%PDF-1.3 1 0 obj << /Type /Catalog /Outlines 2 0 R /Pages 3 0 R >> endobj 2 0 obj << /Type /Outlines /Count 0 >> endobj 3 0 obj << /Type /Pages /Kids [6 0 R 17 0 R ] /Count 2 /Resources << /ProcSet 4 0 R /Font << /F1 8 0 R /F2 9 0 R /F3 10 0 R /F4 11 0 R >> /XObject << /I1 16 0 R >> >> /MediaBox [0.000 0.000 612.000 792.000] >> endobj 4 0 obj [/PDF /Text /ImageC ] endobj 5 0 obj << /Creator (DOMPDF) /CreationDate (D:20240517083023+00'00') /ModDate (D:20240517083023+00'00') /Title (IT-artikels) >> endobj 6 0 obj << /Type /Page /Parent 3 0 R /Annots [ 12 0 R 14 0 R ] /Contents 7 0 R >> endobj 7 0 obj << /Length 6453 >> stream 0.702 0.800 0.816 rg 34.016 34.016 543.969 723.969 re f 1.000 1.000 1.000 rg 45.266 64.733 521.469 682.001 re f 0.773 0.773 0.773 rg 0.773 0.773 0.773 RG 45.266 746.734 m 566.734 746.734 l 565.984 745.984 l 46.016 745.984 l f 566.734 746.734 m 566.734 64.733 l 565.984 64.733 l 565.984 745.984 l f 45.266 746.734 m 45.266 64.733 l 46.016 64.733 l 46.016 745.984 l f 61.016 617.359 m 550.984 617.359 l 550.984 618.109 l 61.016 618.109 l f 1.000 1.000 1.000 rg BT 278.868 698.693 Td /F1 10.5 Tf [(POST LIST)] TJ ET 0.200 0.200 0.200 rg BT 212.789 670.111 Td /F1 14.4 Tf [(INFORMASIETEGNOLOGIE)] TJ ET BT 221.824 643.466 Td /F1 11.7 Tf [(INFORMATION TECHNOLOGY)] TJ ET BT 61.016 583.841 Td /F1 14.4 Tf [(CYBERSECURITY AWARENESS MONTH: SOME STATISTICS AND )] TJ ET BT 61.016 566.258 Td /F1 14.4 Tf [(COMMON SENSE ADVICE)] TJ ET 0.400 0.400 0.400 rg BT 61.016 546.451 Td /F3 9.0 Tf [(It's November and)] TJ ET 0.373 0.169 0.255 rg BT 136.265 546.451 Td /F3 9.0 Tf [(Cybersecurity Awareness month)] TJ ET 0.373 0.169 0.255 RG 0.18 w 0 J [ ] 0 d 136.265 545.300 m 265.802 545.300 l S 0.400 0.400 0.400 rg BT 265.802 546.451 Td /F3 9.0 Tf [( is behind us. As a final signoff, we would like to share a few statistics )] TJ ET BT 61.016 535.462 Td /F3 9.0 Tf [(and give some common sense advice to help you spot phishing scams.)] TJ ET BT 61.016 515.473 Td /F3 9.0 Tf [(Surely South Africa is not sophisticated or advanced enough to be included in phishing attacks? According to Drew van )] TJ ET BT 61.016 504.484 Td /F3 9.0 Tf [(Vuuren, CEO of 4Di Privaca, South Africa is the second most targeted country globally when it comes to phishing attacks.)] TJ ET BT 61.016 484.495 Td /F3 9.0 Tf [(The cost of phishing in South Africa amounted to approximately R4.2 billion in 2013 alone and 5% of phishing attacks )] TJ ET BT 61.016 473.506 Td /F3 9.0 Tf [(globally occur in South Africa. It is not a matter of if the university is going to be a target, but when. Phishing attacks are )] TJ ET BT 61.016 462.517 Td /F3 9.0 Tf [(not Information Technology's concern, but should also be yours as a user of the internet.)] TJ ET BT 61.016 442.528 Td /F3 9.0 Tf [(According to a 2016 survey by Symantec, over 30% of South African internet users share at least three pieces of personal )] TJ ET BT 61.016 431.539 Td /F3 9.0 Tf [(information on their social media profiles which could be used to steal their identity.)] TJ ET BT 61.016 411.550 Td /F3 9.0 Tf [(60% of the respondents admitted that they had no idea what their privacy settings were and who could see their personal )] TJ ET BT 61.016 400.561 Td /F3 9.0 Tf [(information on sites like Facebook, Instagram, Twitter etc.)] TJ ET BT 61.016 380.572 Td /F3 9.0 Tf [(People often become victims of online fraud by using the same password