%PDF-1.3 1 0 obj << /Type /Catalog /Outlines 2 0 R /Pages 3 0 R >> endobj 2 0 obj << /Type /Outlines /Count 0 >> endobj 3 0 obj << /Type /Pages /Kids [6 0 R ] /Count 1 /Resources << /ProcSet 4 0 R /Font << /F1 8 0 R /F2 9 0 R /F3 10 0 R /F4 11 0 R >> /XObject << /I1 28 0 R >> >> /MediaBox [0.000 0.000 612.000 792.000] >> endobj 4 0 obj [/PDF /Text /ImageC ] endobj 5 0 obj << /Creator (DOMPDF) /CreationDate (D:20240926224935+00'00') /ModDate (D:20240926224935+00'00') /Title (Report 09-2024) >> endobj 6 0 obj << /Type /Page /Parent 3 0 R /Annots [ 12 0 R 14 0 R 16 0 R 18 0 R 20 0 R 22 0 R 24 0 R 26 0 R ] /Contents 7 0 R >> endobj 7 0 obj << /Length 7420 >> stream 0.702 0.800 0.816 rg 34.016 34.016 543.969 723.969 re f 1.000 1.000 1.000 rg 45.266 162.458 521.469 584.276 re f 0.773 0.773 0.773 RG 0.75 w 0 J [ ] 0 d 45.641 162.833 520.719 583.526 re S 0.773 0.773 0.773 rg 61.016 178.208 m 550.984 178.208 l 550.984 178.958 l 61.016 178.958 l f 0.200 0.200 0.200 rg BT 61.016 693.716 Td /F1 14.4 Tf [(WHAT IS THE JUNK E-MAIL FOLDER?)] TJ ET 0.400 0.400 0.400 rg BT 61.016 664.909 Td /F2 9.0 Tf [(Posted on )] TJ ET BT 104.045 664.909 Td /F3 9.0 Tf [(January 01,1970)] TJ ET BT 173.588 664.909 Td /F2 9.0 Tf [( by )] TJ ET BT 188.096 664.909 Td /F3 9.0 Tf [(IT Communications)] TJ ET 0.153 0.153 0.153 rg BT 61.016 637.420 Td /F4 9.0 Tf [(Just before the weekend, we became aware of a particularly intrusive and persistent phishing attack. )] TJ ET 0.373 0.169 0.255 rg BT 463.199 637.420 Td /F4 9.0 Tf [(An e-mail, seemingly )] TJ ET 0.373 0.169 0.255 RG 0.18 w 0 J [ ] 0 d 463.199 636.269 m 549.221 636.269 l S BT 61.016 626.431 Td /F4 9.0 Tf [(from Standard Bank)] TJ ET 0.18 w 0 J [ ] 0 d 61.016 625.280 m 141.053 625.280 l S 0.153 0.153 0.153 rg BT 141.053 626.431 Td /F4 9.0 Tf [(, was distributed from a staff member's e-mail account after being hacked.)] TJ ET BT 61.016 606.442 Td /F4 9.0 Tf [(In order to prevent the attack from causing more damage to other e-mail users, stricter spam filter measures had to be )] TJ ET BT 61.016 595.453 Td /F4 9.0 Tf [(implemented over the weekend. After this time period, the filter was reset to its default.)] TJ ET BT 61.016 575.464 Td /F4 9.0 Tf [(These measures caused some e-mails that weren't spam, to divert to Outlook's Junk Mail folder. They were not deleted, )] TJ ET BT 61.016 564.475 Td /F4 9.0 Tf [(but they weren't visible in inboxes.)] TJ ET BT 61.016 544.486 Td /F4 9.0 Tf [(Even though it is advisable that you occasionally check your Junk mail folder, it seems some staff aren't familiar with the )] TJ ET BT 61.016 533.497 Td /F4 9.0 Tf [(folder or it's function.)] TJ ET BT 61.016 513.508 Td /F4 9.0 Tf [(The Microsoft Outlook Junk E-mail Filter helps reduce unwanted email messages in your )] TJ ET BT 416.138 513.508 Td /F1 9.0 Tf [(Inbox)] TJ ET BT 440.141 513.508 Td /F4 9.0 Tf [(. Junk e-mail, also known )] TJ ET BT 61.016 502.519 Td /F4 9.0 Tf [(as spam, is moved by the filter away to the )] TJ ET BT 233.591 502.519 Td /F1 9.0 Tf [(Junk E-mail )] TJ ET BT 286.610 502.519 Td /F1 9.0 Tf [(folder.)] TJ ET BT 61.016 480.730 Td /F1 9.0 Tf [(How the Junk E-mail filter works)] TJ ET BT 61.016 460.741 Td /F4 9.0 Tf [(The Junk E-mail Filter evaluates each incoming message to