SEARCH

  • [:en]Recent Posts[:af]Onlangse bydraes

  • [:en]Categories[:af]Kategorieë

  • [:en]Archives[:af]Argiewe

E-mail

« Older Entries
Newer Entries »

[:en]Remember to check your Junk Email folder[:af]Onthou om in jou Junk Email vouer te kyk[:]

Monday, August 30th, 2021

[:en]

To ensure that staff and students aren’t exposed to malicious phishing or spam emails our system administrators and security team had to enable a stricter spam filter earlier this year as added protection.

A spam filter assigns every message, received and sent, a spam confidence level based on the likelihood that the message is spam. Depending on its level an inbound message may be relayed directly to the user’s Junk Email folder. The filter looks at certain criteria contained in the email it rates, for example too many hyperlinks or a suspicious file attached. Tweaking the filter can be tricky – we don’t want you to miss important emails, but at the same time it’s our responsibility to protect you and all our staff from harmful attacks. 

For this reason, it’s important that you regularly look in your Junk Email folder in case the spam filter might have relayed it there. 

The main purpose of Microsoft Outlook’s Junk Email Filter helps is to reduce unwanted email messages in your Inbox. Junk email, also known as spam, is moved by the filter away to the Junk Email folder. This is done at an institutional level by Microsoft (as mentioned above), but you can also flag or “un”flag messages from a person or company as Junk email.

How to change your spam filter’s preferences.
How to tag an email as junk mail.
How to report spam or junk email to Microsoft. (downloadable PDF-document) 

If you have any questions, please log a request on the ICT Partner Portal.

[:af]

Om te verseker dat personeel en studente nie blootgestel word aan gevaarlike strikroof of gemorspos nie het ons stelseladministrateurs en sekuriteitspan vroeër die jaar `n addisionele vlak van sekuriteit implementeer deur die gemorsposfilter strenger te maak. 

Maar hoe werk `n gemorsposfilter? Aan elke boodskap wat ontvang of gestuur word, word`n sekerheidsvlak toegeken op grond van die waarskynlikheid dat dit gemorspos is. Afhangende van dié vlak sal die inkomende boodskap direk na die gebruiker se Junk Email vouer gestuur word, of nie. Die filter kyk na sekere kriteria in die e-pos, soos byvoorbeeld meer as `n sekere hoeveelheid skakels of potensieël gevaarlike aanhangsels. Om die perfekte balans te tref is moeilik – ons wil nie hê jy moet belangrike e-posse mis nie, maar terselfdertyd is dit ons verantwoordelikheid om jou en al ons gebruikers te beskerm van kwaadwillige aanvalle.

Om hierdie rede is dit belangrik dat jy gereeld in jou Junk E-mail vouer kyk om seker te maak dat daar nie belangrike e-posse lê en wag nie. 

Die hoofdoel van Microsoft Outlook se gemorsposfilter is om onwelkome e-posboodskappe weg te hou uit jou Inbox deur dit in die Junk Email vouer te plaas. Hierdie proses word op `n institusionele vlak deur Microsoft toegepas (soos hierbo genoem word), maar jy kan self ook boodskappe van `n persoon of maatskappy merk as gemorspos of nie.

Hoe om jou gemorsposfilter aan te pas.
Hoe om `n e-pos as gemorspos te merk.
Hoe om gemorspos en strikroof by Microsoft aan te meld. (aflaaibare PDF-dokument) 

Vir verdere navrae teken asseblief `n versoek aan op die ICT Partner Portal.

 

 

[:]

Email

Posted in E-mail, Notices, Tips | Comments Off on [:en]Remember to check your Junk Email folder[:af]Onthou om in jou Junk Email vouer te kyk[:]

[:en]Phishing scam: “Proof of Payment”[:]

Friday, August 27th, 2021

[:en]

Over 2 billion people worldwide have purchased goods or services online during the pandemic. The danger of all this convenient shopping with Takealot, Checkers or any online store is that people provide their credit card number without diligence.

One of the most prevalent scams NOW is called POP or Proof of Payment Receipt. There are a number of new phishing scams with the subject “Proof of Payment” or “Suspicious Bank transaction” at the moment. 

Here is one such scam that is currently being reported by personnel and students at Tygerberg. 

Click for larger image

Click for larger image

The way that this scam works is that the scammers are trying to get their victims to click on the link and go to a specially engineered site to steal passwords and login credentials. Often bank account details and cell phone numbers are asked for, and this is how the scammers get access to bank accounts and can do SIM swaps, to steal money and personal details.

Notice how the mail details have been forged to make the sender and the recipient the same. This is to disguise the true sender and to bypass the mail filters which would normally accept mail from within an organisation. In this case this sender used a “throw-away” Outlook.com e-mail address and then forged the headers to change the sender. In this case there is a possibility that the government address has been compromised.