or usernames on multiple sites, including social )] TJ ET BT 61.016 369.583 Td /F3 9.0 Tf [(media sites and internet banking sites. According to Ofcoms Adults Media Use and Attitudes Report 2013 report, 55% )] TJ ET BT 61.016 358.594 Td /F3 9.0 Tf [(of the poll respondents used the same password for most, if not all, websites.)] TJ ET BT 61.016 338.605 Td /F3 9.0 Tf [(Here are 10 common-sense tips to help you spot and prevent becoming a victim of a phishing scam:)] TJ ET BT 61.016 315.646 Td /F4 9.0 Tf [(1.Learn to identify suspected phishing emails)] TJ ET 0.400 0.400 0.400 RG 85.866 298.473 m 85.866 298.885 85.696 299.295 85.404 299.587 c 85.113 299.878 84.703 300.048 84.291 300.048 c 83.878 300.048 83.469 299.878 83.177 299.587 c 82.885 299.295 82.716 298.885 82.716 298.473 c 82.716 298.061 82.885 297.651 83.177 297.359 c 83.469 297.068 83.878 296.898 84.291 296.898 c 84.703 296.898 85.113 297.068 85.404 297.359 c 85.696 297.651 85.866 298.061 85.866 298.473 c f BT 91.016 295.657 Td /F3 9.0 Tf [(They duplicate the images and branding of a real company.)] TJ ET 85.866 287.484 m 85.866 287.896 85.696 288.306 85.404 288.598 c 85.113 288.889 84.703 289.059 84.291 289.059 c 83.878 289.059 83.469 288.889 83.177 288.598 c 82.885 288.306 82.716 287.896 82.716 287.484 c 82.716 287.072 82.885 286.662 83.177 286.370 c 83.469 286.079 83.878 285.909 84.291 285.909 c 84.703 285.909 85.113 286.079 85.404 286.370 c 85.696 286.662 85.866 287.072 85.866 287.484 c f BT 91.016 284.668 Td /F3 9.0 Tf [(They copy the name of a company or an employee of the company.)] TJ ET 85.866 276.495 m 85.866 276.907 85.696 277.317 85.404 277.609 c 85.113 277.900 84.703 278.070 84.291 278.070 c 83.878 278.070 83.469 277.900 83.177 277.609 c 82.885 277.317 82.716 276.907 82.716 276.495 c 82.716 276.083 82.885 275.673 83.177 275.381 c 83.469 275.090 83.878 274.920 84.291 274.920 c 84.703 274.920 85.113 275.090 85.404 275.381 c 85.696 275.673 85.866 276.083 85.866 276.495 c f BT 91.016 273.679 Td /F3 9.0 Tf [(They include sites that are visually similar or identical to a real business.)] TJ ET 85.866 265.506 m 85.866 265.918 85.696 266.328 85.404 266.620 c 85.113 266.911 84.703 267.081 84.291 267.081 c 83.878 267.081 83.469 266.911 83.177 266.620 c 82.885 266.328 82.716 265.918 82.716 265.506 c 82.716 265.094 82.885 264.684 83.177 264.392 c 83.469 264.101 83.878 263.931 84.291 263.931 c 84.703 263.931 85.113 264.101 85.404 264.392 c 85.696 264.684 85.866 265.094 85.866 265.506 c f BT 91.016 262.690 Td /F3 9.0 Tf [(They promote gifts or threaten the closure of an existing account.)] TJ ET BT 61.016 239.731 Td /F4 9.0 Tf [(2.Check the source of information from incoming email)] TJ ET BT 61.016 219.742 Td /F3 9.0 Tf [(Your bank, Information Technology, or cell phone provider will never ask you to send your passwords or personal )] TJ ET BT 61.016 208.753 Td /F3 9.0 Tf [(information by mail.Never respond to these questions, and if you have the slightest doubt, call your bank, IT or your cell )] TJ ET BT 61.016 197.764 Td /F3 9.0 Tf [(phone provider directly for clarification.)] TJ ET BT 61.016 174.805 Td /F4 9.0 Tf [(3.Never go to your banks website by clicking on links in emails)] TJ ET BT 61.016 154.816 Td /F3 9.0 Tf [(Do not click on hyperlinks or attachments, as it will direct you to a fraudulent website. Type in the URL into your browser or )] TJ ET BT 61.016 143.827 Td /F3 9.0 Tf [(use your own bookmarks or favourites if you want to go faster.)] TJ ET BT 61.016 120.868 Td /F4 9.0 Tf [(4. Beef up the security of your computer)] TJ ET q 187.500 0 0 187.500 61.016 367.742 cm /I1 Do Q endstream endobj 8 0 obj << /Type /Font /Subtype /Type1 /Name /F1 /BaseFont /Helvetica-Bold /Encoding /WinAnsiEncoding >> endobj 9 0 obj << /Type /Font /Subtype /Type1 /Name /F2 /BaseFont /Helvetica /Encoding /WinAnsiEncoding >> endobj 10 0 obj << /Type /Font /Subtype /Type1 /Name /F3 /BaseFont /Helvetica-Oblique /Encoding /WinAnsiEncoding >> endobj 11 0 obj << /Type /Font /Subtype /Type1 /Name /F4 /BaseFont /Helvetica-BoldOblique /Encoding /WinAnsiEncoding >> endobj 12 0 obj << /Type /Annot /Subtype /Link /A 13 0 R /Border [0 0 0] /H /I /Rect [ 61.0157 367.7419 248.5157 555.2419 ] >> endobj 13 0 obj << /Type /Action /S /URI /URI (http://blogs.sun.ac.za/it/files/2018/11/swimmin_with_the_sharks2.jpg) >> endobj 14 0 obj << /Type /Annot /Subtype /Link /A 15 0 R /Border [0 0 0] /H /I /Rect [ 136.2647 545.6182 265.8017 554.7757 ] >> endobj 15 0 obj << /Type /Action /S /URI /URI (https://blogs.sun.ac.za/it/en/category/phishing/) >> endobj 16 0 obj << /Type /XObject /Subtype /Image /Width 250 /Height 250 /ColorSpace /DeviceRGB /Filter /DCTDecode /BitsPerComponent 8 /Length 26868>> stream ~ExifMM*bj(1r2i ' 'Adobe Photoshop CC (Windows)2018:11:02 12:48:33&(.HHH Adobe_CMAdobed            " ?   3!1AQa"q2B#$Rb34rC%Scs5&DTdE£t6UeuF'Vfv7GWgw5!1AQaq"2B#R3$brCScs4%&5DTdEU6teuFVfv'7GWgw ?TI%)$IJI$RI$I%)$IJI$RI$I%)$IOTI%??ӏYjF5_>j+>6&MaWHbVjBQW8ūܮ ӊG-_>eܮizi+ircW]W8~Zp}1%qW@ZZI=rC@ kA?QjI$'Eg#3mvgғD]*hw򬵊Qi./&og}F"Io=8*Bνf=czW kËc_CجxŸnBwoQDxIk5YlvԾMeng5F~0Ȥ9=潿I۹E{6bl(.1f+#L}45k im_MD֭xLkJm3Z[,P,FmCZ 973nmp:’I-TI%>AMom~s3q߽I~,z<"HteV6`co֋X $A@F.+~%Y٭on? h1HVda]wctjo/ZjyiH D)Vet2S`ie;wZݍGGiɪ>bбdӇ쌢jƶc{~kX_էX|ӧ.|Ȫtp/.wOMtNYm<=Sgu"ۿz>߱ѭGukMsy/:n;O$4ꊏ2qt+œ`""wzB&1rwcjS 9.uY>^o{;r#wʷ􊳅0qWMa~;oskPH#4I'}ZooɷH1 Kd_gȴEwn=KEAwkI-'TI%>aKF߂3ZK}#-ߑSX)5jV!amjbmҙ]N+7^׽.K1zc_^>EXCg ous?? }=UlkӤpowO#_M=7pߩ/ϴ1>lsX57NWׅy| ].CӱuPU1}VzO=~[dTkkFzmz"t`c -t99g?u˺GYc7یlR9g[]eUNG뮍c WE <8Cs\y&J UA|5Ep:I-GTI%>0߬B-m=iNCC/al4Kn=>a-yh~~oR. `H$D5۾]t֥YI}&*ˋCgS)rw.}_]Yhw,noPx1@ɷ |ko;̆Q=Oۥ>7{&G- OӖd=NXcG$]+WW3 eCtGls]KN4ͷI-g_/<U1vbɁYzQݳ~zsǧ6̾}ߒ%zm$4:w[KgbΥI:!?ǕAz+&Տsm.k @;Jw}egab}%w2޹A6!$8oZv9as,fiGޗ`845A蹮I;46:a~\ܚi~.)Yx ?~ vmҎHrܿ_wtI&>sl 8̮M!i'gsu #BA oBvfWc}C]wZ=wݣCaI$9TI%> OIb장qE׹h{KtVK~OA?tެ>2Da:x+dozù揿#uKُ9dՎC:V)qǰQ)~n5Zpo%4v ss$߹!%*n|7&·l'{cuh=NXݼ=qgV~=9d?s1 nrCX:F0q>JRv=8 rZ լKZ}pi!6O% }#EcYT7GU54fd_w籥{vQ*Mm\v-}չ Nf{dDąFEv n]gZRckY"C{7E\kn8Z@$Ԭ{Ⱦu5X2?е+H!;i깕;gpiӘ˚YО =,cۣZsT4$Qdow7)b%i$lo^yt_nUYS6`zQ]:&wN+mIQ&__)zj2E@ hNO.|q~cXUn-}+ZJQ"6w(3i%]4R(c+}tCԃwQ"ut<8P"@uݺkEmCZև7,}L\i=[?EXw}vIC̓]b#h"uRv9'}Ӡ'l ir~z'| +84}$T݇TI%>Mg)Y5Lu?W\ߨ9TUdAlj|}䰶O"̽O? x#G(ƞ\ B+o۸.taۅ8aXC˲IAA ;]_j|}["\R$-`"DfIcI:[5~M_>‘s@~ԙs۹$KNCM_>cs-)Ri&OK5~G oQ?UoP&I_I%ITI%)$IJI$RI$I%)$IJI$RI$I%)$IOPhotoshop 3.08BIM%8BIM:/ printOutputPstSboolInteenumInteClrmprintSixteenBitbool printerNameTEXT&\\stbsc01.stb.sun.ac.za\STB_PRINT_Q01printProofSetupObjc Proof Setup proofSetupBltnenum builtinProof proofCMYK8BIM;-printOutputOptionsCptnboolClbrboolRgsMboolCrnCboolCntCboolLblsboolNgtvboolEmlDboolIntrboolBckgObjcRGBCRd doub@oGrn doub@oBl doub@oBrdTUntF#RltBld UntF#RltRsltUntF#Pxl@R vectorDataboolPgPsenumPgPsPgPCLeftUntF#RltTop UntF#RltScl UntF#Prc@YcropWhenPrintingboolcropRectBottomlong cropRectLeftlong cropRectRightlong cropRectToplong8BIMHH8BIM&?8BIM