assess whether it might be spam, based on several factors. )] TJ ET BT 61.016 449.752 Td /F4 9.0 Tf [(These can include the time when the message was sent and the content of the message. By default, the Junk E-mail Filter )] TJ ET BT 61.016 438.763 Td /F4 9.0 Tf [(is turned on and the protection level is set to )] TJ ET BT 239.612 438.763 Td /F1 9.0 Tf [(Low)] TJ ET BT 257.612 438.763 Td /F4 9.0 Tf [(. This level catches only the most obvious spam. You can make the filter )] TJ ET BT 61.016 427.774 Td /F4 9.0 Tf [(more aggressive by )] TJ ET 0.373 0.169 0.255 rg BT 142.043 427.774 Td /F4 9.0 Tf [(changing the level of protection)] TJ ET 0.18 w 0 J [ ] 0 d 142.043 426.623 m 266.612 426.623 l S 0.153 0.153 0.153 rg BT 266.612 427.774 Td /F4 9.0 Tf [( that it provides.)] TJ ET BT 61.016 407.785 Td /F4 9.0 Tf [(You can adjust the Junk E-mail Filter settings in the )] TJ ET BT 268.106 407.785 Td /F1 9.0 Tf [(Junk E-mail Options)] TJ ET BT 355.127 407.785 Td /F4 9.0 Tf [( dialogue box.)] TJ ET 0.153 0.153 0.153 RG 85.866 390.612 m 85.866 391.024 85.696 391.434 85.404 391.726 c 85.113 392.017 84.703 392.187 84.291 392.187 c 83.878 392.187 83.469 392.017 83.177 391.726 c 82.885 391.434 82.716 391.024 82.716 390.612 c 82.716 390.200 82.885 389.790 83.177 389.498 c 83.469 389.207 83.878 389.037 84.291 389.037 c 84.703 389.037 85.113 389.207 85.404 389.498 c 85.696 389.790 85.866 390.200 85.866 390.612 c f BT 91.016 378.796 Td /F4 9.0 Tf [(On the )] TJ ET BT 120.536 378.796 Td /F1 9.0 Tf [(Home)] TJ ET BT 145.538 378.796 Td /F4 9.0 Tf [( tab, in the )] TJ ET BT 190.070 378.796 Td /F1 9.0 Tf [(Delete)] TJ ET BT 217.079 378.796 Td /F4 9.0 Tf [( group, click )] TJ ET BT 267.596 378.796 Td /F1 9.0 Tf [(Junk)] TJ ET BT 288.602 378.796 Td /F4 9.0 Tf [(, and then click )] TJ ET BT 351.134 378.796 Td /F1 9.0 Tf [(Junk E-mail Options)] TJ ET BT 438.155 378.796 Td /F4 9.0 Tf [(.)] TJ ET BT 61.016 351.307 Td /F4 9.0 Tf [(Any message that is suspected to be junk is moved to the )] TJ ET BT 293.135 351.307 Td /F1 9.0 Tf [(Junk E-mail)] TJ ET BT 343.652 351.307 Td /F4 9.0 Tf [( folder. We recommend that you periodically review )] TJ ET BT 61.016 340.318 Td /F4 9.0 Tf [(the messages in the )] TJ ET BT 144.059 340.318 Td /F1 9.0 Tf [(Junk E-mail)] TJ ET BT 194.576 340.318 Td /F4 9.0 Tf [( folder to check for legitimate messages that were incorrectly classified as junk. If you )] TJ ET BT 61.016 329.329 Td /F4 9.0 Tf [(find a message that isnt junk, drag them back to the )] TJ ET BT 271.625 329.329 Td /F1 9.0 Tf [(Inbox)] TJ ET BT 295.628 329.329 Td /F4 9.0 Tf [( or to any folder. You can also mark the item as not junk by )] TJ ET BT 61.016 318.340 Td /F4 9.0 Tf [(doing the following:)] TJ ET 85.866 301.167 m 85.866 301.579 85.696 301.989 85.404 302.281 c 85.113 302.572 84.703 302.742 84.291 302.742 c 83.878 302.742 83.469 302.572 83.177 302.281 c 82.885 301.989 82.716 301.579 82.716 301.167 c 82.716 300.755 82.885 300.345 83.177 300.053 c 83.469 299.762 83.878 299.592 84.291 299.592 c 84.703 299.592 85.113 299.762 85.404 300.053 c 85.696 300.345 85.866 300.755 85.866 301.167 c f BT 91.016 289.351 Td /F4 9.0 Tf [(On the )] TJ ET BT 120.536 289.351 Td /F1 9.0 Tf [(Home)] TJ ET BT 145.538 289.351 Td /F4 9.0 Tf [( tab, in the )] TJ ET BT 190.070 289.351 Td /F1 9.0 Tf [(Delete)] TJ ET BT 217.079 289.351 Td /F4 9.0 Tf [( group, click )] TJ ET BT 267.596 289.351 Td /F1 9.0 Tf [(Junk)] TJ ET BT 288.602 289.351 Td /F4 9.0 Tf [(, and then click )] TJ ET BT 351.134 289.351 Td /F1 9.0 Tf [(Not Junk)] TJ ET BT 389.636 289.351 Td /F4 9.0 Tf [(.)] TJ ET BT 61.016 261.862 Td /F4 9.0 Tf [(More detailed instructions can be found on the )] TJ ET 0.373 0.169 0.255 rg BT 248.117 261.862 Td /F4 9.0 Tf [(Office365 Knowledgebase)] TJ ET 0.373 0.169 0.255 RG 0.18 w 0 J [ ] 0 d 248.117 260.711 m 353.174 260.711 l S 0.153 0.153 0.153 rg BT 353.174 261.862 Td /F4 9.0 Tf [(and on )] TJ ET 0.373 0.169 0.255 rg BT 385.700 261.862 Td /F4 9.0 Tf [(Microsoft's website.)] TJ ET 0.18 w 0 J [ ] 0 d 385.700 260.711 m 463.937 260.711 l S 0.153 0.153 0.153 rg BT 61.016 241.873 Td /F4 9.0 Tf [(We apologise for the inconvenience and confusion caused by these emergency measures. If you have any questions, )] TJ ET BT 61.016 230.884 Td /F4 9.0 Tf [(please contact the IT Service Desk at 021 808 4367 or )] TJ ET 0.373 0.169 0.255 rg BT 280.634 230.884 Td /F4 9.0 Tf [(help@sun.ac.za)] TJ ET 0.18 w 0 J [ ] 0 d 280.634 229.733 m 345.299 229.733 l S 0.153 0.153 0.153 rg BT 345.299 230.884 Td /F4 9.0 Tf [(.)] TJ ET BT 61.016 210.895 Td /F4 9.0 Tf [()] TJ ET 0.400 0.400 0.400 rg BT 61.016 192.406 Td /F2 9.0 Tf [(Posted in:E-mail,Security | Tagged:Email,Junk Mail,Spam | With 0 comments)] TJ ET q 225.000 0 0 150.000 61.016 339.521 cm /I1 Do Q endstream endobj 8 0 obj << /Type /Font /Subtype /Type1 /Name /F1 /BaseFont /Helvetica-Bold /Encoding /WinAnsiEncoding >> endobj 9 0 obj << /Type /Font /Subtype /Type1 /Name /F2 /BaseFont /Helvetica-Oblique /Encoding /WinAnsiEncoding >> endobj 10 0 obj << /Type /Font /Subtype /Type1 /Name /F3 /BaseFont /Helvetica-BoldOblique /Encoding /WinAnsiEncoding >> endobj 11 0 obj << /Type /Font /Subtype /Type1 /Name /F4 /BaseFont /Helvetica /Encoding /WinAnsiEncoding >> endobj 12 0 obj << /Type /Annot /Subtype /Link /A 13 0 R /Border [0 0 0] /H /I /Rect [ 463.1987 636.5872 549.2207 645.7447 ] >> endobj 13 0 obj << /Type /Action /S /URI /URI (http://blogs.sun.ac.za/it/en/2017/02/warning-about-standard-bank-phishing-scam-being-sent-from-university-e-mail-address/) >> endobj 14 0 obj << /Type /Annot /Subtype /Link /A 15 0 R /Border [0 0 0] /H /I /Rect [ 61.0157 625.5982 141.0527 634.7557 ] >> endobj 15 0 obj << /Type /Action /S /URI /URI (http://blogs.sun.ac.za/it/en/2017/02/warning-about-standard-bank-phishing-scam-being-sent-from-university-e-mail-address/) >> endobj 16 0 obj << /Type /Annot /Subtype /Link /A 17 0 R /Border [0 0 0] /H /I /Rect [ 314.1137 511.3099 314.1137 511.3099 ] >> endobj 17 0 obj << /Type /Action /S /URI /URI (http://blogs.sun.ac.za/it/2017/02/junk-e-mail-folder/spam-mail/) >> endobj 18 0 obj << /Type /Annot /Subtype /Link /A 19 0 R /Border [0 0 0] /H /I /Rect [ 61.0157 491.1634 61.0157 500.3209 ] >> endobj 19 0 obj << /Type /Action /S /URI /URI (http://blogs.sun.ac.za/it/2017/02/junk-e-mail-folder/spam-mail/) >> endobj 20 0 obj << /Type /Annot /Subtype /Link /A 21 0 R /Border [0 0 0] /H /I /Rect [ 142.0427 426.9412 266.6117 436.0987 ] >> endobj 21 0 obj << /Type /Action /S /URI /URI (https://support.office.com/en-us/article/changing-the-level-of-protection-e89c12d8-9d61-4320-8c57-d982c8d52f6b) >> endobj 22 0 obj << /Type /Annot /Subtype /Link /A 23 0 R /Border [0 0 0] /H /I /Rect [ 248.1167 261.0292 353.1737 270.1867 ] >> endobj 23 0 obj << /Type /Action /S /URI /URI (https://kb.wisc.edu/office365/page.php?id=31901) >> endobj 24 0 obj << /Type /Annot /Subtype /Link /A 25 0 R /Border [0 0 0] /H /I /Rect [ 385.6997 261.0292 463.9367 270.1867 ] >> endobj 25 0 obj << /Type /Action /S /URI /URI (https://support.office.com/en-us/article/Video-Block-unwanted-mail-a3cda7e7-03ab-4188-9a9c-0f05e6a41e75) >> endobj 26 0 obj << /Type /Annot /Subtype /Link /A 27 0 R /Border [0 0 0] /H /I /Rect [ 280.6337 230.0512 345.2987 239.2087 ] >> endobj 27 0 obj << /Type /Action /S /URI /URI (mailto:help@sun.ac.za) >> endobj 28 0 obj << /Type /XObject /Subtype /Image /Width 300 /Height 200 /ColorSpace /DeviceRGB /Filter /DCTDecode /BitsPerComponent 8 /Length 19179>> stream JFIF;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82 C    !'"#%%%),($+!$%$C   $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$," }!1AQa"q2#BR$3br %&'()*456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz w!1AQaq"2B #3Rbr $4%&'()*56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz ?1srq094 `cGqt㌌wR:CϟԦs:?W&Er:8_$s[R5ײmׇ1w?AYr=+m"KyRQ{럮8*k m OsӎO竅VJs48D<=U֤Ӿqc9>e:|ۯʸPF0Qn2^k)Fcp~lu#ꞥjWb:u |UN7z$J9MYׂ%H#q/M {ya $,9m; @^@6 f=gJ}L)'=zcvH=,y;k$;hdGRb@s>n*VX"kRtݿ\k:M߆n4@!7 $q3l'/-*ƈlD]t@ލN I8OZC⻻}+KӮ j!-F m2ݥ;F|A-`>pq[o>{c{ii{gxKL4ȍݪ+}VY9[g)wKv^GOP91ǧtApqJ[h9 c1r1rqG7|OwSc9qIc82pqY:45䉦ct|m/PcGv^|Ou;@m'z yxj+Mn.413A;@2 <0ǎ+ͼM[*inEi#k>@78b2ccս&x|-ax{PzWIvpgvn\ɮ}HdZmլ:\{gab9 cs GF#G@?.ʷyiAe&Ze{mΑHN t^2R98#?u }2q9A4 4Î`3u^iA :O 1\x=q >J`=Yzι >8q99ǏҀ$ݷ$S4W6avwepFWo#W߷'({y<G8OP{=9:?^( }S= Q8 6xzy#ҝAOF> x*Gs꣊p-> $*-s2KЀqU wni ;'^>)Q9qxo*0x$#_O9n239crvҎ|瞝yo& %Hդn  z$v-1##Knsǟ/[um)M5ñ9~췱;$W,cr&1Oq 1OQ?鵾oGGxQ ,a-3iBQ-w7^CɮR_M?gyM`*_%n-ͩiz0j6q'I2=z{ 3}u|z?c$%=~q z6;$goact^(\ @;t흝y0J?tzjp`Olr?쏙iA9'8{zzp( ABsH3lBgrk I~LIcBU$Oj'AsJ5.!d\TvtJ)7eߪ_aN>"Hۚvq܁Ԁ?*d O 9-sxZ䄜Gr81铏Nw :Qz}1s t~S?tAe¶A>)nݜ듟^R){)Ē[cGo8VHz}zpUGA ~ĦE<:t9Z|߅ɵ롕sЎ89-N'<9'=}3# N#ןS( >p}ߌz`pX*:?ϰc`d :1ߞ?O A~=y@^9c9#'&%ƇoDNcl0piznF[xb'zKhU^x^89xZC!!cr{!i;;YK-p҂7z⳵L4 >8oW$o:0"/dcYڱʰ6xx'03tգ݇©w~i1Cyns*6<|6Z喵$,"o>Y$ A^oqMnY +.S̴ MAm۽!XK+gv u`NVs囥လ"I'8;:տicme-Ē;HDH'$I%85cnGԐ29Ӯ{`s _SӭtX㷷mHp1AϾA~\=z?5.8#09O|``sWӭ+h#H*~'N>jMǜncsoxv;5-m铁Fk3@}GJƉ$"@9 vtM;P6o+NK]mu71XX`>7ׯ˯4>||ヸoqKFI)Fv{vl<Ү1 ]6gg}cfH ==uL>@6vNh(1/uyW8мmv~jק@ B;T>Nv}qryk/.AuϷx"sXKKLs\#r3g+_Kե쳑ى=;oV5U{++[+=ӍpN <8?JՆhbIQĉ*0<0=9QW;p?B]tȎ\o=߾ޕ2w2~.7ji>|u㰹lOq9[D R<4j$Ni&1]Ntum`dq#=<湗w:Tբ!X`giG]mo6mZtϝ dy2@S*=+S汾O*٢U >*#,v @m`g/)o:9YGO_.ϿݯWMe[D/*BRrߡ?w5W|7xkKͶY$E k'p2@9spIGUIy6ig+_r:s0GJ 9 _Bq07BHc?O֖6na1=rx#的hqFe}#sf:ko16mH=q?ǰ&y}>yxȥ9g1ciʽHC=g(4 8aNsOɷRj{69㎣jpH#~;u^is$>kwg={C]O@M~cs Ƿ[ߦM9F@ :s?2E;5^y'}~#xP=p9}AM&9ϯzugӞ$"H#d{t8ÜԵ-%x 3I!ڑc6x JǞצ;ԌwM%SP8?qңYN{BeHRQ_@|q^ki,g pkt*vm3~ 5d*M= *eݙ:^+}_t%&@#x<\|G Hu j\UPF@f8$jw:VkU9m^n!l H ixSAap4?x s]I_Mu漻5S_מoZ9ɃtqZ;V1i:ˤ٬c[e2ܕ 6 ?.G5i]jv FzxUn?^o׿Q~֛_܋@ =xqNtHÞ؟?>9!\q\. xWXh@q)]՗zwN߈\þ~DrD0sN~c}jӼQiPѭ&BrxzufZT sزIQsNNۯE(l]G#h},"Xrj$gA7זTڄ1n JsX ׊tguwuyYn\ԝWe u[6cg'7;-1OVp2@7?ӶyHr}>|S1Ѻ9q0rBxӓ[i#Ƕ;c8:M+svYtni&43ؑ?4wǞ_O }qO4/ǿ)i g#84r}><^2?tC}4 mۯ^\]Ǩ>zr?Nv [n5s,=zXz41dۻ럮r;ܠW=0F~TZӷZn z:\}@"8QH==zއOAֿ&?