Attacks
Thor Sage
sage at mveca.org
Fri Mar 24 12:55:25 EDT 2017
Good afternoon!
I wanted to briefly alert everyone that there has been a notable increase in email scams in which attackers pose as superintendents and request that treasurers transfer funds to a named bank account in order to address an "urgent" issue.
This sort of attack is commonly known in the tech world as "spear phishing." I have had multiple reports of spear phishing occurring within our consortium.
Here are the basics on how to avoid falling victim to such attack -
1. Make note of the email addresses of senders that request funds. Generally, attackers will create a mailbox at Google or Yahoo that bears the name of the superintendent or another known employee, but not the real email address. While it is possible to spoof email addresses, too, it seems to be relatively uncommon in this sort of attack.
2. Adhere closely to your procurement policies. Without a requisition and P.O., funds should not be released.
3. Be extremely careful to avoid opening attachments from unknown senders. Again, look closely at the actual email address and scrutinize the origin and content of email.
4. Never provide passwords via email and never click on links in emails that ask you to manage your mailbox or reset your password.
If you have been the subject of spear phishing attacks, please let us know so we can help analyze this activity, warn others, and potentially report it to law enforcement.
Please forward this warning to all interested personnel or remind them of the potential for scams and phishing attacks.
Thanks,
Thor
For more information on spear phishing:
http://www.bizjournals.com/bizjournals/how-to/technology/2017/03/spear-phishing-and-w-2-scams-how-to-stay.html
Thor Sage
Executive Director
Miami Valley Educational Computer Association
937-767-1468 x3101
[http://www.mveca.org/images/logo.gif]<http://www.mveca.org/>
Not-for-profit Technology Services for Education and Local Governments
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listserv.mveca.org/pipermail/tech-l/attachments/20170324/057d52cb/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 3184 bytes
Desc: image001.jpg
URL: <http://listserv.mveca.org/pipermail/tech-l/attachments/20170324/057d52cb/attachment.jpg>
More information about the Tech-l
mailing list