Category Archives: News

Suspicious emails impersonating Vassar personnel

November 13, 2020Fraud, Newsemharris

In the last two days Catch of the Day has received multiple reports of suspicious email messages claiming to be from Vassar personnel. All of these messages came from gmail.com, not from vassar.edu. The messages ask the recipient one of the following:

What is your cellphone number?
Reply quickly; it is urgent and I need a favor
Are you available?

If you receive one of these messages, please email it to catchoftheday@vassar.edu and then delete it. If you engage the sender, it will lead to a fraudulent financial transaction in which you may have funds stolen from you.

These emails are from a criminal who is trying to steal money by impersonating Vassar employees and targeting people within an individual’s department or organization. The criminal tries to convince the recipients to purchase one or more gift cards and send back the redemption codes. This is a common scam based on existing trust relationships among employees. Remember to always double-check the “from” and “reply-to” addresses in email to verify the sender. It is a good practice to contact the purported sender through a known phone number, or create a new email sent to the person’s vassar.edu email address to ask if the original request was authentic. Also, if these messages are discovered in a Spam or Junk folder, it is reasonable to assume that the message is not a valid request from a Vassar College community member.

The reports we received specifically targeted department heads and supervisors. The incoming email addresses were blocked as soon as they were brought to our attention, in order to prevent additional communication from the criminal.

Thank you for your attention and thank you as always for your timely reporting! The diligence from our community members keeps all of us at Vassar College safe and secure.

NEWS: CIS has a new Service Status page!

October 2, 2020Newsemharris

Stay informed about information security alerts with the new CIS service status page!

Computing and Information Services has a new status page available at servicestatus.vassar.edu. The page displays information about all scheduled maintenance, outages, and information security alerts.

Make sure you subscribe to the services you use in your work and/or studies at the college and the information security category to stay informed about relevant maintenance, outages, and alerts. There are guides to help you get started at go.vassar.edu/statuspagehelp. More information about CIS communicates is available at computing.vassar.edu/communications.

If you have any questions or need additional assistance, please contact the CIS Service Desk at (845) 437-7224 or servicedesk@vassar.edu.

Beware of COVID scams! A message from Catch of the Day

September 4, 2020News, Security Tipemharris

Here at Catch of the Day we care about avoiding malicious emails that attempt to steal data or money, whether from Vassar College or from any individual associated with the college. We don’t want anyone to suffer negative impacts from cybercriminals and all that they do!

We also care about avoiding scams that are not directly related to computing. Ever since the COVID-19 pandemic started, cybercriminals have been taking advantage with some new and interesting ways to try to steal data and money. It is important to be aware of all these scams and understand how to avoid them.

Here is a partial list of COVID-19 scams to watch out for:

Fake contact tracers – you may receive a call from someone who claims to be a contact tracer. A contact tracer will only ask you for your name, address, general health information, and where you have been in the last 14 days. A contact tracer will never ask for your Social Security Number, Credit Card number, bank account, or ask for any payment. Also, a contact tracer will never send you a text or email with a document for download.
Fraudulent unemployment claims – criminals may file for unemployment benefits under your name. If you receive any communication from an unemployment office that your claim has been processed and you did not submit it yourself, contact the unemployment office immediately.
Fake products – avoid purchasing COVID-19 related products such as personal protective equipment (PPE), medications, herbal remedies, air filtration, or other related products that you see advertised via email or websites. Always consult with a health professional for the latest guidance and verified products.
Fundraising scams – beware of solicitations for fundraising related to COVID-19 relief. Even if you get an advertisement or an email that appears to be from a known charity, you should check the official organization’s website to ensure that they are raising money legitimately. Also, beware of individual pleas for financial assistance, such as those found on Go Fund Me

If you ever see an advertisement or get an email and you are unsure of it’s legitimacy, send it along! Email the link or forward the original email to catchoftheday@vassar.edu If you get a suspicious phone call, you may report it to the same email address. If it is urgent, please contact the Service Desk at 845-437-7221

Stay vigilant! Stay safe! And most importantly, don’t get hooked.