/&`??מ)=G϶;c[㻊Xŝ~RܝG?lMO"G\{Os\}~f w+%S!ӱ'CǭsbJq5f&#+\8oOd%]^hމEw+Ԟ?һ;_j+?rVu8 !EwՏ\L.y{#|F/*Z8:cs緭8ӎz}{8?Ėّ9ʗ (YA}ϥ\Ԡ+ |lg#'i^dxK+j]˂fL5Gu ׃g4ַ44i_'^/ԼQXϮiPVڥZI}JU`: z',qDX2 8 c5kJZiPDqPOrOsAW0\dq_8&<%Zlqvy'CZ3t^^*؁N?⡹8!AFT}/qS%!<9};WFs_NsK0Gۡyo랟NBT#cǞ(#w}-sԅsCq4=O.&I'}sӟ8⑗p7zc緶sTsϻw48ݞ?S^:gsǥ59*b7IЎ:\)An2O}FWwU߻sMm_>|JFx?7r:goQH%3<=8Jt<޾(gm(:H>TzM;OJ2yL)ּcvڜ=:ɰG{%̛ P:ޥ#'?ǵ4g.\76NGygJylwMn$)kd\S}}itSޭhS:z^#OS֮!\Ӱ%<I=O>嗓A*i 6޽qӏ󚹡U0w1ǓN3oʰח5ݏcR7kw}N~-Үn/Y!9K?iޥڍ4If20i9?,zR#iÎ?⽎f|"Wn[Ÿv8(_qO=*~?9_6Ʊy7~۞wj勭jSgfI՚"W(q\suoQXd O8??^k :k.ROlG!? =zSl[O5 gryr)kCk_taSB:Uk"yaY䟧JEt&źmi>ˎzS4;}kEH[Y ). }koEXZe0{i|t{>a.㎘)1 >__ҵ T&BI<88:sN N0Oc<㷧4mA篧F#{I;x=Zf>9=OC4КW Wk M.HbvI8x#hl\Ͽս)[m..3ߦ}71xOϷTniw_V{P"237ӿ>xzSHs8:}'??OJiޛzxDEs?6q/UDT=y>|sQ/l}y9`GUG<}"@)_s@?["7BC+Jkҵo;dn璿C~5ׯ5U+&dH)㊈t@q;piIP" F=BٶqOb+(h/(彸\97tgk)VU :FG;Si=ĝ9 xI%g&c.x@39,0Lcpk4kta|f{Yu[WkKǏo!`A >vq]>%ks)*1" YۓҺ0qqK<t\9EETP0FJRB;H5KKm[b˜$dgW]G\eMlD$/{=@Ҫ*\[dHޛeϯNCY.k{q8#R}sW]ͦK+>Օ,uhI[z|Uߦ]iG{oxC !пKZ޿;k-4 {'t22LtϠxq!*P=j[OZ-v|O N$% 'ҺtXNowj[ $_*z}yzz舳_smDnuuiD6R1X9%'=S^A=ki%Ww,sg8'x I!Q@?zrF>?Ჰ}Onz{z!\9=P]]Eio-(лשJĽ5b[pq%sÞ*+`HdT%Ppqzpv47pEXK<~Z\=)5hGq}xEޡ}yU. 8;B |r8:b~>[15־6|?7L1Hپê{^\JUխĉ[vM4Fp=]Zk9uqip~ {[)"Ǒgj6jSL]Raq,7v8#8n8'^}{v55K{]{>}JR_I4ke2*uNcWl2N5 RW>~m 5N\? -aogyo Bbļs g؏zְ0T"1#m/O?R[r~:c<`vǸ߽Iۂ z`gn9003}}! +y9\'`t@vNhaf@< 4~l=OO>vevbHힽnOA߷?(ODm%GL{WxwUmFФ-˙}7=\h:U`~(oT'[Jx$c`u9kmnEoڕd_SEءٴt%Aճԓs5s%Nr8~_onŤqi~`76I S:f"4% knY[(|t5Hۀ>\vG#JY$Eǯukּeغ-6Hv8}wMЮZn-54m>iP 3Gך_ >>u^K jX,9=3 =OOuj]FHAs5.Cق{cs95 [=9?$k}l?sϥFԼD0Fv O\}^D@c:'Rv]K&^E\-Ͳmc'ʻƻ EVW]=bǙp9#zSF{sյUt)99-: +s%e@L$ E pjʟY NpҢ̑;Rp?*-٪FlsxT%rҙ.av-Jgs&UE*ڋu) 1~9^3$Yz;;kkwE[ǿ2#Ҳd[Ecs<7Cc$zqMkΙkڣX:&x@35Sծ1aXPO N};zbڜ/u"bnq98WoiT;%v'{SN{د *."C?pӺ[v%{߹-Ea繎O,Si > oP8:;?(r L2{7eHg^?ʟ5;;ed6wU'C$iGҫ̏%: &Hл '=~14*D `{ds9#[Uүc+yK7M$[ pr0 SZK#6k}7pAYZu;WWP}el]@<{L=q=<ݽDmE +)嶌d[}Nz})I0<ԟg<󕤒Jo]fI={fI}O=iǰ8Qx\t'jȰg>gQ0?!~aG͏󞿍]EoO>,2fR\Gqzڬ7U}ǥ}-m# T-`|5 i}x'Ҝ`{n>D520 E=k6Vۺt}kpv6 U{<*㸩Ai'`j5<:m>-^ igG0kc AWAvm[RN9e dO458lJI1 t9ϡL ;Ѹce-Vclcuq"}H5[8Wc|M9M{s~$ԭ"iPd  5-CmŜw,@窌mNN}zwׁ[ʉy+>f*#K2l][ޠ)W1q"Tl}o]Â3^9-к$R졁#"Y#ycVsAldW`\\Ʊ.X a_=ޢҬf+kڼ2Tv#vtNC)[s3~W#;"rzi7u~C;i. ŧCAX jeF[;(fY8#oq޷⩻_/Е_3>_i\-ĖKP9'3ץ_lPGנ4w+%GisKv֚q?oސ>xiDkZ_”i#QI #"=᷋t]ܞH^jKچaxW|3\xU*Q#Wzb[9U :qZ|q|_3"5C*+AW96iCT[ZdPiԡ&]PiKbwETndO'TSfA4l5H0-ӝVԓj2;HޭVV(<31jo0Z-6DT\:F;_[HS-ۓ[v6E:F8_ `ni>E6Vp۴)nֵ{X ~RCKxo ˓Zu"0Х:dņiL+rw?`})n|oKEu J PEz'¯d^g^>m'y觱ike 慳A (JWU77dSQYӃ~tQT&7QE10-)wf)V V@q|k5QF쑰jw2PΎ2NqLڰ3E׮OƊ*dj(n] Ȋ2iߦ{i&M̲8@tўywo{k-ag@Kq4EB%R 5A, !pf*2ٙz6Pgw2IIhUs߿j'5=7Hɸ]ZL!I7DtҊ(ޟIk1蘆s^;Mm ܖ켆%rI]5\h;kŌ=RuBk@4 $yAy6*g` ?Ҋ)c?/?EB1?O28cMU$JW endstream endobj xref 0 29 0000000000 65535 f 0000000008 00000 n 0000000073 00000 n 0000000119 00000 n 0000000332 00000 n 0000000369 00000 n 0000000507 00000 n 0000000638 00000 n 0000008110 00000 n 0000008222 00000 n 0000008337 00000 n 0000008457 00000 n 0000008565 00000 n 0000008693 00000 n 0000008866 00000 n 0000008993 00000 n 0000009166 00000 n 0000009294 00000 n 0000009409 00000 n 0000009535 00000 n 0000009650 00000 n 0000009778 00000 n 0000009940 00000 n 0000010068 00000 n 0000010167 00000 n 0000010295 00000 n 0000010450 00000 n 0000010578 00000 n 0000010651 00000 n trailer << /Size 29 /Root 1 0 R /Info 5 0 R >> startxref 29999 %%EOF spam « Informasietegnologie
Language:
SEARCH

