CaTS | Information Technology

CaTS Blog

Phishing Scam Notice for 10/31/19

Thursday, October 31, 2019

The Help Desk was recently notified of an email phishing scam that targets Wright State students. The message comes from the email address coleman.38@wright.edu, and contains an attached document titled 'WRIGHT 446.rtf', as well as a link to a website asking for your Campus 'w' username credentials.

Please be aware that this is a scam. As always, do NOT click on any links or download any documents contained in this email. If you have already clicked on the link contained in the email and provided your Campus 'w' username, please change your password immediately.

If you have any questions, or for assistance changing your password, contact the CaTS Help Desk at (937) 775-4827, or email hepdesk@wright.edu.

Notice of Chegg.com Data Compromise

Friday, October 11, 2019

CaTS was recently notified that the textbook rental company Chegg suffered a data breach in April 2018. The breach affected approximately 40 million Chegg customers, some of whom are Wright State students and faculty. As of mid-September, the stolen credentials from the breach have been discovered on publicly accessible sources.

If you are or have been a customer of Chegg.com, below is information on  how you can ensure both your Wright State and personal accounts remain safe:

  • If the password you used for Chegg is the same password used for any of your Wright State accounts, please change your passwords for those accounts. Visit wright.edu/accounts for instructions on how to change your passwords.
  • Go to the Chegg website and change your password immediately.
  • If you have used the Chegg password for other sites you use, change the password on those sites as soon as possible.

If you have any questions, contact the CaTS Help Desk at (937) 775-4827, or email helpdesk@wright.edu

Properly Managing Sensitive Data

Monday, September 16, 2019

Hello!

Welcome to the Fall 2019 edition of the Quarterly Security Reminders email, brought to you by Wright State's Chief Information Security Officer. This newsletter will provide you with tips, best practices, and guidelines for how to better secure both your personal and university data.

Recently, I was taking some IT security training to keep my knowledge up to date. In the training, I was reminded of the difference between Information Security Awareness, and Information Security Training. These terms are often used together, for example, stating that our company has an Information Security Awareness Training Program.

As I see it, information security awareness is being mindful of our responsibility in handling sensitive information, the use of our information systems such as Pilot, Banner, email, and the use of our local computers.

Being aware of the responsible use of technology and the need to handle sensitive data properly is only part of the equation. We also have to know how to perform in various situations. For example, Jerry needs access to some sensitive information I have stewardship over, and I need to transmit that data to Jerry in a secure way. Knowing how to get that information to Jerry in the right way is where security training comes in. Information security training gives us the knowledge we need to handle situations like this without creating a risk to the university. If there's a gap in knowledge, problems can occur.

In the coming months CaTS will be developing some additional training to assist the WSU community in understanding how to identify sensitive data, determining the best place to store sensitive data, and determining an acceptable method of transmission.

One thing to keep in mind if you are uncertain of how to handle sensitive data is that by selecting the most secure method to transmit or store the data it won't cause a problem. However, doing the opposite can.

If you have any questions on the best way to handle sensitive data, contact the CaTS Help Desk at (937) 775-4827, or email helpdesk@wright.edu with your questions.

Reference material can be found at the following locations:

University Data Classification Risk Matrix
https://wrightstate.service-now.com/sp?id=kb_article&sys_id=a207b44c134e...

HIPAA Regulations: Uses and Disclosures of Protected Health Information
https://www.wright.edu/information-technology/policies/hipaa-regulations...

Student Privacy and Release of Educational Records-FERPA
https://policy.wright.edu/policy/3010-student-privacy-and-release-educat...

IT Security Website

Phishing Scam Notice for 8/27/19

Tuesday, August 27, 2019

The Help Desk was recently notified of an email phishing scam that targets Wright State students. The message comes from the email address jamesvicent222@gmail.com, and has a subject line of 'Job Offer.....'.

Please be aware that this is a scam. As always, do NOT give out any personal information, and delete the message from your Wright State inbox.

If you have already given out your personal information, be aware that this is a phishing attempt if you are contacted about this job offer. Do not provide any additional information (i.e. banking information, etc.).

BEGIN COPY OF SCAM MESSAGE

Hello,
We are looking for a payroll clerk who will work one hour a day, from Monday to Friday. The pay is $300 per week.
If you are interested, kindly get back to us for more details.

END COPY OF SCAM MESSAGE

If you have any questions, contact the CaTS Help Desk at (937) 775-4827, or email helpdesk@wright.edu

Phishing Scam Notice for 8/15/19

Thursday, August 15, 2019

The Help Desk was recently notified of an email phishing scam that targets Wright State students. The message comes from the email address burrows.17@wright.edu, and contains a link that appears to take you to the WINGS login page.

The link contained in the message was blocked when the Help Desk was first made aware of this phishing scam.

Please be aware that this is a scam. As always, do NOT click on the link or enter your Wright State credentials. When logging in to any Wright State online service, always go directly to the website you are signing in to.

If you have already clicked on the link and entered your credentials, please change your password immediately.

