All posts by John Mazzarella

Update Notifications

Microsoft Security Patches – November

On November 11th, 2015, Microsoft released security patches for:

  • Windows 10, 8.1, 8, 7, Vista RT, RT8.1
  • Windows servers 2012, 2008, 2003
  • Microsoft Office 2016; 2013; 2010, 2007
We strongly encourage you to apply these patches to your PC as soon as possible. For information about these updates please visit: https://technet.microsoft.com/en-us/library/security/ms15-nov.aspx
Click on the Windows logo located on the lower left hand corner of your computer screen, a menu will appear, click on “Control Panel”.
Once in the Control Panel, type the words “windows update” in the Search Control Panel field located in the upper right hand corner. As you do, the following screen will immediately appear.

Now, in the upper left handle corner, click the words “check for update”. This screen will appear

Click the “Check for updates” button to begin the checking. The following screen will appear after the checking is completed. All Important Updates must be installed. Click the “Install updates” button to begin the installation. You will need to reboot your computer to finish the installation later.

Alternatively, if you are using Internet Explorer you can click on Tools > and select Windows Update to install the latest security patches.
For questions please call the Service Desk at 617-287-5220 or via email at ITServiceDesk@umb.edu.
News

In Brightest Day, in Bluest Screen… – IT Service Desk Halloween Costumes

Zap!   Pow!   Spoon!

Got a problem with your computer, phone, or UMB web service?

Service Desk Assemble!

20151030_085136
Holy Help Desk, Batman! 

The brave men and women at the IT Service Desk are here to fight the never-ending battle for internet access, cyber security, and the good customer service way!

 

This looks like a job for the IT Service Desk!

Spoon!

 

News

Notice: New look for WISER, HR Direct and other secure login websites

On October 26th, the appearance of the UMass secure login page will change. This page is used to access WISER, HR Direct and other secure web applications.

The new appearance, shown below, will size to fit screens of any size and be accessible on both your computer and mobile device. Nothing else will change, your same password will work as before.

loginpage

To confirm you are on a trusted, secure page, look for the lock icon in your address bar. This icon will look different depending on the browser and operating system you use. Below are a few examples of what you might see.

secure examples

If you have any questions, contact the IT Service Desk – (617) 287-5220 | ITServiceDesk@umb.edu
News, Phishing, Security

PHISHING WALL OF SHAME – “Library Account”

1 Comment

A well-crafted phishing attack!

Large communities like UMass Boston are juicy targets for cyber scammers, because time can be spent crafting a convincing con, then used on a large number of potential victims.Today’s Phishing Wall of Shame entry comes from Patty C., who trusted her gut, and protected herself.

phishing stack7

This scammer did a pretty good job! They picked a realistic looking (though not technically real) email address and “spoofed” the From address. They also included a URL that looks legit, because it ends in “umb.edu/”, however this URL is also “spoofed”. Learn more about Email and URL Spoofing in a previous Wall of Shame entry.

IT Staff were able to investigate the spoofed URL in a secure way, and saw it directed to a form requesting the user enter their name and Library barcode. Trained IT Staff opened the file to take a picture, however you should avoid clicking a link in a suspicious email, because they could contain phishing attempts, malicious code, or illegal content and could cause harm to your computer. Here is peak what this link contained:

phishing browser2

The page that loads looks exactly like the off-campus login page for EZ-Proxy! The scammer was able to match it very closely. If you had filled in this form with your email and password, your account would be in the hands of this scammer!

If you are suspicious of a link, website, or email, you can contact the IT department to ask if it may be a scam. Forward a copy of a suspicious email to abuse@umb.edu.

Always remember…

Don’t take the bait! IT will NEVER ask you for your password. Phishing emails attempt to deceive​ you into giving up your private information by leading you to fraudulent websites. Learn more at:
http://www.umb.edu/it/getting_services/security/phishing/

Update Notifications

Microsoft Security Patches [October 13, 2015]

On October 13th, 2015, Microsoft released security patches for:

  • Windows 8.1, 8, 7, Vista RT, RT8.1
  • Windows servers 2012, 2008, 2003
  • Microsoft Office 2016; 2013; 2010, 2007
We strongly encourage you to apply these patches to your PC as soon as possible. For information about these updates please visit: https://technet.microsoft.com/en-us/library/security/ms15-oct.aspx
Click on the Windows logo located on the lower left hand corner of your computer screen, a menu will appear, click on “Control Panel”.
Once in the Control Panel, type the words “windows update” in the Search Control Panel field located in the upper right hand corner. As you do, the following screen will immediately appear.

Now, in the upper left handle corner, click the words “check for update”. This screen will appear

Click the “Check for updates” button to begin the checking. The following screen will appear after the checking is completed. All Important Updates must be installed. Click the “Install updates” button to begin the installation. You will need to reboot your computer to finish the installation later.

Alternatively, if you are using Internet Explorer you can click on Tools > and select Windows Update to install the latest security patches.
For questions please call the Service Desk at 617-287-5220 or via email at ITServiceDesk@umb.edu.
Update Notifications

Microsoft Security Patches [September 8, 2015]

On September 8th, 2015, Microsoft released security patches for:

  • Windows 8.1, 8, 7, Vista RT, RT8.1
  • Windows servers 2012, 2008, 2003
  • Internet Explorer 11, 10, 9, 8, 7, 6
We strongly encourage you to apply these patches to your PC as soon as possible. For information about these updates please visit: https://technet.microsoft.com/en-us/library/security/ms15-sep.aspx

Click on the Windows logo located on the lower left hand corner of your computer screen, a menu will appear, click on “Control Panel”.
Once in the Control Panel, type the words “windows update” in the Search Control Panel field located in the upper right hand corner. As you do, the following screen will immediately appear.