If you get one of these e-mails or one similar looking (scammers change tactics very quickly) please report it to IT on the ICT Partner Portal. Fill in your information and add the email as an attachment. Your request will automatically be logged on the system.​​

Secondly blacklist the sender under Junk mail, and perhaps even block the entire domain. You can do this by using the Report Message add-in on Outlook (available on your toolbar on the far right) More about the add-in on our blog or you can find the instructions on this .PDF

 

[ARTICLE BY DAVID WILES]

[:]

Email

Tags:
Posted in E-mail, News, Security | Comments Off on [:en]Phishing scam: “Proof of Payment”[:]

[:en]Careful of Reply All [:af]Wees versigtig vir Reply All[:]

Tuesday, March 2nd, 2021

[:en]

Last month some university staff’s mailboxes were flooded with an email advertising services in what we call an email storm. Apart from being disruptive, these emails weren’t harmful, but we would like to remind you of a five important things to keep in mind before you send email to large groups:

1. ALWAYS use the BCC field, NOT the CC field.
If you use the BCC field instead of the CC field the Reply All option is disabled. Therefore recipients won’t be able to Reply All and cause a flood of inconvenient emails.

2. DO NOT Reply All when you receive an email sent to multiple people.
If you receive an email that has been sent to a large number of people, please by default don’t Reply All. You will only be causing an unnecessary surge of emails and annoy your colleagues. If you need to comment only email the sender or the relevant people.

3. Advertising services or products on the SU network is not allowed.
No staff or student member is allowed to advertise any services on the SU network. This is stipulated in the Electronic Communications Policy which staff and students agree to when reactivating their network access every year.

4. If you need to send official mass communication, consult the Digital Communications Office.
The Digital Communications Office, a division of Corporate Communications, are responsible for campus-wide electronic communication. They use specific platforms to distribute information and will be able to advise you on the most efficient way of sending out your email.

5. Use SYMPA
If you regularly need to send out emails, you can use the SYMPA mailing solution. More information on SYMPA.

 

[:af]

Verlede maand is sommige personeel se e-posbusse oorweldig met ʼn advertensie e-pos wat gelei het tot wat ons noem ʼn e-pos storm. Alhoewel hierdie tipe e-posse nie skadelik is nie, is dit steurend en kan dit voorkom word. Ons herinner jou graag aan ʼn paar belangrike punte om in gedagte te hou wanneer jy e-pos moet stuur na groot groepe mense.

1. Gebruik ALTYD die BCC-veld, nie die CC-veld nie.
Wanneer jy die BCC-veld in plaas van die CC-veld gebruik is die Reply All funksie outomaties gedeaktiveer. Ontvangers van die e-pos kan dus nie reply to all en onnodige e-posse aan kollegas stuur nie.

2. Moenie Reply All wanneer jy `n e-pos ontvang wat aan verskeie mense gestuur is nie.
Indien jy `n e-pos ontvang en daar is `n groot groep ontvangers in die CC-veld, moet asb. nie by verstek Reply All druk nie. Nie alleen gaan jy `n onnodige vloed van e-posse veroorsaak nie, maar jy gaan ook op jou kollegas se senuwees werk. Indien jy moet antwoord, stuur e-pos aan die oorspronklike versender of die relevante persone.

3. Advertensie van dienste en produkte op die US-netwerk word nie toegelaat nie. 
Geen personeel of studente word toegelaat om enige dienste of produkte op die US-netwerk te adverteer nie. Hierdie riglyn word in die Elektroniese Kommunikasiebeleid, wat personeel en studente jaarliks aanvaar met heraktivering, gestipuleer 

4. Indien jy amptelike massakommunikasie moet stuur, raadpleeg eers die Digitale Kommunikasiekantoor.
Die Digitale Kommunikasiekantoor, `n onderafdeling van Korporatiewe Kommunikasie, is verantwoordelik vir kampuswye, elektroniese kommunikasie. Hulle gebruik spesifieke platforms vir die verspreiding van inligting en sal kan adviseer wat die effektiefste wyse is om jou e-pos uit te stuur. 

5. Gebruik SYMPA
Indien jy gereeld e-posse moet stuur aan groot groepe, gebruik die bestaande SYMPA e-posstelsel. Meer oor SYMPA.

[:]

Email

Posted in E-mail, Notices | Comments Off on [:en]Careful of Reply All [:af]Wees versigtig vir Reply All[:]

[:en]Change your password online[:af]Verander jou wagwoord aanlyn[:]

Thursday, February 25th, 2021

[:en]

In the past, the IT Service Desk was your first stop when you forgot your password (we know, it happens to us too!) or had to change your password. Unfortunately, due to various security risks, as well as the very strict new data protection acts, the Service Desk is no longer allowed to change or reset your password for you. (You can read more about the university’s own Data Privacy Regulation here)

We would like to encourage staff and students to use the Password Selfhelp website in future. We realise that this might be inconvenient, but for your and our own protection, we will have to follow this procedure. 

 The Password Selfhelp website (www.sun.ac.za/password) offers two options: 

  1. Change Password for users who know what their password is and want to change it. 
  2. Reset Password for users who forgot their password. 

To use the online Password Selfhelp, your cellphone number or an alternative email address has to be on the HR records, otherwise, you will not be able to change your password. You can update this information by logging onto SUN-e-HR though the staff portal,  http://my.sun.ac.za or contacting your department’s HR contact person. 

