BMUST
  • Home
  • About Us
  • Leadership
  • Committees
  • Member Services
  • Retirees
  • News and Events
  • New Teachers/100 Hrs
  • NYSUT- CTLE Help
  • NYSUT Union Value
  • Long Island Teachers
  • Sexual Harassment Policy
  • Calendar
  • Contact
  • Members Only
  • Home
  • About Us
  • Leadership
  • Committees
  • Member Services
  • Retirees
  • News and Events
  • New Teachers/100 Hrs
  • NYSUT- CTLE Help
  • NYSUT Union Value
  • Long Island Teachers
  • Sexual Harassment Policy
  • Calendar
  • Contact
  • Members Only

IMPORTANT FOR ALL MEMBERS TO READ RE: W2's

1/26/2016

 

We were alerted to the email below. Please read carefully and share with your units. W2 Forms in our district will NOT be distributed electronically so any such email should be ignored.

Thank you.

Mara
NEW YORK STATE OFFICE OF INFORMATION TECHNOLOGY SERVICES CYBER-THREAT ALERT
 
DATE ISSUED: January 23, 2016
                        January 25, 2016 UPDATED
 
SUBJECT: Active Email Phishing Threat
 
OVERVIEW:
The NYS ITS CSOC has been notified of an active phishing email threat targeting government agencies. We have received reports of a well-crafted phishing email circulating in the past two weeks at several US universities and in neighboring states.  The email notifies employees that their electronic W2s are available and encourages them to click to login and view/print their W2s.  The link takes them to a landing page which has been made to look like the organization’s Human Resources site.  Those who fall victim to the phishing email may have their personal information compromised, including login, password, tax information, bank account information, personal contact information and benefit information.
 
Two sample emails are provided below.  Please note that there are several variants. 
 
ORIGINAL INDICATORS OF COMPROMISE:
  • “Click Here” redirects to a URL in the domain hxxp://www.kaizenkz.org
  •  IP address resolution for the link currently resolves to 89.253.252.114
January 25, 2016 UPDATED INDICATORS OF COMPROMISE:
·         Email was sent from email domain email.ufrb.edu.br
·         IP address resolution for the email domain resolves to 200.128.85.35
·         The link in the email sent from the email domain redirects to a URL in the domainhxxp://xxx.flirtingvision.co.nz  (this domain is still active)
 RECOMMENDATIONS:
  • Block indicators of compromise provided above and review logs for activity.  Note this task has been completed for ITS hosted agencies.
  • DO NOT reply to email with any personal information or passwords. If you have reason to believe that the request is real, call the institution or company directly.
  • DO NOT click a link in an unsolicited email message. If you have reason to believe the request is real, type the web address for the company or institution directly into your web browser.
  • DO NOT use the same password for your work account, bank, Facebook, etc. In the event you do fall victim to a phishing attempt the thieves will try the compromised password in as many places as they can.
  • DO change ALL of your passwords if you suspect any account you have access to may be compromised.
  • DO be equally cautious when reading email on your phone. It may be easier to miss telltale signs of phishing attempts when reading the email on a smaller screen.
  • If you have received this phishing email, do not open the message. Please forward it "as an attachment" to csoc@its.ny.gov and then and DELETE it from your Inbox.
 
If you have any questions or concerns please direct your inquiries to csoc@its.ny.gov  or by phone at 242-5211. 
 
Cyber Security Operations Center
NYS Enterprise Information Security Office
 
Office of Information Technology Services (ITS)
1220 Washington Avenue, Building 5 – 1st Floor
Albany, New York  12226
Main Phone: 518-242-5211 | csoc@its.ny.gov
Website: http://www.its.ny.gov/eiso

Comments are closed.

    Archives

    January 2023
    December 2022
    November 2022
    October 2022
    September 2022
    May 2022
    April 2022
    March 2022
    February 2022
    January 2022
    October 2021
    September 2021
    August 2021
    June 2021
    May 2021
    April 2021
    March 2021
    February 2021
    December 2020
    November 2020
    October 2020
    September 2020
    June 2020
    May 2020
    April 2020
    March 2020
    February 2020
    January 2020
    December 2019
    November 2019
    October 2019
    September 2019
    May 2019
    April 2019
    March 2019
    February 2019
    January 2019
    December 2018
    November 2018
    October 2018
    September 2018
    June 2018
    May 2018
    April 2018
    March 2018
    February 2018
    January 2018
    December 2017
    November 2017
    October 2017
    September 2017
    June 2017
    May 2017
    April 2017
    March 2017
    February 2017
    January 2017
    December 2016
    November 2016
    October 2016
    September 2016
    August 2016
    June 2016
    May 2016
    April 2016
    March 2016
    February 2016
    January 2016
    December 2015
    November 2015
    October 2015
    September 2015
    July 2015
    June 2015
    May 2015
    April 2015
    March 2015
    February 2015
    January 2015
    December 2014
    November 2014
    October 2014
    September 2014
    June 2014
    May 2014
    April 2014
    March 2014
    February 2014
    January 2014
    December 2013
    November 2013
    October 2013
    September 2013

    Categories

    All

    RSS Feed

Brookside School, 1260 Meadowbrook Road, North Merrick, New York 11566
(516) 992-1068, 1069
  • Home
  • About Us
  • Leadership
  • Committees
  • Member Services
  • Retirees
  • News and Events
  • New Teachers/100 Hrs
  • NYSUT- CTLE Help
  • NYSUT Union Value
  • Long Island Teachers
  • Sexual Harassment Policy
  • Calendar
  • Contact
  • Members Only