  • Recent Posts

  • Categories

  • Archives

spam

« Older Entries

How to recognise a phishing e-mail

Tuesday, October 5th, 2021

We can’t warn you against every phishing e-mail– there’s a new variation every day. You are the only person who can protect yourself from phishing scams and identity theft. The only way to do this is to learn to recognise a harmful e-mail by paying attention and keeping an eye out for a few tell-tale signs.

phishme_how_to_spot_a_phishTypical characteristics

1. Well-known companies used as bait
These e-mails are sent out to thousands of different e-mail addresses and often the person sending them has no idea who you are. If you have no affiliation with the company the e-mail address is supposedly coming from, it’s fake. For example, if the e-mail is sent by ABSA, but you are a Standard Bank client. Also, see a list of types of companies generally used in phishing e-mails below.

2. Spelling and grammar
Improper spelling and grammar is a dead giveaway. Look for obvious errors. 

3. Lack of client information
Phishers use a generic greeting. For example, the e-mail greets you as “ABSA customer” or “Dear user”, etc. If the company was sending you information regarding your faulty account, they would mention your account details or name in the e-mail.  A company would go through the trouble to address a client by name and won’t ask you for your information. Banks have your information on their system.

4. Deadlines/Sense of urgency
Phishing e-mails demand an immediate response or stipulate a specific deadline, creating a sense of urgency and prompting you to respond before you’ve looked at the e-mail properly. For example,  demanding that you log in and change your account information within 24 hours or your account will be closed.

5. Malicious links
Although many phishing e-mails are getting better at hiding the true URL you are visiting, often these e-mails will show a URL that is unrelated to the company. Move your mouse over the link and look at the display address. Is this the website address of the company who seems to be sending the e-mail? If not, it’s clearly a phishing e-mail.

6. Attachments
Phishing e-mails occasionally include an attachment which contains malware. When opened, it will run and install a small programme on your PC, which hackers use to gain access to your PC and information. 

Typical phishing topics

• Account issues, such as accounts or passwords expiring, accounts being hacked, out-of-date accounts, or account information has to be changed.
• Credit cards expiring or being stolen, a duplicate credit card, credit card transactions, etc. 
• Confirming orders, requesting that you log in to confirm recent orders or transactions before a delivery can be made.
• Winning a prize or getting something for free. Both Woolworths and Pick ‘n Pay’s have been used in fake campaigns to lure people into providing personal details.

Company names phishers generally use

• Any major bank. ABSA and Standard Bank are both popular choices in South Africa.
• Insurance companies, for example, Outsurance.
• Internet service providers
Apple or Microsoft claiming your account has been suspended.
• E-mail providers, e.g. Gmail or Yahoo
• SARS. Especially at this time of year. (We’ve had a few of these.)
DHL or any delivery company claiming they have a package for you.
• Your company’s medical aid, for example, Discovery
• Your company’s IT department
• Casinos and lotteries
• Online dating websites
• Popular websites such as Amazon, Facebook, MySpace, PayPal, eBay, Microsoft, Apple, Hotmail, YouTube, etc.