Z8BIM8BIM 8BIM' 8BIMH/fflff/ff2Z5-8BIMp8BIM8BIM8BIM08BIM-8BIM@@8BIM8BIMI Untitled-1nullboundsObjcRct1Top longLeftlongBtomlongRghtlongslicesVlLsObjcslicesliceIDlonggroupIDlongoriginenum ESliceOrigin autoGeneratedTypeenum ESliceTypeImg boundsObjcRct1Top longLeftlongBtomlongRghtlongurlTEXTnullTEXTMsgeTEXTaltTagTEXTcellTextIsHTMLboolcellTextTEXT horzAlignenumESliceHorzAligndefault vertAlignenumESliceVertAligndefault bgColorTypeenumESliceBGColorTypeNone topOutsetlong leftOutsetlong bottomOutsetlong rightOutsetlong8BIM( ?8BIM8BIM8BIM d,H Adobe_CMAdobed            " ?   3!1AQa"q2B#$Rb34rC%Scs5&DTdE£t6UeuF'Vfv7GWgw5!1AQaq"2B#R3$brCScs4%&5DTdEU6teuFVfv'7GWgw ?TI%)$IJI$RI$I%)$IJI$RI$I%)$IOTI%??ӏYjF5_>j+>6&MaWHbVjBQW8ūܮ ӊG-_>eܮizi+ircW]W8~Zp}1%qW@ZZI=rC@ kA?QjI$'Eg#3mvgғD]*hw򬵊Qi./&og}F"Io=8*Bνf=czW kËc_CجxŸnBwoQDxIk5YlvԾMeng5F~0Ȥ9=潿I۹E{6bl(.1f+#L}45k im_MD֭xLkJm3Z[,P,FmCZ 973nmp:’I-TI%>AMom~s3q߽I~,z<"HteV6`co֋X $A@F.+~%Y٭on? h1HVda]wctjo/ZjyiH D)Vet2S`ie;wZݍGGiɪ>bбdӇ쌢jƶc{~kX_էX|ӧ.|Ȫtp/.wOMtNYm<=Sgu"ۿz>߱ѭGukMsy/:n;O$4ꊏ2qt+œ`""wzB&1rwcjS 9.uY>^o{;r#wʷ􊳅0qWMa~;oskPH#4I'}ZooɷH1 Kd_gȴEwn=KEAwkI-'TI%>aKF߂3ZK}#-ߑSX)5jV!amjbmҙ]N+7^׽.K1zc_^>EXCg ous?? }=UlkӤpowO#_M=7pߩ/ϴ1>lsX57NWׅy| ].CӱuPU1}VzO=~[dTkkFzmz"t`c -t99g?u˺GYc7یlR9g[]eUNG뮍c WE <8Cs\y&J UA|5Ep:I-GTI%>0߬B-m=iNCC/al4Kn=>a-yh~~oR. `H$D5۾]t֥YI}&*ˋCgS)rw.}_]Yhw,noPx1@ɷ |ko;̆Q=Oۥ>7{&G- OӖd=NXcG$]+WW3 eCtGls]KN4ͷI-g_/<U1vbɁYzQݳ~zsǧ6̾}ߒ%zm$4:w[KgbΥI:!?ǕAz+&Տsm.k @;Jw}egab}%w2޹A6!$8oZv9as,fiGޗ`845A蹮I;46:a~\ܚi~.)Yx ?~ vmҎHrܿ_wtI&>sl 8̮M!i'gsu #BA oBvfWc}C]wZ=wݣCaI$9TI%> OIb장qE׹h{KtVK~OA?tެ>2Da:x+dozù揿#uKُ9dՎC:V)qǰQ)~n5Zpo%4v ss$߹!%*n|7&·l'{cuh=NXݼ=qgV~=9d?s1 nrCX:F0q>JRv=8 rZ լKZ}pi!6O% }#EcYT7GU54fd_w籥{vQ*Mm\v-}չ Nf{dDąFEv n]gZRckY"C{7E\kn8Z@$Ԭ{Ⱦu5X2?е+H!;i깕;gpiӘ˚YО =,cۣZsT4$Qdow7)b%i$lo^yt_nUYS6`zQ]:&wN+mIQ&__)zj2E@ hNO.|q~cXUn-}+ZJQ"6w(3i%]4R(c+}tCԃwQ"ut<8P"@uݺkEmCZև7,}L\i=[?EXw}vIC̓]b#h"uRv9'}Ӡ'l ir~z'| +84}$T݇TI%>Mg)Y5Lu?W\ߨ9TUdAlj|}䰶O"̽O? x#G(ƞ\ B+o۸.taۅ8aXC˲IAA ;]_j|}["\R$-`"DfIcI:[5~M_>‘s@~ԙs۹$KNCM_>cs-)Ri&OK5~G oQ?UoP&I_I%ITI%)$IJI$RI$I%)$IJI$RI$I%)$IO8BIM!SAdobe PhotoshopAdobe Photoshop CC8BIMXhttp://ns.adobe.com/xap/1.0/ xmp.did:2050245C656111E7A018D8DF13A8419F !Adobed          2!"301#6@`&$ 1!AQ" aq26BRb30r#CS4te$u`cs@DdE1 !q2r0"B@ARbQa`3CSc HydQ4% ؑ {M^p,dIJID쐒@FXT,k_f>g~Gm~R,&G)(ppFؐXT ֻj_bv>yx}lIi)Q(Nh#6  Y]/{?|[%l7IDPF jZg7;<9-Acl* ]|vfd}ƿ^68e3 >m3п-9޾amEvriҽ߈_ uLnKd-i4|__m&X 徲ZmKM|^g?i}\-KR,'mޯ;_Oח[ꩶ5ZUW*V٠8g}o%lE4_ξ:?W I_A|we>kuVԴJr|nf}}LoKdKd-i9t?{zڲ|o>U[MC/l,M[nޗItkd$ Ǩ[YSm6o6;t>Yzz]ZsfX,z޹3 n|;qS [if|L}{-@x_[C3if=ɿ[Ӌa~t>nU]oGVs[Uv%ǥd㜥IYqSuۘIyz`ZiѪoZDrȃ98a…dFRWv5C:"}q>hVHΑBKiCjol(!,`މo%Oj Gt* gDtd0EKQsQ*} sQ%:#h'V:*AB hNQJ)E;NэOaXx% RzU*TRJRzTڬ J#RzԩRzWJRj%J|XԩRJ*TRJ*TyZ/ץJGq*'+n8]G*TRzԩRJUR/%a0ms!y (+]Ȭ}!܎Dᇐa0Xy,<S vUTTzw"5ܧq7c\׏dqRJSKtRzer"g{WD*WkTQJS[]%9 ^WJ+B֥J6&tKw>'9PG)^D.._*J訊qQ!6U-XFQ W*Wz'T]_TsS}KoFLtDb6fvK"Qҵfk*Tjףkk&=(P^9ʫPd*4YA9"K*ZA}z1<zP(PB4SL{iӽ{M֛]IzWgϟݟ?>>>v|d1j*{(q+;K?Pg#*"2jFkOnɛ4(PCtcJ([=SS (\ۤV*- ^F7RIE (P=(PE+i n} ( QB (PѪdPB tR6 (~ ҅ (PѪTPB(PB (PB "jX L6m0ai L6m0ai L6m0ai%??c3|7n{ 3L<9L:7΄l86\\8>s|\98΅3s\<磳..pYF6!"A"!!!6PH6PX(,",",Bă)jΣr؆6!$!!6D "Ci 6aChXEXtC#J`x6! kckdbDB$&Ѵɲm B,B,B:!ҘV4\ͱ lCa.& "%!"6Ci a!b!bD:# a([؆63*lܜܲ1}سMk?"[G1slĂ,B,b:!bFa5fW30o#hy;saXq콹k,nU~_ȉ*MϰɾqǕﯯq,xb;r;w5 j/+aƻ5QQQՔ|Cm-ab#GvmQm3^ȳSyie|$#W9QÚ*gS5c$bF$g8m:*&;"[̇NOtMjb:1юtc{1mYC?