Cornell University created an open source tool called Spider which can search your computer hard drives, removable media, and network shares for files that may contain confidential data like Social Security Numbers and Credit Card Numbers. Click HERE for More detail.
Tips on Recognizing and Avoiding Phishing Emails
Phishing emails often disguise themselves as originating from known sources such as IT, your bank, the IRS as well as countless others. Follow this link to learn how to recognize and avoid phishing.
4-22-2013 Phishing Email: Subject 'USER VERIFICATION'
The campus is experiencing an increase in phishing emails that purports to be from the "UMAIL Web Support" and references suspicious activity from your account.
NEVER click on a link in an e-mail. If you are unsure, expand the email header and forward it to email@example.com.
Remember, IT will NEVER ask you to click a link and verify your email username and password via email.
Example of fraudulent messages received follows:
From: "Various Users"
Sent: Saturday, April 20, 2013 9:09 AM
Subject: USER VERIFICATION
Dear UM MAIL User,
We discovered series of illegal attempts on your mail account from different IP locations.
This is for your own safety to avoid your account closed, you will have to verify your account now to UM MAIL security Alert Center to restore your account immediately:.
For quick access: Click <VERIFY>
UMAIL Web- Support.
© 2010 Microsoft Corporation. All rights reserved.
4-11-2013 Tax related Phishing Scams
There have been reports of tax related phishing scam emails to campus accounts. Each year these messages peak around April 15'th. Please be aware and do not click the links in these messages or give personal information based on this correspondence! These take many forms and the messages can vary; however, the same good practices of not clicking links in emails and not giving out personal information via an email request are the best defense. Remember also, the "From" part of an email can be forged so using the "From" as verification is not sufficient to ensure any message is legitimate.
Sample Phishing email follows:
From: IRS Online [firstname.lastname@example.org]
Sent: Wednesday, April 10, 2013 3:47 PM
Subject: Final reminder: Notice of Tax Return
Claim Your Tax Refund Online
We identified an error in the calculation of your tax from the last payment, amounting to $ 319.95.
In order for us to return the excess payment, you need to create a e-Refund account after which the funds will be credited to your specified bank account.
Please click "Get Started" below to claim your refund:
4-4-2013 Email SCAM indicating a traveler in distress
This is an old email scam that surfaces randomly and purports to be from someone you know. The message indicates there has been some drastic event that requires *you* to send money. DO NOT REPLY to the message. A Sample of the message follows:
From: Someone you likely know
Sent: Thursday, April 04, 2013 6:20 PM
Subject: Easter Trip.....................................Help!!! "Name of contact"
I'm sorry i didn't inform you before leaving, Few days back my family and I made an unannounced vacation trip to Makati Philippine. Everything was going fine until last night when we were mugged on our way back to the hotel.They Stole all our cash,credit cards and cellphone but thank God we still have our lives and passports safe. The hotel manager has been unhelpful to us for reasons i don't know.I'm writing you from a local library.
I've reported to the police and after writing down some statements that's the last i had from them.i contacted the consulate and all i keep hearing is they will get back to me. Our return flight leaves soon...I need you to help me out with a fast loan to settle our bills here so we can get back home . I'll refund the money as soon as we get back. All i need is $1,750 USD..Let me know what you can do so I can tell you how to get the money to me.
I owe you alot.
No virus found in this message. Checked by AVG - www.avg.com
Version: 2013.0.3267 / Virus Database: 3161/6206 - Release Date: 03/26/13 Internal Virus Database is out of date.