Helpful links:

Avoid COVID-19 scams from the Department of Homeland Security: https://www.dhs.gov/employee-resources/blog/2020/06/16/avoiding-covid-19-scams
Avoid COVID-19 scams from the Federal Trade Commission: https://www.ftc.gov/coronavirus/scams-consumer-advice
Coronavirus Scam from the Federal Communications Commission: https://www.fcc.gov/covid-scams
COVID-19 Security Resource Library from Stay Safe Online: https://staysafeonline.org/covid-19-security-resource-library/

October is National Cybersecurity Awareness month!

October 15, 2019Newsemharris

Spend October becoming Cyberaware! Computing and Information Services is posting tips on its Facebook page. You can also find information at Stay Safe Online.

Remember to be alert and report all suspicious email or other cyber activity to catchoftheday@vassar.edu!

WELCOME BACK! A message from Catch of the Day

September 9, 2019Newsemharris

Welcome back to campus to all returning students and a great big welcome to our incoming students, the class of 2023!

We refer to the first two months of the Fall semester as phishing season. Cybercriminals are aware of the Higher Education academic schedule, and take full advantage of the early semester rush and the influx of new faculty and students in order to bombard community members with a wide variety of malicious emails.

Since late August we have seen a large increase in malicious emails, including the following:

Extortion emails
Fake invoices
Impersonation
Attempts to change Direct Deposit

We are guaranteed to see more over the coming weeks and we depend on the community to report these issues swiftly by sending an email to catchoftheday@vassar.edu

Now would be a good time to brush up on the different types of emails we receive and review some of our best practices:

Impersonation emails: http://pages.vassar.edu/catchoftheday/2019/06/28/suspicious-emails-impersonating-vassar-personnel-2/
Invoices with malicious attachments: http://pages.vassar.edu/catchoftheday/2019/04/03/ach-notification/
Unsolicited Google Doc sharing: http://pages.vassar.edu/catchoftheday/2019/03/27/docx-docx-shared-via-google-drive/
Employment fraud: http://pages.vassar.edu/catchoftheday/2018/05/07/a-message-personal-assistant-at-dres/
Best Practice: enable Duo: http://pages.vassar.edu/catchoftheday/2017/06/29/best-practice-enabling-multi-factor-authentication-with-duo/
Best Practice: use a Password Manager! Vassar College is happy to offer LastPass Premium for anyone with a vassar.edu email address or LastPass Enterprise for employees. Find out more from our Service Catalog: https://go.vassar.edu/servicedesklastpass

Stay safe and keep sending those suspicious emails! We review each email and we always respond. Send them along to catchoftheday@vassar.edu

School is over! Beware of employment fraud.

May 28, 2019Newsemharris

Congratulations to all Vassar students, faculty, administrators, and staff on the end of another academic year. We especially want to congratulate the class of 2019. And to any student returning in the fall, have a wonderful summer break.

We have two particularly busy times of year for malicious emails. Right now is one of them, right after the academic year comes to a close. In May and June, be wary of any email that contains a too-goo-to-be-true employment offer. Unsolicited email from a potential employer is always a reason to be cautious, and these emails are most likely fraudulent. See some recent examples here:

http://pages.vassar.edu/catchoftheday/2018/04/22/425/
http://pages.vassar.edu/catchoftheday/2019/02/26/a-message-refinery29-job-offer/

We have also received reports of fraudulent phone calls related to employment offers or reference checks. Specifically, a user reported that a company called asking for a reference check on a student, but the caller asked for a large amount of personal information. If any employee of Vassar College receives a request for a reference of any kind, be sure to validate the request with the individual it is pertaining to. Similarly, if you are a student who gives references to a company, be sure to tell your references about your job application so the references go smoothly.

The next time of the year to watch for suspicious email is in the fall. As you take a break from Vassar, stay diligent in reviewing emails and report anything suspicious to catchoftheday@vassar.edu

Thank you to all the people in the community who continue to report suspicious email (and phone) activity. Your timely notifications help keep us all safe and secure.

NEWS: “Collection #1” Data Breach

January 18, 2019Newsemharris

On January 17th, 2019, the media began reporting on a large collection of breached data, known as “Collection #1”. This collection contains millions of email addresses and passwords and was posted publicly on the Internet.

The data was discovered by a security researcher named Troy Hunt. He posted a description of the data on his blog at The 773 Million Record “Collection #1” Data Breach. It is important to note that the breached data is not recent and that the information is limited to email addresses and passwords (i.e., no credit card information, health records or social security numbers).