`$bF}cˈ#&3xx+-noKdQюtc&o;11# s|oݛo s䳑kp<,oYyymliv9?C4ȼq^yg=WwwWBֵdw%\Y09?7$Jy.nָ2.g6moZyz{s.K $tFw]wgQXy=G{\""C4:R)s$[oWoQ X%B|"{!X%UUu7}<DM_psbظB&޵xۜnE$g}+ cb*> }-Q[U~#ƟKcwb6+u9vm*`rd%,tbu'\iryN/9;[kh 㮣8.M\#'qGsoyIU]j'#-[TY t^秾Λ{5.ly$wIZ1xQol|θe[b\cV]=2٠w %z\67&oNͻ⭣nUf-&[a\?Vo53MH_,|q|Dz>BC,*T.h7|ϖ[\qfy/a%8{roa \/Vw-3x7X溿d]7N:DMRz񺊊*KN$\lnMx7x>Jg{nՋ+"tM}!sysn,pʲ1і2nn5}z{ާzw;ݲئUdl3N;SN;SMwާzw{p~=OǸ ?'{p~=OǸ ?'{p~=OǸ ?'c?FmS*eL2TʙS*eL2TʙS*eL2TʙBHwvAus}R )}Cؠ! S]wƋdhS !{%%*dT]\j(ZcK=ԗy[TZ6"\vNTB*.n\+uˆwF"#2nɹEwf;(¬ʭ(+1Mqq+bcN*S+Ewf=̓rڡj1*D FMPn/HIq"'Dad(ADXhD 0PIDq5p$o@J.DY^eh6vH hpv}qv (eC}qu+h*je*@U7ll Tk닫ڤVݤ\]MTʙS*eL2TʙS*eL2TʙS*eL2R?FX73CVhj X45`f ՁZ3CVij-X4`f Ձ3CVhj X45`f %Ξ̌/ޚQ]TuCߝUّ5Z.65M\$%at?%;X\W6..SJJÅX5S555V)jjO*gK~'3#zjCuPh >6Ù7AÛb̍3|7UwUvdoNɷ 8Vr7󻪻r7eIqj>-*JWvwuWnFW aRtZ߰vguWnFfwUpA1\B 1V"U{ղVTXUB4Z^a@4UTMKƋ:VYP\\ju5MMX7ST}/SGun@t5bnCV&j Xt5bnMՉ7CV&j GsuOܣz~۫V&jMFwR EAͯhRR[]ٝAk/Hgo*.bw ZQdw{#04+~Uݙ49H\@8-Zo&7Z*>>q7[QMyc*ާ< Rt`[ 1 Ӻ[GLy$B.ܭWvc[+(0P"ڀw[VpR 'ޭrkoF?*eŷnQ\;;6(o=\+) R AH) R AH) R AH~?}p#2!ªpT *nO^e⾛ׯY8u>)zznG^c➛ׯXdu.'zfG^b~ׯXdu'zfG^a~ׯXdu.'znG^b➙ׯXu>)zznG^d⾛ׯYxu^+z?+͑7 Òib!ffkf&ǿHmN敥iZ}JҴ;W t~'CwVi}0NҴ:(>JX]OwJҴ+JҴ;;g?N9ND 7gc}/}(:rZV݉ rN敥p츶3O& թTt##oװ}+2{z"u#cjYgFD?aJQ1HZ;yB |,6~@&B鼍nViiҴi\1#卑1'}ֶ2m2{?ɗ[^OQWfʂe0Ѻ Ct楎TC7Gb> ~aSM M}eG; U#z7v@<_̓_ƯIլll|rAvm5Z,-7|a|\Y$EU['tiP+>o-uk'Vd[&oe/VJzleƓ+2u~)60'!ѹ?*5j|֧Z-I4 "b@kFuŒݤmq;u$)cUA V52F;%XY`ٱra0ݐ_iox%]!2wTau !*DSx%ޢ^%Kor><FA(ݖ:0e; 8dpOF;/GɏhJ#cҫ6o^?V|SD/ڱr8¼X󜔆wrEߐ4R'FwݗΡĸa8ʃ2P,{ʒ~7;DJ:&LܗTH^(C{,z_h+<^Gr/[;TD6J ojX`!<ȣP/w+<^ ̜G-ZV6[*JC*vF,ы)[ޗZT[׌QqƷo#z"b(nX B'ȍd>å 9mfafG_"ZLy@DlcВژ\O9sܫJ۰ƒzF`j͖(\<_2VV"C6L~ih>ңƕȋ̕ x< fEя;*Zֵ R7c~@>_:@=Ԓ$qK Sь6$ǑM3.nv,V_JSos?Vh#q2 ;L~HsW|xvHfV2Oh~ j+|T]6~`/bk! sC kΦ6hњSe$ݾqTyX1&]JsF}sWS@Uv;A8ٟݛ9VO'j?v:ݘ9KTZ73G<_r6ԀaWc?WO?(tQ"~:U|\k^Лrם[ >*qZִz[spySCq;C: aZֵ |D$6;ٯf#Q@Q#-V_"p/Ie,=<*,,9|-EZm$i6ewE" ;K 7-yխpυ/Ƈ6~W5K kqfxvmΧh*WP<d)@XyC^,W,KoƬĄw v說*9H?;q+ cB#w;[qIob{X mnJЯ:pBؤ觘S4 Crekr5Ü5kZf;@Lt]q{Md p^NcCI,DtXI=kZG}w|sq,~<̝ݞ0m׸gƣzf ̣/YNٲqE$v]omEn1lVV݇Im"oy(`($P 2$XQǑb^6${6{[ZLْ%T?"yOx<37 |UBd+ HONy?zZ)j) >[7]nN^T y%eo5D#B1 ul/YfEifrƐ58Z'x;;G(uE$2^[hЍ@r~XJ0em˭<3tыLkZ֏-l[MY[^6'@C_گG{tqWP볝N +*S6D$ w@UPP@kZֵv/6cI> endobj 18 0 obj << /Length 3807 >> stream 0.400 0.400 0.400 rg 0.400 0.400 0.400 RG 0.18 w 0 J [ ] 0 d 0.702 0.800 0.816 rg 34.016 34.016 543.969 723.969 re f 1.000 1.000 1.000 rg 45.266 327.178 521.469 430.806 re f 0.773 0.773 0.773 rg 0.773 0.773 0.773 RG 45.266 327.178 m 566.734 327.178 l 565.984 327.928 l 46.016 327.928 l f 566.734 757.984 m 566.734 327.178 l 565.984 327.928 l 565.984 757.984 l f 45.266 757.984 m 45.266 327.178 l 46.016 327.928 l 46.016 757.984 l f 0.400 0.400 0.400 rg BT 61.016 740.193 Td /F3 9.0 Tf [(Common sense and good judgement are as vital as keeping your computer protected with a good antivirus and anti-)] TJ ET BT 61.016 729.204 Td /F3 9.0 Tf [(malware software to block this type of attack.In addition, you should always have the most recent update on your )] TJ ET BT 61.016 718.215 Td /F3 9.0 Tf [(operating system and web browsers.)] TJ ET BT 61.016 695.256 Td /F4 9.0 Tf [(5.Enter your sensitive data on secure websites only)] TJ ET BT 61.016 675.267 Td /F3 9.0 Tf [(In order for a site to be safe, the address must begin with https:// and your browser should show a closed lockicon.)] TJ ET BT 61.016 652.308 Td /F4 9.0 Tf [(6.Periodically check your accounts)] TJ ET BT 61.016 632.319 Td /F3 9.0 Tf [(It never hurts to check your bank accounts periodically to be aware of any irregularities in your online transactions.)] TJ ET BT 