Scammer compromised a YorkU email account and sent over 9900 phishing emails. Following through with the fraudulent link attached in email will result in compromise of personal information and potential financial loss. The Information Security team has taken action to remove the fraudulent messages. If you receive similar messages, please report […]
Announcement
Advisory Notice - Microsoft Office Remote Code Execution Vulnerability (CVE-2023-36884)
Microsoft recently disclosed a zero-day vulnerability (CVE-2023-36884) which is currently being exploited in the wild. Attackers are coercing users via social engineering phishing techniques into opening a specially-crafted Microsoft Office document that could result in remote code execution. Even though Microsoft Defender for O365 provides protection against attachments designed to exploit CVE-2023-36884, we ask the […]
Job Scam Alert - Executive Assistant/Administrative Assistant !!!
Here is another fake job scam that has been circulating today. […]
Upcoming Changes to the Phish Reporter Button
As of August 2nd, UIT is making changes to the current “Report Phishing” button in Outlook. Users will see the existing button with the “fish” icon be replaced by a new version that is integrated with new Microsoft email protection technologies. The new button has a different icon but works similarly and provides more immediate […]
Advisory Notice - OFAC sanctions and service restrictions
University Information Technology (UIT) is advising of current and upcoming changes to York-provided services Zoom and Duo (two-factor authentication) as a result of the situation in Ukraine. These services are now or will be unavailable to individuals attempting to authenticate from several countries and regions restricted by the Office of Foreign Assets Control (OFAC) — a financial intelligence […]
Cyber Security Advisory - Protecting against increased cyber threats
Russia’s invasion of Ukraine has resulted in an increase in global cyber threats. While there is no specific threat to York University, we would like to stress the importance of protecting your accounts, devices, and data. Protective steps include: Use multi-factor authentication with your accounts to help verify access. York’s Duo 2FA service is required […]
Job scam Alert - Bitcoin ATM Survey
Information Security has identified a job scam that advertises a phoney bitcoin job opportunity and encourages recipients to respond to an external email address. If you replied to the message, please: DO NOT REPLY TO ANY FURTHER MESSAGES RELATED TO THE SCAM Use the REPORT PHISHING button to report any additional messages related to the […]
Advisory Security Notice: Identity Theft
There is a confirmed Covid-19 phishing campaign targeting the York University Community. Members who have fallen for this scam could be a victim of identity theft.
Phish Alert - Maintenance Status Update
Phish Email with subject line "Maintenance Status Update" was spotted. Clicking on the link will redirect users to a phishing site on sibforms.com.
Duo Mobile App Getting a New Look
Duo will be rolling out a redesigned version of its mobile app for iOS and Android soon. Version 3 (Current) Version 4 What is […]