BEGIN COPY OF SCAM MESSAGE

Dear Account Holder,
Your incoming mails and documents have been placed on hold due to recent spam activities. 

We need you to verify your account before you can view new files!

Verify Now [LINK]

Sincerely,
Information Technology Services
Wright State University
3640 Colonel Glenn Hwy, Dayton, OH 45435

END COPY OF SCAM MESSAGE

If you have any questions, contact the CaTS Help Desk at (937) 775-4827, or email helpdesk@wright.edu

Phishing Scam Notice for 8/14/19

Wednesday, August 14, 2019

CaTS has recently seen an increase in an email phishing scam targeting Wright State students. The email comes from an @student.aiuonline.edu email address, with a subject line such as 'action required fafsa info'.

Please be aware that this is a scam. Do NOT click on the link or download any documents sent to you through this email. If you have entered any account information, please change your password immediately.

CaTS blocked this email address from sending to Wright State users as we became aware of the scam.

If you have any questions, contact the CaTS Help Desk at (937) 775-4827, or email helpdesk@wright.edu

Phishing Scam Notice for 7/23/19

Tuesday, July 23, 2019

The Help Desk was recently notified of an email phishing scam that targets Wright State faculty, staff, and students. The message comes from the email address ancastle@wright.edu, and contains a link that appears to take you to either the WINGS or WINGS Express login page.

The link contained in the message was blocked last night when the Help Desk was first made aware of this phishing scam.

Please be aware that this is a scam. As always, do NOT click on the link or enter your Wright State credentials. When logging in to any Wright State online service, always go directly to the website you are signing in to.

If you have already clicked on the link and entered your credentials, please change your PIN or password immediately.

BEGIN COPY OF SCAM MESSAGE

Hi all,
You have a new secure message from Wright State University Health and Wellness Center Click to View immediately

Thank you,

Dr. Abigail Romney,
Associate Chief Nurse Administrator
Wright State University
Department of Health and Society
3640 Colonel Glenn Hwy,
Dayton, OH 45435
Phone: 937-775-1020

END COPY OF SCAM MESSAGE

If you have any questions, contact the CaTS Help Desk at (937) 775-4827, or email helpdesk@wright.edu

Phishing Scam Notice for 6/27/19

Thursday, June 27, 2019

CaTS has recently seen an increase in an email phishing scam targeting Wright State faculty and staff. The email comes from an @gmail.com address, and contains a link to a Google Drive document that appears to be shared a Wright State faculty member.

Please be aware that this is a scam. Do NOT click on the link or download any documents sent to you through this email. If you have entered any account information, please change your password immediately. 

If you have any questions regarding this scam, contact the CaTS Help Desk at (937) 775-4827, or email helpdesk@wright.edu

Phishing Scam Notice for 6/19/19

Wednesday, June 19, 2019

The Help Desk was recently notified of an email phishing scam that targets Wright State faculty, staff, and students. The emails claim your Office 365 account is going to expire, and asks you to either click on a link or open a Word document and enter your Wright State credentials.

Please be aware that this is a scam, do NOT click on any links or give out your Wright State credentials. If you have already given out your Wright State credentials, please change your password immediately.

If you have any questions about this scam, contact the CaTS Help Desk at (937) 775-4827, or email helpdesk@wright.edu

Two-Factor Authentication Required June 3

Friday, June 7, 2019

For Current Faculty, Staff, and Wright State Student Employees

*Those with an affiliation of Emeritus Faculty only are not required to sign up for this service. If you have questions about your current status at the University, contact the CaTS Help Desk at (937) 775-4827.*

*Beginning June 3rd, 2019, CaTS began rolling out Duo two-factor authentication to all current faculty and staff.*

What Are We Doing?
CaTS will now be requiring two-factor authentication for Wright State current faculty, staff, and delegated accounts from off campus, wireless, and VPN connections when accessing services such as WINGS, Office 365, ServiceNow, and more. CaTS announced and made available two-factor authentication in March 2018 to Wright State faculty, staff, and delegated account users as an optional service through Duo Mobile. Utilizing two-factor authentication will now be required to further the University's single sign-on capabilities, online security, and to reduce the number of credentials needed to access Wright State systems and services. As an added benefit, Campus 'w' account passwords will never expire for those individuals utilizing two-factor authentication, unless there is evidence the account password has been compromised.

When Will This Happen?
June 3rd, 2019

What Actions Do I Take Now?
If you have previously enrolled in two-factor authentication via Duo you do not need to do anything. If you have not enrolled, you are encouraged to do so as soon as possible, but prior to June 3rd to avoid any disruption to signing in to online campus services.

Is Training Available?
CaTS will be offering drop-in training sessions covering two-factor authentication. Training dates can be found at https://www.wright.edu/information-technology/services/two-factor-authen...

More Information and Enrollment Instructions
Please visit www.wright.edu/2fa for more information concerning the two-factor service. 

Pages

Computing and Telecommunications Services (CaTS)

Location: 
025 Library Annex
Phone: 
937-775-4827
Toll-free Number: 
1-888-775-4827
Email: 

helpdesk@wright.edu

View Operating Hours