Skip to Navigation | Skip to Content

March 2014

« February 2014 | Main | April 2014 »

March 31, 2014

"NYU WARNING!!!" phishing scam

There are new reports about a phishing message that purports to come from "Nyu Helpdesk" The phishing message claims "This is an automated message to notify you that a valid password was used to login your Nyu account from an unrecognized device, Today Monday, March 31th, 2014 at 03:00(UTC+02), in Baghdad, Iraq (IP=37.77.52.17) as a result of that your account has been temporarily suspended.," and instructs the recipient to click on a web link. An adjacent URL takes victims to a malicious website that requests, amongst other things, the NetID and password. This message is a forgery and should be deleted immediately.

NYU community members should NEVER REPLY TO OR CLICK ANY URL in an email that requests the recipient's e-mail login name and password.

As a reminder of better security practices, always remember that:

  • No NYU community member will ever ask for your account password, especially not over e-mail.
  • Do not reply back to e-mails from unidentified, untrusted sources.
  • Messages that request personal information over plaintext email should be regarded as being suspicious. If you are unsure about the legitimacy of a message, contact the IT Service Desk at AskITS@nyu.edu or 212-998-3333.
  • Forward all phishing messages to phishing@nyu.edu. This helps train our e-mail filters to block such messages in the future.
  • If a message informs you of an impending "account closure" unless you comply with its demands, it is often a sign that the message is a phishing scam. Do not comply with its requests.

The following sites also provide several useful tips on defending against these types of phishing attacks:


Example of phishing email


From: Nyu Helpdesk (noreply@nyu.edu)
Date: Fri, Mar 21, 2014 at 7:35 PM
Subject: NYU WARNING!!!
To:

This is an automated message to notify you that a valid password was used to login your Nyu account from an unrecognized device, Today Monday, March 31th, 2014 at 03:00(UTC+02), in Baghdad, Iraq (IP=37.77.52.17) as a result of that your account has been temporarily suspended.


If you did this, you can safely disregard this email. If you didn't do this, kindly follow our review link below to retrieve your account http://nyuhelpdesk.yolasite.com/ Sincerely, Nyu Helpdesk [---001:000564:57449---] Please do not reply to this message. Mail sent to this address cannot be answered.


This email is free from viruses and malware because avast! Antivirus protection is active. http://www.avast.com

March 24, 2014

"Notification" phishing scam

There are new reports about a phishing message that purports to come from "nyuadminform" The phishing message claims " you may not send or receive new mail until to re-validate your nyu.edu mailbox," and instructs the recipient to click on a web link. An adjacent URL takes victims to a malicious website that requests, amongst other things, the NetID and password. This message is a forgery and should be deleted immediately.

NYU community members should NEVER REPLY TO OR CLICK ANY URL in an email that requests the recipient's e-mail login name and password.

As a reminder of better security practices, always remember that:

  • No NYU community member will ever ask for your account password, especially not over e-mail.
  • Do not reply back to e-mails from unidentified, untrusted sources.
  • Messages that request personal information over plaintext email should be regarded as being suspicious. If you are unsure about the legitimacy of a message, contact the IT Service Desk at AskITS@nyu.edu or 212-998-3333.
  • Forward all phishing messages to phishing@nyu.edu. This helps train our e-mail filters to block such messages in the future.
  • If a message informs you of an impending "account closure" unless you comply with its demands, it is often a sign that the message is a phishing scam. Do not comply with its requests.

The following sites also provide several useful tips on defending against these types of phishing attacks:


Example of phishing email


From: nyuadminform (netID@nyu.edu)
Date: Fri, Mar 21, 2014 at 7:35 PM
Subject: Notification
To:

This is to inform you that your mailbox storage limit nyu.edu which is 30GB as set by your administrator helpdesk, which is currently running on 30.9GB, you may not send or receive new mail until to re-validate your nyu.edu mailbox. To re-validate your mailbox please click this: http://DONOTCLICKnyuadminscustomercaredeptform.webs.com/


Warning! All students and staff represent nyu.edu owners who refuse to update their account within two or three days of receipt of this email will lose your account permanently.


Administration system Help Desk.
New York University.

March 10, 2014

Connect-Direct: March 2014

Connect-Direct is a publication of NYU's Information Technology Services (ITS), offering computer-related news, security alerts, and other information of interest to people who use IT at NYU. Thank you for reading!

This issue:

NEWS

Upgrade to the new NYU VPN software

The NYU Virtual Private Network (VPN) service was recently upgraded to support the newer Cisco AnyConnect software client. If you've used NYU VPN in the past, this change will require you to install new software. However, you'll be able to establish a secure remote connection to NYU web resources from a wider range of mobile devices and operating systems, including Android devices. Visit the ServiceLink knowledge base for instructions on how to download and configure the new AnyConnect software.

Important: Please upgrade your software client as soon as possible, as support for the legacy software client is being discontinued by the vendor. For additional support with VPN, contact the IT Service Desk.

lynda.com training resources now available to global NYU community

NYU recently licensed lynda.com's online training library of instructional videos, courses, and tutorials for use by most of the global NYU community. This new service can be accessed via the NYUHome Academics and Work tabs, at www.nyu.edu/lynda, and through the lynda.com mobile apps.

Visit the ServiceLink knowledge base for more information. The IT Service Desk is available to assist with questions about logging into lynda.com, and support for using the service is available directly from lynda.com: www.lynda.com/support.

Save time and paper with the NYU Print Service

The NYU Print Service is an easy-to-use, two-step process that broadens your printing options and conserves resources. Students, faculty, and staff can submit their print jobs to the service's centralized print queue (where they will be held for up to 24 hours), then release the jobs at a convenient time from any of the service's printers. NYU community members who use the NYU Print Service help to eliminate abandoned print jobs, reduce waste, and promote community awareness about the conservation of natural resources.

Currently, the NYU Print Service supports over 60 printers throughout the Washington Square campus, and has approximately 120,000 active users. In addition, the service will be rolled out at NYU Berlin, Washington, DC, Sydney, Prague, Florence, and London over the coming year. For more information about how to submit and pick up print jobs using the NYU Print Service, view this instructional video or visit www.nyu.edu/its/print.

New in Connect: IT at NYU

Several new articles are now available in Connect, NYU's online magazine covering IT-related news, events, and research. "Embracing Open Space Technology at 2014 IT UnMeeting" is a look at the recent TorchTech event, discussing new and emerging ways of investigating technology; "Create a Better NYU Hackathon" highlights NYU's first such event and the web applications created by students; and "lynda.com Online Training Library" is an overview of the University's recently launched lynda.com service (see above news item). Additional information about NYU's VPN service is available in "Download the Upgraded NYU VPN and Connect Securely."

You can read these and previous Connect articles at: www.nyu.edu/its/connect. We also welcome the entire community's ideas for future articles. Please send story ideas to its.pubs@nyu.edu.

Spring 2014 ITS and Libraries training schedule

All members of the NYU community are welcome to sign up for ITS and NYU Libraries classes and workshops throughout the academic year. There is no charge for the sessions, but participants should bring a valid NYUCard to in-person classes and workshops. You can view the most up-to-date training schedules by clicking the links below: