%PDF-1.3 1 0 obj << /Type /Catalog /Outlines 2 0 R /Pages 3 0 R >> endobj 2 0 obj << /Type /Outlines /Count 0 >> endobj 3 0 obj << /Type /Pages /Kids [6 0 R ] /Count 1 /Resources << /ProcSet 4 0 R /Font << /F1 8 0 R /F2 9 0 R /F3 10 0 R /F4 11 0 R >> >> /MediaBox [0.000 0.000 612.000 792.000] >> endobj 4 0 obj [/PDF /Text ] endobj 5 0 obj << /Creator (DOMPDF) /CreationDate (D:20250717134812+00'00') /ModDate (D:20250717134812+00'00') /Title (Report 07-2025) >> endobj 6 0 obj << /Type /Page /Parent 3 0 R /Annots [ 12 0 R 14 0 R 16 0 R ] /Contents 7 0 R >> endobj 7 0 obj << /Length 3736 >> stream 0.702 0.800 0.816 rg 34.016 34.016 543.969 723.969 re f 1.000 1.000 1.000 rg 45.266 343.637 521.469 403.097 re f 0.773 0.773 0.773 RG 0.75 w 0 J [ ] 0 d 45.641 344.012 520.719 402.347 re S 0.773 0.773 0.773 rg 61.016 359.387 m 550.984 359.387 l 550.984 360.137 l 61.016 360.137 l f 0.200 0.200 0.200 rg BT 61.016 693.716 Td /F1 14.4 Tf [(COMPROMISED STUDENT ACCOUNT USED FOR PHISHING)] TJ ET 0.400 0.400 0.400 rg BT 61.016 664.909 Td /F2 9.0 Tf [(Posted on )] TJ ET BT 104.045 664.909 Td /F3 9.0 Tf [(January 01,1970)] TJ ET BT 173.588 664.909 Td /F2 9.0 Tf [( by )] TJ ET BT 188.096 664.909 Td /F3 9.0 Tf [(IT Communications)] TJ ET 0.153 0.153 0.153 rg BT 61.016 637.420 Td /F4 9.0 Tf [(Just because mail seems to come from a university address, doesn’t mean to say that it is legitimate.)] TJ ET BT 61.016 617.431 Td /F4 9.0 Tf [(The latest phishing scam making its rounds at the university is being sent from a compromised student account. The )] TJ ET BT 61.016 606.442 Td /F4 9.0 Tf [(subject line is all in capital letters and is meant to frighten you into clicking on a link and filling in your details. This is )] TJ ET BT 61.016 595.453 Td /F4 9.0 Tf [(probably how the student account that is now sending it was originally compromised.)] TJ ET BT 61.016 575.464 Td /F4 9.0 Tf [(This is a typical phishing scam. Do not respond or click on any of the links. Many thanks to all the observant students who )] TJ ET BT 61.016 564.475 Td /F4 9.0 Tf [(picked it up and pointed it out to us.)] TJ ET BT 61.016 544.486 Td /F4 9.0 Tf [(Below is an example of the mail \(with the dangerous bits removed\))] TJ ET 0.592 0.592 0.592 rg 0.592 0.592 0.592 RG 305.016 534.788 m 306.516 534.788 l 305.766 534.038 l 305.766 534.038 l f 1.000 1.000 1.000 rg 1.000 1.000 1.000 RG 305.016 532.538 m 306.516 532.538 l 305.766 533.288 l 305.766 533.288 l f 306.516 534.788 m 306.516 532.538 l 305.766 533.288 l 305.766 534.038 l f 0.592 0.592 0.592 rg 0.592 0.592 0.592 RG 305.016 534.788 m 305.016 532.538 l 305.766 533.288 l 305.766 534.038 l f 0.153 0.153 0.153 rg BT 61.016 514.747 Td /F4 9.0 Tf [( )] TJ ET BT 61.016 494.758 Td /F1 9.0 Tf [(From: )] TJ ET 0.373 0.169 0.255 rg BT 89.015 494.758 Td /F4 9.0 Tf [(Compromised, Student account <12345678@sun.ac.za>)] TJ ET 0.373 0.169 0.255 RG 0.18 w 0 J [ ] 0 d 89.015 493.607 m 315.770 493.607 l S 0.153 0.153 0.153 rg BT 61.016 483.769 Td /F1 9.0 Tf [(Sent: )] TJ ET BT 86.018 483.769 Td /F4 9.0 Tf [(Monday, 17 April 2017 12:19 PM)] TJ ET BT 61.016 472.780 Td /F1 9.0 Tf [(To: )] TJ ET 0.373 0.169 0.255 rg BT 77.513 472.780 Td /F4 9.0 Tf [(fake@email.address)] TJ ET 0.18 w 0 J [ ] 0 d 77.513 471.629 m 159.674 471.629 l S 0.153 0.153 0.153 rg BT 61.016 461.791 Td /F1 9.0 Tf [(Subject: )] TJ ET BT 99.023 461.791 Td /F4 9.0 Tf [(YOUR EMAIL ACCOUNT HAS BEEN COMPROMISED)] TJ ET BT 61.016 441.802 Td /F4 9.0 Tf [( )] TJ ET BT 61.016 421.813 Td /F4 9.0 Tf [(Certify Your email )] TJ ET 0.373 0.169 0.255 rg BT 135.032 421.813 Td /F1 9.0 Tf [(HERE)] TJ ET 0.18 w 0 J [ ] 0 d 135.032 420.383 m 160.034 420.383 l S 0.592 0.592 0.592 rg 0.592 0.592 0.592 RG 305.016 412.115 m 306.516 412.115 l 305.766 411.365 l 305.766 411.365 l f 1.000 1.000 1.000 rg 1.000 1.000 1.000 RG 305.016 409.865 m 306.516 409.865 l 305.766 410.615 l 305.766 410.615 l f 306.516 412.115 m 306.516 409.865 l 305.766 410.615 l 305.766 411.365 l f 0.592 0.592 0.592 rg 0.592 0.592 0.592 RG 305.016 412.115 m 305.016 409.865 l 305.766 410.615 l 305.766 411.365 l f 0.153 0.153 0.153 rg BT 432.949 392.074 Td /F4 9.0 Tf [([ARTICLE BY DAVID WILES])] TJ ET 0.400 0.400 0.400 rg BT 61.016 373.585 Td /F2 9.0 Tf [(Posted in:Security | Tagged:Phishing,Security,Spam | With 0 comments)] TJ ET endstream endobj 8 0 obj << /Type /Font /Subtype /Type1 /Name /F1 /BaseFont /Helvetica-Bold /Encoding /WinAnsiEncoding >> endobj 9 0 obj << /Type /Font /Subtype /Type1 /Name /F2 /BaseFont /Helvetica-Oblique /Encoding /WinAnsiEncoding >> endobj 10 0 obj << /Type /Font /Subtype /Type1 /Name /F3 /BaseFont /Helvetica-BoldOblique /Encoding /WinAnsiEncoding >> endobj 11 0 obj << /Type /Font /Subtype /Type1 /Name /F4 /BaseFont /Helvetica /Encoding /WinAnsiEncoding >> endobj 12 0 obj << /Type /Annot /Subtype /Link /A 13 0 R /Border [0 0 0] /H /I /Rect [ 89.0147 493.9252 315.7697 503.0827 ] >> endobj 13 0 obj << /Type /Action /S /URI /URI (mailto:noreply@sun.ac.za) >> endobj 14 0 obj << /Type /Annot /Subtype /Link /A 15 0 R /Border [0 0 0] /H /I /Rect [ 77.5127 471.9472 159.6737 481.1047 ] >> endobj 15 0 obj << /Type /Action /S /URI /URI (mailto:noreply@sun.ac.za) >> endobj 16 0 obj << /Type /Annot /Subtype /Link /A 17 0 R /Border [0 0 0] /H /I /Rect [ 135.0317 420.9802 160.0337 430.1377 ] >> endobj 17 0 obj << /Type /Action /S /URI /URI (http://blogs.sun.ac.za/it/en/2016/10/how-to-recognise-a-phishing-e-mail/) >> endobj xref 0 18 0000000000 65535 f 0000000008 00000 n 0000000073 00000 n 0000000119 00000 n 0000000305 00000 n 0000000334 00000 n 0000000472 00000 n 0000000568 00000 n 0000004356 00000 n 0000004468 00000 n 0000004583 00000 n 0000004703 00000 n 0000004811 00000 n 0000004938 00000 n 0000005014 00000 n 0000005141 00000 n 0000005217 00000 n 0000005345 00000 n trailer << /Size 18 /Root 1 0 R /Info 5 0 R >> startxref 5469 %%EOF security « Informasietegnologie
Language:
SEARCH

