Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
510 Results
Jan 2023: Compensation-Themed Phishing Lures Harvest Microsoft Credentials
Threat Alert: What to Watch For Cybercriminals have launched a series of phishing attacks using timely email phishing lures related to annual compensation reviews and bonuses. The phishing emails encourage recipients to click a lure to confirm a payment-related change.
Microsoft 365: SharePoint
Description
- Faculty
- Staff
- Student
- Technical Partner
- Email & Collaboration
Jun 2023: Phishing Attacks Use Compromised Microsoft Office 365 Accounts
Threat Alert: What to Watch For Cybercriminals have launched phishing attacks leveraging compromised Microsoft Office 365 accounts. The lures include .rpsmg file attachments, as well as embedded URLs hidden behind a “Read the Message” button. Clicking the malicious link leads to a credential phishing kit that redirects the user to a legitimate login page.
Mar 2023: Malicious OneNote Attachment Lures
Threat Alert: What to Watch For
Nov 2023: HSBC Brand Abuse Lures Distribute Malware
Threat Alert: HSBC Brand Abuse Lures Distribute Malware
Licensed Software
- Faculty
- Staff
- Student
HBS Timekeeping System
Description HBS (Huntington Business Systems), is an online time and attendance system. It is used by all academic and administrative staff (exempt and non-exempt employees) who earn leave. Note: HBS is not applicable for the 5,000+ academics who do not earn leave (e.g., residents, emeritus faculty).
- Faculty
- Staff
- Student
- Business Applications
Mar 2023: Attacks Spread Microsoft Teams-Themed Lures
Threat Alert: What to Watch For Cybercriminals have launched phishing attacks using lures that impersonate Microsoft Teams meeting invites. The lures include a malicious link. Clicking the malicious link leads to a credential phishing kit that redirects the user to a legitimate login page.
Dec 2022: Microsoft OneDrive and QR Codes Used in Phishing Campaign
Threat Alert: What to Watch For Recent email-based attacks have used compromised Microsoft OneDrive accounts to send phishing emails. These emails encourage recipients to click a link to view a shared document. The OneDrive links lead targets to shared PDF documents containing quick response (QR) codes.
Feb 2024: Deepfake Scam Imitating CFO
Threat Alert: Deepfake Scam Targeting Financial Transactions An employee attended a video conference call with seemingly authentic colleagues, all of whom were later revealed to be deepfake representations. The worker, initially suspicious of a phishing email, was convinced by the realistic appearance and voices of the deepfake participants during the video call. Subsequently, the employee authorized a large financial transaction, thinking it was a legitimate request initiated by the CFO. Key Actions (at Wo