Advisories

Canadian University defrauded of $11.8 million in a phishing scam

MacEwan University was defrauded of $11.8 million using a targeted phishing attack. CBC reported it here: http://www.cbc.ca/beta/news/canada/edmonton/macewan-university-phishing-scam-edmonton-1.4270689 Targeted phishing is increasingly used by criminal groups to attempt similar attacks against other institutions, including York. To help prevent phishing attacks and related fraud, please keep in mind the following tips: Always be suspicious of emails requesting […]

Critical Apache Struts 2.x Vulnerability

Summary A critical vulnerability has been discovered and released in the Apache Struts 2 framework. Impact This vulnerability allows for unauthenticated, remote code execution on the server. Further, there are at least two known public exploits for this vulnerability [2] and ISP has already started to see scanning and exploit attempts against campus systems. Vulnerable Apache Struts 2.3.5 - […]

Email Ransomware Alert (Locky)

A new variant of a crypto-ransomware, dubbed as "Locky", has recently been discovered and is spreading via email in the form of a Word document attachment with malicious macros. The ransomware encrypts files on a victim's computer, adds a ".locky" file extension to them and demands that the victim pay a ransom for the decryption […]

FALSE "Microsoft Support Calls" SCAM

UIT Information Security Office has received reports that false Microsoft support phone calls (currently a large, global scam) have recently targeted some members of the York community. Scammers, pretending to be from "Microsoft Support", try to fool people into believing that something is wrong with their computers and ask for remote access. They might offer […]

StageFright Bug Affecting Android Devices

A vulnerability has been discovered in the Android operating system that allows an attacker to access data stored on your device or remotely install software by just having your mobile phone number. This vulnerability is being referred to as “StageFright”. All Android based phones after and including versions 2.2 are vulnerable. An attacker can use […]

CSE webmail phishing attempt. Do NOT respond!

Sample fraudulent email --------------------------------------------------------------------------------------------------- Dear Yorku account user. Please be informed that we want to improve our webmail in a couple of days from now, and your account must be reactivated to finish activating your account, you must login to your account again by clicking on the link below; http://***/imp/login5085.htm Failure to upgrade your webmail […]