61.016 609.360 Td /F4 9.0 Tf [(7.Phishing doesnt only pertain to online banking)] TJ ET BT 61.016 589.371 Td /F3 9.0 Tf [(Most phishing attacks are against banks, but can also use any popular website to steal personal data such as eBay, )] TJ ET BT 61.016 578.382 Td /F3 9.0 Tf [(Facebook, PayPal, etc. Even the university's e-HR site was targeted in 2017.)] TJ ET BT 61.016 555.423 Td /F4 9.0 Tf [(8.Phishing is international)] TJ ET BT 61.016 535.434 Td /F3 9.0 Tf [(Phishing knows no boundaries and can reach you in any language.In general, they are poorly written or translated so this )] TJ ET BT 61.016 524.445 Td /F3 9.0 Tf [(may be another indicator that something is wrong. However, don't be convinced it's legitimate if it's in Afrikaans - phishers )] TJ ET BT 61.016 513.456 Td /F3 9.0 Tf [(are getting clever and adapting.)] TJ ET BT 61.016 490.497 Td /F4 9.0 Tf [(9.Have the slightest doubt? Do not risk it.)] TJ ET BT 61.016 470.508 Td /F3 9.0 Tf [(The best way to prevent phishing is to consistently reject any email or news that asks you to provide confidential data.)] TJ ET BT 61.016 459.519 Td /F3 9.0 Tf [(Delete these emails and call your bank to clarify any doubts.)] TJ ET BT 61.016 436.560 Td /F4 9.0 Tf [(10. Keep up to date and read about the evolution of malware)] TJ ET BT 61.016 416.571 Td /F3 9.0 Tf [(If you want to keep up to date with the latest malware attacks, recommendations or advice to avoid any danger on the )] TJ ET BT 61.016 405.582 Td /F3 9.0 Tf [(network, subscribe to the )] TJ ET 0.373 0.169 0.255 rg BT 163.562 405.582 Td /F3 9.0 Tf [(Information Technology blog)] TJ ET 0.373 0.169 0.255 RG 0.18 w 0 J [ ] 0 d 163.562 404.431 m 277.115 404.431 l S 0.400 0.400 0.400 rg BT 277.115 405.582 Td /F3 9.0 Tf [( or follow them on)] TJ ET 0.373 0.169 0.255 rg BT 350.645 405.582 Td /F3 9.0 Tf [(Twitter)] TJ ET 0.18 w 0 J [ ] 0 d 350.645 404.431 m 377.645 404.431 l S 0.400 0.400 0.400 rg BT 377.645 405.582 Td /F3 9.0 Tf [(. Put your local computer geek or the IT )] TJ ET BT 61.016 394.593 Td /F3 9.0 Tf [(HelpDesk on the speed dial of your cell phone, and don't be embarrassed or too proud to ask questions from those who )] TJ ET BT 61.016 383.604 Td /F3 9.0 Tf [(are knowledgeable on this topic.)] TJ ET BT 61.016 363.615 Td /F3 9.0 Tf [(Keep safe out there.)] TJ ET BT 61.016 345.126 Td /F3 9.0 Tf [(Posted in:Phishing,Security,Tips | Tagged:Phishing | With 0 comments)] TJ ET endstream endobj 19 0 obj << /Type /Annot /Subtype /Link /A 20 0 R /Border [0 0 0] /H /I /Rect [ 163.5617 404.7496 277.1147 413.9071 ] >> endobj 20 0 obj << /Type /Action /S /URI /URI (https://blogs.sun.ac.za/it/en/) >> endobj 21 0 obj << /Type /Annot /Subtype /Link /A 22 0 R /Border [0 0 0] /H /I /Rect [ 350.6447 404.7496 377.6447 413.9071 ] >> endobj 22 0 obj << /Type /Action /S /URI /URI (https://twitter.com/ITStellenUni) >> endobj xref 0 23 0000000000 65535 f 0000000008 00000 n 0000000073 00000 n 0000000119 00000 n 0000000339 00000 n 0000000376 00000 n 0000000511 00000 n 0000000600 00000 n 0000007105 00000 n 0000007217 00000 n 0000007324 00000 n 0000007440 00000 n 0000007560 00000 n 0000007687 00000 n 0000007807 00000 n 0000007935 00000 n 0000008035 00000 n 0000035072 00000 n 0000035163 00000 n 0000039023 00000 n 0000039151 00000 n 0000039233 00000 n 0000039361 00000 n trailer << /Size 23 /Root 1 0 R /Info 5 0 R >> startxref 39445 %%EOF phishing « Informasietegnologie