  • Recent Posts

  • Categories

  • Archives

security

« Older Entries
Newer Entries »

Keep your cell phone secure

Friday, February 22nd, 2013

These days your smartphone is just as powerful as your laptop or pc a few years back. You store more personal and work information on your device and it’s always connected to the internet.

It’s exactly this convenience that puts you as a smartphone user at risk. Cooltech, iAfrica’s tech section, has a few ideas to minimise risk and ensure your personal information stays, well, personal and safe from malware and cybercriminals and other security risks.

Set up a password

Your first line of defense is to simply set up a password on your phone. Most cellphone providers allow you to type in a pin number each time you switch on your phone or after a period on inactivity.

Install security software

Since smart phones are no longer just for storing phone numbers and sms’s, but also bankdetails, they’re also an easy and perfect target for cybercriminals.

Consider installing anti virus software to protect your device against malware. F-Secure, Norton and other large security software vendors each have their own version for the main smartphone platforms.

Activate the remote wipe function

The biggest risk is the the theft or loss of your device. Rather than worry about a stranger snooping through your information, activate the remore wipe function.

This function will allow you, by means of an internet connection, to delete your photos, business contacts and e-mails when you suspect you might not be able to recover your phone.

Some manufacturers like BlackBerry and Apple offer the remote wipe function and location applications for their latest devices, while third party applications are available for other platforms.

Download safe and approved applications

The temptation to download a free, unofficial application on your iPhone or Android instead of purchasing one through iStore, is big, but do you really want to take the risk and expose your phone to malware.  Rather stick legitimate sources where proper quality control is done and applications don’t come with added nasty surprises.

Backup your data

As we’ve already established, a substantial amount of your life is on your smart phone – e-mail, phone contacts, documents, photos and much more. Just as you back up your computer (hopefully!), do the same with your cell phone so you won’t lose everything if you lose your phone.  Many smartphones allow you to make a thorough backup from your device to your pc or at least sync the most important data and settings to an online service.  Many smartphones allow you to make a comprehensive backup of your device to a computer, or to sync your most critical data and settings to an online service.

Email

Tags: ,
Posted in Communication, Connectivity, Security | 2 Comments »

Tygerberg users victim of phone scam

Friday, February 22nd, 2013

A new phone scam on Tygerberg attracted our attention this week and the possibility exists that it might spread other campusses. Please be aware of this scam that has left some victims hundreds of rands out of pocket.

Scammers are using several well-known brands, including Microsoft, to fool people into believing that something is wrong with their computers, and now they seem to be phoning university numbers.

The scam typically works as follows:

Somebody, claiming to be a representative of Microsoft, one of its brands or a third party contracted by Microsoft, tells the victim they are checking into a computer problem, infection or virus that has been detected by Microsoft. They will trick you into installing malicious software that could capture sensitive data, such as online banking user names and passwords. They might also then charge them for the removal of this software.

The victim is directed to help and connect their computer  to a website that then allows the scammers to take control of the computer remotely, adjusting the settings and leaving the computer vulnerable.

These callers claim to be from Windows Helpdesk, Windows Service Centre, Microsoft Tech Support, Microsoft Support, Windows Technical Department Support Group and even Microsoft’s Research and Development Team.

(INFORMATION BY DAVID WILES)

Email

Tags:
Posted in Security | Comments Off on Tygerberg users victim of phone scam

Twitter targeted by cybercriminals

Friday, February 22nd, 2013

As no doubt some of you are aware, within the last few weeks, the New York Times and Wall Street Journal in the United States have had breaches of their systems by Chinese-based hackers. Also recently Twitter reported that approximately 250 000 Twitter accounts were compromised by the same attackers. 

The attackers may have gained access to some user information, including usernames, email addresses, and encrypted passwords.

As a precautionary security measure, Twitter has reset passwords for these accounts. If your account was one of them, you will have recently received (or will shortly) an email from Twitter at the address associated with your Twitter account, notifying you that you will need to create a new password. Your old password will not work when you try to log in to Twitter. 

No doubt, Facebook will also be the target of this new Chinese-based attack next, as users often use the same password for both Twitter and Facebook. 

This attack was not the work of amateurs, and experts not believe this was an isolated incident. The attack is extremely sophisticated, and it is possible that other companies and organizations have also been recently similarly attacked. 

However it is very important that you do NOT access Twitter by clicking on ANY links contained in ANY e-mail sent to you Twitter (or by an e-mail looking like it comes from Twitter), as often hackers forge e-mail to make it look like it is from Twitter to trick you into divulging your password to the hackers. 

Instead it is always best, if you get such a mail from Twitter, to go directly to your Internet Browser and to type in the Twitter address directly to reset your password.

(INFORMATION SUPPLIED BY DAVID WILES)

* Zendesk also announced today that they have been hacked and three of their social clients, Pinterest, Twitter and Tumblr were affected. More on this.

Email

Tags: ,
Posted in Security | Comments Off on Twitter targeted by cybercriminals

New phishing e-mail causes confusion

Tuesday, February 19th, 2013

If you receive an email claiming to be from the SU IT department (see example below), do not open it or click on any of the links or reply to the e-mail. The e-mail attempts to gain access to the university accounts using the sun.ac.za details that looks initially genuine.

This is a phishing email attempting to acquire your passwords and other information. Immediately delete the email and do not reply to it.

There are just a few of the obvious signs that this is a phishing e-mail designed to steal personal information from you. You should never respond to mail like this both at work and at home, and you should never reveal any personal details especially your username and password in an e-mail form or on a webpage that you access via an e-mail link.

IT will never request your username, password or other personal information by means of an e-mail.

  1. If it were a genuine message from Information Technology, there would be branding, and it would be in English and Afrikaans. This one has nothing like that in this e-mail.
  2. The grammar is particularly bad. (what is a “strong virus”?)
  3. We are university personnel and students or “users” we are not “subscribers”.
  4. Why would you have to enter your password in readable form in an insecure e-mail?
  5. There is no support@sun.ac.za e-mail address.
  6. If you do reply, you’ll see the default reply address is an unknown one and not a sun address.
  7. The links and the actual sender/server originate in Korea.

More information on phishing.

 

EXAMPLE OF “PHISHING” E-MAIL:

Dear sun.ac.za subscriber,

We are currently carrying out an upgrade on our system due to the fact that it has come to our notice that one or more of our subscribers are introducing a very strong virus into our system and it is affecting our network.We are trying to find out the specific person.

For this reason all subscribers are to provide their USER NAME AND PASSWORD for us to verify and have them cleared against this virus. Failure to comply will lead to the termination of your Account in the next 48 hours.