A few tips to keep you safe

Never follow links in an e-mail you’re uncertain of. Rather visit the page by typing the address of the company in your browser. For example,  instead of clicking on the “ABSA URL” in the e-mail, type http://www.absa.co.za in your web browser and log in at their official website.
Never send personal information by e-mail. If a company is asking for your personal account information or claiming your account is invalid, visit the website and log in to the account as you normally would. If everything seems in order and there aren’t any urgent notifications from your bank, you should be fine.
• If you are still not sure about the status of your account or are concerned about your personal information, contact the company directly, either through an e-mail address provided on their website, over the phone or visit your local branch.
• Delete the e-mail and don’t click on links or fill in any information.
• If you’ve already divulged your information, immediately change your password or PIN and contact the institution to inform them of the breach.
• To report spam or phishing e-mails send an e-mail to sysadm@sun.ac.za with the subject SPAM with the suspect e-mail attached. IT system administrators will then be able to block the e-mail to protect other users.

[SOURCE: www.computerhope.com]

 

Email

Tags: , ,
Posted in E-mail, Security, Tips | Comments Off on How to recognise a phishing e-mail

How do I report phishing?

Tuesday, October 5th, 2021

You’ve received a suspicious email, what should you do with it? Firstly, don’t click on any links. But just as important, send it to us so we can prevent more staff and students falling prey to the scam. We encourage our customers to submit potential phishing examples for review. Using these submissions, the Cyber Security Incident Response Team (CSIRT) can learn from the analysis of these messages. This collectively helps to improve the level of virus and spam detection.

What is phishing?

Phishing attacks are designed to steal a person’s login and password details so that the cyber criminal can assume control of the victim’s social network, email, and online bank accounts. Seventy percent of internet users choose the same password for almost every web service they use. This is why phishing is so effective, as the criminal, by using the same login details, can access multiple private accounts and manipulate them for their own good. 

More on how to recognise a phishing email. 

Report phishing

On the ICT Partner Portal:

*Spam or phishing examples must be sent in either.EML or .MSG format as an attachment and must not be forwarded. This ensures the original email can be analysed with its full Internet message headers intact. Alternatively, use the mail application to save the email (usually located under File | Save As) as an .EML or .MSG format to a folder location, and attach the saved file to a new email.

Email

Tags: , , , ,
Posted in phishing, Security, Tips | Comments Off on How do I report phishing?

“Cryptocurrency” scam email

Wednesday, March 28th, 2018

Please be aware of a  scam making the rounds since yesterday.

It is a “Crypto-currency” (bitcoin) scam that comes in the form of an e-mail from an unknown sender (currently an address from name@dacfinance.online). It will look like this:

 

 

Hi, how are you?
I hope you are okay

 I’ve been trying to reach you for the past couple of days.

Something MAJOR is happening in the trading world and I want you to know about it.

>> Check this with your email somebody@sun.ac.za

 Are you ready for that kind of spending power?

Many people already started to trade cryptocurrencies, BitCoin and LiteCoin.

Join now to our Group!

 To your success,
Some Name
 DAC Finance

cryptocurrency.website address

 

 

This is a sneaky attempt to defraud users seeking an opportunity to invest in Bitcoins (crypto-currency). The website you are taken to is filled with fake testimonials, inflated bank account numbers, exaggerated claims of easy money and various other lies and fabrications. The software that you would be asked to install is fake and will compromise security on your computer and be used to send spam. Furthermore, victims will have to pay anything up to $250 to join the “investment” scheme and the only thing that will happen is that you will be $250 poorer. Here is an example of the website page:

Do not respond to this mail or be tempted to join this scheme. The fact that university e-mail addresses reused and the claims look legitimate should rather be a warning.

As always if you have received mail that looks like this, please immediately report it to the Information Technology Security Team using the following method:

Send the spam/phishing mail to help@sun.ac.za and sysadm@sun.ac.za.
Attach the phishing or suspicious mail on to the message if possible.
1. Start up a new mail addressed to sysadm@sun.ac.za (CC: help@sun.ac.za)
2. Use the Title “SPAM” (without quotes) in the Subject.
3. With this New Mail window open, drag the suspicious spam/phishing mail from your Inbox into the New Mail Window. It will attach the mail as an enclosure and a small icon with a light yellow envelope will appear in the attachments section of the New Mail.
4. Send the mail.

[Article by David Wiles]

Email

Tags: , ,
Posted in E-mail, Security | Comments Off on “Cryptocurrency” scam email

E-mail scam with subject: “morning”

Wednesday, December 13th, 2017

It seems that scammers are now attempting to use student e-mail addresses to send out spam. 

If you get mail with the subject of “morning”, supposedly coming from a student account (studentnumber@sun.ac.za) with the following content, please ignore and delete it.

We are conducting a  standard process investigation involving a late client who  shares the same surname with you and also the circumstances surrounding investments made by this client.Are you aware of  any relative/relation having the same surname? Send email to: scammer@scam.com

This is a typical Nigerian 419 Advance Fee scam. Do not respond to this mail. The scammers just want to see who will respond so they can con you out of some money.

A reminder again of how to correctly report spam and phishing scams:

Send the spam/phishing mail to the following addresses: 

help@sun.ac.za and sysadm@sun.ac.za.