We do not believe this data contains any legitimate login or password information for accessing Vassar business systems. However, your Vassar email address may appear in the data collection when you used this email address to sign up for a third-party service.

What should I do?

Use strong passwords – use more characters in your password to make them harder to guess
Use different passwords – make sure you use different passwords for different sites. Never use your Vassar password for any service outside of Vassar College. That way, if a third-party site is breached, that password can’t be used to access Vassar data. A password manager can help you with good password habits. Vassar offers LastPass Premium for free to all active community members. Find out more at https://servicedesk.vassar.edu/catalog_items/751530-password-management/service_requests/new
Check your email addresses for breaches – the website https://haveibeenpwned.com/ will tell you if your information is included in the “Collection #1” breach or any others. Vassar requires password changes once every year. This means the risk of your new password being known is low. However, you should change older passwords on other websites if your email address does appear in the breach information.
Check your password – you can also see if your current or new passwords have appeared in any data breaches at https://haveibeenpwned.com/Passwords
Enable Multi-Factor Authentication – Vassar offers Duo to protect many services, including Google Apps, Moodle, Workday, and Banner. Learn more at https://servicedesk.vassar.edu/solutions/571021-vassarone-setting-up-multi-factor-authentication-with-duo For your personal accounts, enable it wherever it is offered, especially for banking websites.

If you have questions or concerns about this incident or any other Information Security topic, please send an email to infosecurity@vassar.edu. Always report suspicious emails to catchoftheday@vassar.edu.

News: Blackmail and Extortion emails

July 31, 2018Newsemharris

NOTE TO READERS: The Catch of the Day blog not only posts examples of phishing, fraud, and other malicious emails, but also best practices and general CIS news items. This is one of them! You can always locate best practices and news items by clicking on any category (right-hand sidebar).

Computing and Information Services has received increasing reports of incoming emails that attempt to blackmail the recipients. The emails claim that there is compromising or unsavory information that will be sent to the recipient’s friends and family, unless funds are paid via wire transfer or Bitcoin.

These emails are sent by criminals in an attempt to get money directly via extortion. The individuals sending these emails do not have any real information, and can’t contact your friends and family.

The emails may contain some details about you such as your full name and role at Vassar. In more extreme cases, they contain enough details that you may be convinced the threat is real. Those details are gained from various sources on the Internet, and do not indicate that the attacker actually knows you or has gained access to any of your Vassar or personal accounts.

If you receive a blackmail or extortion attempt via email, please send it to catchoftheday@vassar.edu so we can evaluate the content. We can advise you on the best action to take.

And remember: the best way to protect your accounts is by using multi-factor authentication! See our post here: http://pages.vassar.edu/catchoftheday/2017/06/29/best-practice-enabling-multi-factor-authentication-with-duo/

News: critical vulnerability in Apple MacOS High Sierra

November 30, 2017Newsemharris

On November 28th, a serious vulnerability was discovered in the Apple Mac operating system High Sierra. This vulnerability allows a bad actor to gain complete control of a user’s computer, which could lead to the loss of important data and the installation of malicious software (malware).

Apple released a fix and we advise everyone who uses High Sierra to apply the critical security update to their Apple machine. Computing and Information Services currently does not deploy or support High Sierra on Vassar-owned machines. However, we want to ensure that student machines and personally-owned machines are updated, as any compromised machine on campus could affect the Vassar community.

If you have a Vassar-owned machine that is running Sierra, El Capitan, or an earlier operating system, please do not upgrade it to High Sierra as it may disrupt the functionality of your machine.

(Click “Continue Reading” for instructions)

Continue reading News: critical vulnerability in Apple MacOS High Sierra →

Get ready for VassarOne!

February 10, 2017Newsemharris

We are pleased to announce VassarOne, a new single-sign-on platform for Vassar College. With one login page for your most used computing services, you won’t get tricked by fake Google login pages! We strongly encourage all members of the community to sign up for multi-factor authentication. If a hacker gets our Vassar credentials, your information will still be safe – use a smartphone to validate your identity on login.

Are you excited? We are! Stop by the Service Desk for flyers and Valentine’s Day candy hearts!