Information Required:
* User name: (…………….. )(Compulsory)
* Password: (……………………..)(Compulsory)
* Date of Birth: (……………………..) (optional)
* Country Or Territory: (………………) (optional)

http://webmail.sun.ac.za/owa/auth/logon.aspx

Hoping to serve you better.
Sincerely, Universiteit Stellenbosch University
********************************************************
This is an Administrative Message from sun.ac.za server. It is not spam.
From time to time, sun.ac.za server will send you such messages in
order to communicate important information about your subscription. *********************************************************

 

 

 

 

 

Email

Tags: ,
Posted in E-mail, Security | Comments Off on New phishing e-mail causes confusion

Vaccinate your pc

Friday, November 9th, 2012

Every year you have to go to your doctor to get an anti-flu injection. You have to get one every year because the influenza virus mutates and adapts every year into a new strain. Computer viruses are exactly the same! Here are a few handy tips and hints to ensure the whole process is as painless as possible. But first things first –

  • Use an AntiVirus Software – It is very important that your computer has an antivirus software running on your machine. By having an antivirus program running, files and emails will be scanned as you use them, download them, or open them. If a virus is found in one of the items you are about to use, the antivirus program will stop you from being able to run that program and therefore infect yourself.

See this link for a listing of some online/stand-alone antivirus programs: Virus, Spyware, and Malware Protection and Removal Resources

  • Update your AntiVirus Software –  There is no point running an antivirus program if you do not make sure it has all the latest updates available to it. If you do not update the software, it will not know about any new viruses, trojans, worms, etc that have been released into the wild since you installed the program. Then if a new infection appears in your computer, the antivirus program will not know that it is bad, and not alert you when you run it and become infected. Therefore it is imperative that you update your Antivirus software at least once a week (Even more if you wish) so that you are protected from all the latest threats. If you are lucky then you will have an anti-virus product that will update itself automatically via the internet, but never blindly trust this. A large number of the more virulent viruses and trojans can deactivate your anti-virus software’s updating functions.
  • Install an Anti-Spyware Program – Just as you installed and use an antivirus program, it is essential these days to use a Spyware protection and removal program. These programs can be used to scan your computer for spyware, dialers, browser hijackers, and other programs that are malicious in nature. The 4 program that I recommend are SuperAnti-Spyware, Spybot – Search and Destroy, andLavasoft’s Ad-Aware, and Windows Defender.A tutorial on using some of these programs can be found below:

Using Spybot – Search & Destroy to remove Spyware , Malware, and Hijackers

Using Ad-aware to remove Spyware, Malware, & Hijackers from Your Computer

  • Commercial Spyware Removal/Protection Programs – If you feel more comfortable installing a commercial Spyware removal program then I recommend WebRoot’s Spysweeper or Lavasoft’s Ad-Aware Professional. Both are fair products and a worthy addition to the arsenal of software protecting your computer.

Spysweeper Product Information

  • Occasionally Run Online Virus Scans – Unfortunately not all antivirus programs are created equal. Each program may find infections that other antivirus programs do not and vice-versa. It is therefore recommended that you occasionally run some free online antivirus scanners to make sure that you are not infected with items that your particular antivirus program does not know how to find. Three online scanners that we recommend are:

Every once in a while, maybe once every 2 weeks, run one or both of these scanners to see if they find anything that may have been missed by your locally installed antivirus software. Believe me, you will not regret it!

ARTICLE BY David Wiles, GERGA

For regular updates on the latest spam, malware and ransomware threats, please check or blog regularly.

Email

Tags: , , , ,
Posted in General, Security | Comments Off on Vaccinate your pc

« Older Entries
Newer Entries »
 

© 2013-2025 Disclaimer: The views and opinions expressed in this page are strictly those of the page author(s) and content contributor(s). The contents of this page have not been reviewed or approved by Stellenbosch University.