 Attach the phishing or suspicious mail on to the message if possible. There is a good tutorial on how to do this at the following link (which is safe): http://stbsp01.stb.sun.ac.za/innov/it/it-help/Wiki%20Pages/Spam%20sysadmin%20Eng.aspx

  1. Start up a new mail addressed to sysadm@sun.ac.za (CC: help@sun.ac.za)
  2. Use the Title “SPAM” (without quotes) in the Subject.
  3. With this New Mail window open, drag the suspicious spam/phishing mail from your Inbox into the New Mail Window. It will attach the mail as an enclosure and a small icon with a light yellow envelope will appear in the attachments section of the New Mail.
  4. Send the mail.

IF YOU HAVE FALLEN FOR THE SCAM:

If you did click on the link of this phishing spam and unwittingly give the scammers your username, e-mail address and password you should immediately go to http://www.sun.ac.za/useradm and change the passwords on ALL your university accounts (making sure the new password is completely different, and is a strong password that will not be easily guessed.) as well as changing the passwords on your social media and private e-mail accounts (especially if you use the same passwords on these accounts.)

IT has set up a website page with useful information on how to report and combat phishing and spam. The address is: https://blogs.sun.ac.za/it/en/2017/11/reporting-spam-malware-and-phishing/

As you can see the address has a sun.ac.za at the end of the domain name, so it is legitimate. We suggest bookmarking this.

[Article by David Wiles]

Email

Tags: ,
Posted in E-mail, Security | Comments Off on E-mail scam with subject: “morning”

Nigerian 419 Advance Fee scam

Wednesday, November 29th, 2017

A scam in the form of a well-known “Nigerian 419 Advance Fee” mail is appearing in some of our colleagues and students mailboxes this morning.

The mail is rather simple:

Subject is: “Kindly view attach and forward your reply to <a gmail address>”

The mail’s content simply states the same and the attachment is an image of a letter and states that the sender has a large amount of money that they would like to send you.

This is a typical “Nigerian 411 Advance Fee” scam.

Here is how it works:

You receive an unsolicited message that masquerades as some manner of business proposition, request for assistance, notice of a potential inheritance, or opportunity to help a charity but all of the scam messages share a common theme.

The messages all claim that your help is needed to access a very large sum of money and promise that you will receive a significant portion of this money in exchange for your help.

The scammers use a variety of stories to explain why they need your help to access the funds.

  • They may claim that political climate or legal issues preclude them from accessing funds in a foreign bank account and request your help to gain such access.
  • They may claim that your last name is the same as that of the deceased person who owned an account and suggests that you act as the next of kin of this person in order to gain access to the account’s funds.
  • They may claim that a rich businessman, who has a terminal illness, needs your help to distribute his wealth to charity.
  • They may claim that a soldier stationed overseas has discovered a cache of hidden cash left by a fleeing dictator and needs your help to get the money out of the country.

All these scams promise to let you keep a significant percentage of the funds in exchange for your assistance. This is the bait that is used to pull potential victims deeper into the scam. Once a recipient has taken the bait, and initiated a dialogue with the scammers, he or she will soon receive requests for “fees” that the scammer claims are necessary for processing costs, tax and legal fees, bribes to local officials, or other – totally imaginary – fees.

In reality, the supposed funds do not exist and the main purpose of these scam messages is to trick recipients into parting with their money in the form of these advance fees. Fraudulent requests for fees will usually continue until the victim realises he or she is being conned and stops sending money. In some cases, the scammers may gather enough information to access the victim’s bank account directly or steal the victim’s identity.

Typically, advance fee scammers will send many thousands of identical scam messages to recipients all around the world. (as is today’s example) It only takes a few recipients to fall for the claims in the messages to make the operation pay off for the criminals.

What to do if you receive such an Advance Fee email:

It is important that you do not respond to it in any way. The scammers are likely to act upon any response from those they see as potential victims. The best thing to do with these scam messages is to simply delete them.

Send the spam/phishing mail to the following addresses

help@sun.ac.za and sysadm@sun.ac.za.

 Attach the phishing or suspicious mail on to the message if possible. There is a good tutorial on how to do this at the following link (Which is safe) : http://stbsp01.stb.sun.ac.za/innov/it/it-help/Wiki%20Pages/Spam%20sysadmin%20Eng.aspx

  1. Start up a new mail addressed to sysadm@sun.ac.za (CC: help@sun.ac.za)
  2. Use the Title “SPAM” (without quotes) in the Subject.
  3. With this New Mail window open, drag the suspicious spam/phishing mail from your Inbox into the New Mail Window. It will attach the mail as an enclosure and a small icon with a light yellow envelope will appear in the attachments section of the New Mail.
  4. Send the mail.

If you have fallen for the scam:

If you did click on the link of this phishing spam and unwittingly give the scammers your username, e-mail address and password you should immediately go to http://www.sun.ac.za/useradm and change the passwords on ALL your university accounts (making sure the new password is completely different, and is a strong password that will not be easily guessed.) as well as changing the passwords on your social media and private e-mail accounts (especially if you use the same passwords on these accounts.)

IT have set up a website page with useful information on how to report and combat phishing and spam. The address is:

https://blogs.sun.ac.za/it/en/2017/11/reporting-spam-malware-and-phishing/

As you can see the address has a sun.ac.za at the end of the domain name, so it is legitimate. I suggest bookmarking this.

[ARTICLE BY DAVID WILES]

 

 

Email

Tags: ,
Posted in E-mail, phishing, Security | Comments Off on Nigerian 419 Advance Fee scam

« Older Entries
 

© 2013-2024 Disclaimer: The views and opinions expressed in this page are strictly those of the page author(s) and content contributor(s). The contents of this page have not been reviewed or approved by Stellenbosch University.