IT Security Alerts and Advisories 

Phishing for Passwords

There have been a number of recent email-based "phishing" attempts in which recipients are requested to provide their login credentials.  While many of these campaigns look obviously suspicious, some have been very carefully crafted so as to appear to be genuine.

Please be advised that IT Services will never request users to divulge their login information via email.  If you are the recipient of such an email request, please ignore it and delete it. 

If you suspect that you may have been a victim of such a phishing attempt, you should change your password immediately.

 For more information on phishing, see the following article entitled Anatomy of a Phishing Attempt.




Malvertising is a recently coined word for malicious advertising.

Malvertising makes use of advertising channels found on many legitimate sites to embed malicious code in advertisements.

Sites compromised with malvertising can lead to drive-by downloads where malicious programs are installed on the unsuspecting user’s computer.

Such malware can include Trojan programs used to steal credit card and banking information, or ransomware like CryptoWall.

Malvertising attacks are difficult to detect.

Some safety tips include:

 > Use a good anti-malware program on your computer 
 > Disable Flash and Java plug-ins in your browser
 > Don't be tricked by "scareware" ads directing you to click for further help 




Twitter Facebook Linkedin Flikr UFV on Google+ YouTube goUFV