  • Recent Posts

  • Categories

  • Archives

phishing

« Older Entries
Newer Entries »

Phishing attempt: “SARS eFiling Letter notification”

Thursday, January 31st, 2019

An email with the subject “SARS eFiling Letter Notification” was sent from a staff email to staff and students on campus. The email asks you to click on a link to download your SARS documents (See example below)

This is not a legitimate SARS email, but a phishing attempt from a compromised sun email account.

SARS will never ask you to provide any personal information by means of email. By clicking on links and providing your information, you give criminals access to your personal information and your accounts.

If you clicked on the link in this phishing email, immediately change your password on www.sun.ac.za/password. For enquiries contact the IT Service Desk by logging a request or calling 808 4367. More information on phishing is available on our blog and Twitter.

Click for a larger version.
Email

Tags: , ,
Posted in E-mail, phishing, Security | Comments Off on Phishing attempt: “SARS eFiling Letter notification”

Phishing attempt from sun email account

Wednesday, December 5th, 2018

If you receive an email from a sun email account with the subject “To All Faculty\Staff of Stellenbosch University“, asking you to click on a link to upgrade your webmail, please do not respond and provide your information (see example at the bottom of this post).

This is not a legitimate email notification from Information Technology and we will never ask you to give your personal information via an email link. The suspicious email is being sent from a compromised email account and is a clever phishing attempt.

When you click on links and provide your information on phishing emails, criminals will be able to gain access to your personal information. If you clicked on the link of this phishing email, immediately change your password on www.sun.ac.za/password.

For any enquiries please contact the IT Service Desk by logging a request or calling 808 4367. More information on phishing is available on our blog and Twitter.

Click for larger image

Email

Tags:
Posted in phishing, Security | Comments Off on Phishing attempt from sun email account

Phishing scams requesting quotes and notification about “new message”

Wednesday, November 21st, 2018

Phishing attacks on the university continue with this week’s “flavour” being a return of the old “Request For Quotation” scam. With this scam you might receive an email from a large corporation arrives asking for you to provide a quotation, with an attached PDF that you are asked to fill in and send back to the sender.

Why would an academic department secretary be getting an RFQ to supply industrial supplies like sewage pumps? Scammers often only want to steal information from their victims, and in the case of the Faculty of Health Sciences, the scam RFQ could change to supply something like medical supplies or equipment.

Remember the email may look very convincing, with known company letterheads, VAT certificates etc.

It is important not to respond to the sender or to open up the attachment. Often scammers just need a response so they can identify “live bait” and fine-tune their attack to a particular person.

Another phishing scam that appears to be coming back uses attention-getting subjects like “You have a new message” or “We’ve resolved your dispute” or “SARS refund pending” designed to get your attention. This particular one uses forged “Citibank” branding and informs you that a dispute has been resolved and you will be paid some money, but you are asked to open up a “document” to see the disputed transaction.

The danger is in the document which will be download if you click on the link. In this particular case, it is a document with embedded macros that will install malware on your computer to steal personal information. Normally macros in Microsoft Word are disabled by default, but if you have enabled them for legitimate reasons then there would be a danger to your computer if you attempt to open the attached document.

These phishing scams are sent out to many university email addresses at the same time, so you are not personally being targeted by the phishers. These attacks will continue in various forms, because there are still individuals who fall for these scams, making phishing attacks very profitable.

If you do receive mail like this then please report it to IT Cyber Security. Once you have reported the spam or phishing mail, you can delete it immediately. You can do this in two ways:

  1. By reporting it on the ICT Partner Portal. Go to https://servicedesk.sun.ac.za and select “Report phishing, spam and malware” right at the bottom of the list. Fill in your information and add the email as an attachment. Your request will automatically be logged on the system.
  2. By sending an email
    – Start up a new mail addressed to csirt@sun.ac.za. 
    – Use the Title “SPAM” (without quotes) in the Subject.
    – With this New Mail window open, drag the suspicious spam/phishing mail from your Inbox into the New Mail Window. It will attach the mail as an enclosure and a small icon with a light yellow envelope will appear in the attachments section of the – New Mail.
    – Send the mail.

[Article by David Wiles]

Email

Tags: ,
Posted in phishing, Security | Comments Off on Phishing scams requesting quotes and notification about “new message”

Cybersecurity Awareness month: Some statistics and common sense advice

Monday, November 5th, 2018

It’s November and Cybersecurity Awareness month is behind us. As a final signoff,  we would like to share a few statistics and give some common sense advice to help you spot phishing scams.

Surely South Africa is not sophisticated or advanced enough to be included in phishing attacks? According to Drew van Vuuren, CEO of 4Di Privaca, South Africa is the second most targeted country globally when it comes to phishing attacks.

The cost of phishing in South Africa amounted to approximately R4.2 billion in 2013 alone and 5% of phishing attacks globally occur in South Africa. It is not a matter of “if” the university is going to be a target, but “when”. Phishing attacks are not Information Technology’s concern, but should also be yours as a user of the internet. 

According to a 2016 survey by Symantec, over 30% of South African internet users share at least three pieces of personal information on their social media profiles which could be used to steal their identity. 

60% of the respondents admitted that they had no idea what their privacy settings were and who could see their personal information on sites like Facebook, Instagram, Twitter etc.

People often become victims of online fraud by using the same password or usernames on multiple sites, including social media sites and internet banking sites. According to Ofcom’s “Adults’ Media Use and Attitudes Report 2013” report, 55% of the poll respondents used the same password for most, if not all, websites.

Here are 10 common-sense tips to help you spot and prevent becoming a victim of a phishing scam:

1. Learn to identify suspected phishing emails

  • They duplicate the images and branding of a real company.
  • They copy the name of a company or an employee of the company.
  • They include sites that are visually similar or identical to a real business.
  • They promote gifts or threaten the closure of an existing account.

2. Check the source of information from incoming email

Your bank, Information Technology, or cell phone provider will never ask you to send your passwords or personal information by mail. Never respond to these questions, and if you have the slightest doubt, call your bank, IT or your cell phone provider directly for clarification.