Select the My Profile link – Personal Information

Log on to SUN-e-HR.

Select Basic Details – Update, Other, Personal Email Address 

or

Select  Phone Numbers – Update

During the password change process a PIN code, consisting of 8 numbers, will be SMSed or emailed to the user (depending on which option he/she selected) Please use this PIN to change your password on the self help website. As soon as the password has been changed, the user will be notified by means of SMS or email.

If you have not requested a password change, please notify the IT Service Desk immediately at 808 4367.

IMPORTANT!

If you are working from home you will also need to follow these instructions after you’ve changed your password to ensure that it sync properly across devices and accounts.

[:af]

In die verlede was die IT Dienstoonbank die eerste plek wat jy gekontak het as jy jou wagwoord vergeet het (ons weet, dit gebeur met ons ook!) of as jy dit sommer net wil verander. Deesdae kan die Dienstoonbank ongelukkig nie meer wagwoorde verander nie weens sekuriteitsrisikos en baie streng data beskermingswette. (Jy kan hier meer lees oor die universiteit se eie Dataprivaatheidsregulasie)

Ons wil graag personeel en studente aanmoedig om voortaan van die Wagwoord Selfhelp webwerf gebruik te maak. Ons besef dat dit ongerieflik mag wees, maar dis belangrik dat ons hierdie prosedure volg vir beide julle en ons beskerming.

Die Wagwoord Selfhelp webwerf (www.sun.ac.za/password) bied twee opsies: 

  1. Change Password vir gebruikers wat weet wat hulle wagwoord is en dit wil verander.
  2. Reset Password vir gebruikers wat hulle wagwoord vergeet het.

Om die aanlyn Wagwoord Selfhelp funksie te gebruik, is dit belangrik dat jou selfoonnommer of `n alternatiewe e-posadres op Menslike Hulpbronne se rekords is. Daarsonder sal jy nie jou wagwoord kan verander nie. Hierdie inligting kan jy opdateer deur aan te teken op SUN-e-HR via die personeelportaal, http://my.sun.ac.za. of deur jou Menslike Hulpbronne kontakpersoon te vra.

Kies die My Profile skakel en dan Personal Information

Teken aan by SUN-e-HR.

Kies Basic Details – Update, Other, Personal Email Address 

of

Kies  Phone Numbers – Update

Tydens die wagwoord veranderingsproses word ‘n pinkode, bestaande uit 8 syfers, aan die persoon geSMS of met e-pos gestuur is (afhangende van die opsie wat gekies is). Die pinkode moet gebruik word op die wagwoord selfhelp webbladsy voordat ‘n nuwe wagwoord gekies kan word. Sodra ‘n wagwoord verander is, word die persoon per epos en sms daarvan in kennis gestel.

Indien die persoon nie die wagwoord verandering versoek het nie, moet hulle dadelik die IT Dienstoonbank kontak by 021 8084367.

BELANGRIK!

Indien jy tuis werk sal jy ook die volgende instruksies moet volg nadat jy jou wagwoord verander het om te verseker dat jou wagwoord op al jou toestelle en rekeninge gesinkroniseer is. 

 

[:]

Email

Posted in E-mail, Internet, Security | Comments Off on [:en]Change your password online[:af]Verander jou wagwoord aanlyn[:]

[:en]”PLEASE SUPPORT STIAS…” email causes a mail storm[:]

Friday, February 19th, 2021

[:en]

There is no reason to be worried or concerned about a mail that is being circulated with the subject line starting with “PLEASE SUPPORT STIAS…”

Although it is definitely spam (defined as unsolicited commercial e-mail) it does not appear have any dangerous content and was sent out by a university user to over 300 addresses one of which was the general IT Service Desk email address. Because it was sent to the address which automatically logs service requests the account automatically emailed all the recipients with “Cancellation” e-mails, who then replied, etc. This was no fault on the side of the IT Service desk as it is an automatic process of the Jira logging software that IT uses to track its calls.

This is known as a mail storm in IT jargon when somebody replies to a single e-mail sent to a mailing list and inadvertently replies with a personal message to the entire mailing list leading to a snowball effect or a mail storm. It is like a dog chasing its own tail!

If you receive a mail with the subject line ICT-338035 FW: PLEASE SUPPORT STIAS – PLAN YOUR NEXT MEETING, WORKSHOP AND OR CONFERENCE WITH US”  or “PLEASE SUPPORT STIAS – PLAN YOUR NEXT MEETING, WORKSHOP AND OR CONFERENCE WITH US” just delete it. 

If you want to take it further and set up a mail filter to delete all mails with that particular Subject, then you can do so. However do not blacklist the sender or report it to the help@sun.ac.za address or it will just perpetuate the spam, and you could block legitimate e-mails from IT or the original sender.

Stay safe out there and thank you to everyone who flagged this email. It is encouraging when we have such observant and enthusiastic users.

[ARTICLE BY DAVID WILES]

 

[:]

Email

Posted in E-mail, News, Security | Comments Off on [:en]”PLEASE SUPPORT STIAS…” email causes a mail storm[:]

« Older Entries
Newer Entries »