Now, in the upper left handle corner, click the words “check for update”. This screen will appear

Click the “Check for updates” button to begin the checking. The following screen will appear after the checking is completed. All Important Updates must be installed. Click the “Install updates” button to begin the installation. You will need to reboot your computer to finish the installation later.

Alternatively, if you are using Internet Explorer you can click on Tools > and select Windows Update to install the latest security patches.
For questions please call the Service Desk at 617-287-5220 or via email at ITServiceDesk@umb.edu.
News, Phishing, Security

PHISHING WALL OF SHAME – “Help Desk”

A trusted name doesn’t always mean trusted content!

If you ever fall victim to a phishing attack, your email account could be compromised by scammers. If this happens, your account can be used to send attacks to your contacts. Even if you see a familiar name in the “From:” field, it’s not a sure fire way to trust the message. Today’s Phishing Wall of Shame entry comes from Rose C. and Hannah L., who both were emailed by a faculty member they knew, but saw a message they didn’t trust:

phishing-stack6

Our two Security Stars knew the sender, but they knew him as a faculty member without any relation to the IT department. There was no reason to think that he should be informing them about an issue with their email.

The email has a link in it. IT Staff were able to investigate this link in a secure way, and saw it directed to a form requesting the user enter their email username and password. Trained IT Staff opened the file to take a picture, however you should avoid clicking a link in a suspicious email, because they could contain phishing attempts, malicious code, or illegal content and could cause harm to your computer. Here is what this link contained:

phishing browser1

The page that loaded is an amature looking form that is clearly not an official UMass Boston communication, however remember that in our last posting we learned to never rely on the incompetence of scammers to keep yourself safe! If you had filled in this form with your email and password, you can bet that your account would soon be sending out attack messages too, or worse!

If you are suspicious of a link, website, or email, you can contact the IT department to ask if it may be a scam. Forward a copy of a suspicious email to abuse@umb.edu.

Always remember…

Don’t take the bait! IT will NEVER ask you for your password. Phishing emails attempt to deceive​ you into giving up your private information by leading you to fraudulent websites. Learn more at:
http://www.umb.edu/it/getting_services/security/phishing/

 

News, Phishing, Security

Phishing Wall of Shame – “Office/365 Changes to Sign in”

A scam with flashy graphics!

Sometimes phishing attacks are obvious because the contents of the email are clearly not professional. However this is not a reliable way to catch scammers! Today’s Phishing Wall of Shame entry comes from Robyn A., who was savvy enough to sniff out this sophisticated scam. Here’s what it looked like:

phishing stack5

This is the most sophisticated email layout we’ve seen so far on the Phishing Wall of Shame series. It’s not perfect, but you can see that it wouldn’t have taken too much more work to make it look perfect.

Never rely on the incompetence of scammers to keep yourself safe!

So how did Robyn know this was a scam? The links that the email encourages users to click don’t lead to a URL that she recognized. When you hover your mouse cursor over a link, your browser shows the URL it leads to. If you expect to see “umb.edu” and don’t, this is a warning sign!

If you are suspicious of a link, website, or email, you can contact the IT department to ask if it may be a scam. Forward a copy of a suspicious email to abuse@umb.edu.

Always remember…

Don’t take the bait! IT will NEVER ask you for your password. Phishing emails attempt to deceive​ you into giving up your private information by leading you to fraudulent websites. Learn more at:
http://www.umb.edu/it/getting_services/security/phishing/

News, Update Notifications

Xythos update, and downtime notification: 7/22 – 7/23

The UMass Boston Document Management System, Xythos, will be down for a scheduled upgrade from July 22nd at 9:00AM until July 23rd at 5:00PM

IT Staff will be performing an upgrade to the Xythos document management, sharing, and collaboration system, to the latest version – 7.2.145. Xythos will be down from Wednesday July 22nd at 9:00AM until Thursday July 23rd at 5:00PM.
We apologize for the inconvenience.

If you have concerns accessing your files during that period,
please contact ITServicedesk@umb.edu or call 617-287-5220.

To learn more about Xythos file sharing, click here.

Visit the IT Status page for the latest updates: umb.edu/it/status

Update Notifications

Microsoft Security Patches [July 15, 2015]

On June 9th, 2015, Microsoft released security patches for:
  • Windows 8.1, 8, 7, Vista RT, RT8.1
  • Windows servers 2012, 2008, 2003
  • Microsoft Office 2013, 2010, 2007
We strongly encourage you to apply these patches to your PC as soon as possible. For information about these updates please visit: https://technet.microsoft.com/en-us/library/security/ms15-jul.aspx
Click on the Windows logo located on the lower left hand corner of your computer screen, a menu will appear, click on “Control Panel”.
Once in the Control Panel, type the words “windows update” in the Search Control Panel field located in the upper right hand corner. As you do, the following screen will immediately appear.

Now, in the upper left handle corner, click the words “check for update”. This screen will appear

Click the “Check for updates” button to begin the checking. The following screen will appear after the checking is completed. All Important Updates must be installed. Click the “Install updates” button to begin the installation. You will need to reboot your computer to finish the installation later.

Alternatively, if you are using Internet Explorer you can click on Tools > and select Windows Update to install the latest security patches.
For questions please call the Service Desk at 617-287-5220 or via email at ITServiceDesk@umb.edu.