3. Never go to your bank’s website by clicking on links in emails

Do not click on hyperlinks or attachments, as it will direct you to a fraudulent website. Type in the URL into your browser or use your own bookmarks or favourites if you want to go faster.

4. Beef up the security of your computer

Common sense and good judgement are as vital as keeping your computer protected with a good antivirus and anti-malware software to block this type of attack. In addition, you should always have the most recent update on your operating system and web browsers.

5. Enter your sensitive data on secure websites only

In order for a site to be ‘safe’, the address must begin with ‘https://’ and your browser should show a closed lock icon.

6. Periodically check your accounts

It never hurts to check your bank accounts periodically to be aware of any irregularities in your online transactions.

7. Phishing doesn’t only pertain to online banking

Most phishing attacks are against banks, but can also use any popular website to steal personal data such as eBay, Facebook, PayPal, etc. Even the university’s e-HR site was targeted in 2017.

8. Phishing is international

Phishing knows no boundaries and can reach you in any language. In general, they are poorly written or translated so this may be another indicator that something is wrong. However, don’t be convinced it’s legitimate if it’s in Afrikaans – phishers are getting clever and adapting.

9. Have the slightest doubt? Do not risk it.

The best way to prevent phishing is to consistently reject any email or news that asks you to provide confidential data. Delete these emails and call your bank to clarify any doubts.

10. Keep up to date and read about the evolution of malware

If you want to keep up to date with the latest malware attacks, recommendations or advice to avoid any danger on the network, subscribe to the Information Technology blog or follow them on Twitter. Put your local computer geek or the IT HelpDesk on the speed dial of your cell phone, and don’t be embarrassed or too proud to ask questions from those who are knowledgeable on this topic.

Keep safe out there.

Email

Tags:
Posted in phishing, Security, Tips | Comments Off on Cybersecurity Awareness month: Some statistics and common sense advice

Cybersecurity Awareness Month: Spear phishing

Tuesday, October 30th, 2018

In a previous article, we referred to “spear phishing“. Spear phishing attacks deliberately target the university instead of sending out general emails, hoping someone will respond. This approach is successful because scammers focus on typical staff and student activities and adapt their phishing emails accordingly.

Over the past two years, the university was targeted with a few large-scale spear phishing attacks resulting in student and staff accounts being compromised and in several instances, some of the victims suffered financial loss.

In April 2017 an e-mail was sent from “Stellenbosch Payroll” with the subject of “NOTIFICATION: Your 13.69% Salary Increase.” The bait of a 13.69% salary increase certainly attracted attention and was sent at a time when salary increases and performance bonuses were being granted.

Many people overlooked the lack of a personal salutation and the grammar and spelling mistakes. The lure of a 13.69% salary increase and possible sizable salary increase made them throw caution to the wind. The university branding also created a false sense of security. 

According to the email, staff had to download the two attached documents with information on the salary increase. University staff clicked on the links and was diverted to a forged website identical to the real login page of the University Human Resources division. The forged website address was not in the university domain but very few people would spot that detail. (see below)

Once on the site, they entered their usernames and passwords to view the documents explaining their so-called salary increase. The password did not work, but the scammers captured usernames and passwords and gained access to the real HR website using the stolen details and changed the victim’s banking account details so that their salary would be paid into the scammer’s own account. The person’s bank account details were also captured and could be for further exploitation. 

 

A second spear phishing attack occurred a year later in May 2018.

An email was sent from an already compromised UNISA account. The mail warned that the receiver’s email account was due to be deactivated and that they should click on a link to renew it. The Subject said “Dear SUN E-mail User (c) Copyright 2018 Stellenbosch University” and the signature was from the “2018 Email Microsoft Administrator”, which many saw as legitimate.

Clearly, the spear-phishing scammers researched their intended target and used words and other details like SUN, Stellenbosch University & IT HelpDesk that would increase its legitimacy.

The link took the victims to another forged website. This time it was a perfect copy of the University’s own “Single Sign-On” page students and staff use to access important University services, for example SUNLearn and the staff portal. (see below)

The website address was also not in the university domain, but  the rest of the details, such as the branding and the Afrikaans link,  looked convincing.

Once the victims entered their usernames and passwords, the scammers gained control over the user’s accounts and could send out further email messages from within the university to catch more victims.

What could we have done to spot and prevent these attacks?

Unfortunately, there is an institutional perception that Information Technology has to prevent and protect users against attacks. This is not true. Users of an institutional network or even private users have the responsibility to be aware of the dangers we face in cyberspace, to sensitize themselves to the warning signs, be informed and help Information Technology flagging suspicious e-mails by reporting them and not using weak or easily-guessable passwords.

Here are some common-sense checks:

  • Don’t trust display names. These can be anything a scammer wants them to be.
  • Check for fake email domains. These will often be slightly different versions of the real thing.
  • Look at the university logo and other images.  Are they commonly available on the internet?
  • Review links carefully by hovering over the link text (without clicking). A link that is different from the one in the link text is a sign that it is malicious.
  • Look for the sun.ac.za domain name in the link. If the domain is different it is probably a malicious link.
  • Look out for bad spelling and grammar, as this can be a tell-tale sign that it’s not a legitimate message.
  • Spear phishing emails and messages are highly focused and targeted.  The criminal will spend a lot of time compiling emails and website to look authentic.
  • If you are suspicious about an email don’t visit the site. Verify it first by checking with Information Technology if it’s legitimate.
  • Use strong passwords and never use the same password (especially if it is a weak one) on multiple sites.

In the final article for the Cybersecurity Awareness Month, we will share a few thoughts on how to increase your cybersecurity awareness and give a few tips and suggestions about what the university could do to fight and prevent these attacks.

Keep safe out there.

Email

Tags:
Posted in phishing, Security, Tips | Comments Off on Cybersecurity Awareness Month: Spear phishing

« Older Entries
Newer Entries »
 

© 2013-2024 Disclaimer: The views and opinions expressed in this page are strictly those of the page author(s) and content contributor(s). The contents of this page have not been reviewed or approved by Stellenbosch University.