[41460] in Resnet-Forum
Re: RESNET-L Digest - 1 Nov 2016 to 3 Nov 2016 (#2016-132)
daemon@ATHENA.MIT.EDU (Keith Bradley)
Mon Nov 7 10:28:35 2016
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary=001a1148bb6cfc741f0540b7aa26
Message-ID: <CAFRZGBF4V+5FxtxDwZgv9Q6Y5k1XY-5+fpJUHXVAZ+q0=qYAxQ@mail.gmail.com>
Date: Mon, 7 Nov 2016 10:27:34 -0500
Reply-To: Resnet Forum <RESNET-L@listserv.nd.edu>
From: Keith Bradley <keith.bradley@STONYBROOK.EDU>
To: RESNET-L@listserv.nd.edu
In-Reply-To: <RESNET-L%201611032300133191.86BC@LISTSERV.ND.EDU>
--001a1148bb6cfc741f0540b7aa26
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
https://it.stonybrook.edu/news/articles/be-alert-to-phishing-scams
We block zip files at server level, we support Cyber Security during Month
of October. Users are not admin's to their machines.
https://it.stonybrook.edu/services/it-security
*Keith J Bradley*
*Master of my Universe*
*Campus Residences*
*Stony Brook University*
Office: 631.632.4357
Cell: 631.300.5717
keith.bradley@stonybrook.edu
-
- Restorative - Achiever - Woo - Self-Assurance - Arranger
=E2=80=9CGive, even if you only have a little.=E2=80=9D The Buddha
<http://twitter.com/intent/tweet?text=3D%E2%80%9CGive%2C%20even%20if%20you%=
20only%20have%20a%20little.%E2%80%9D%20The%20Buddha.%20http%3A%2F%2Fwld.mn%=
2F1Lka5kx>
You should be a person inside the world with knowledge of your terrain. And
if you lock yourself into the 2,000-by-3,000-square-mile, lower-48 box of
the United States, you're going to be frustrated by its limitations. You
gotta think outside the box. Chuck D
[image: Stony Brook University Far Beyond] <http://www.stonybrook.edu/>
Do you know you can request, and track help requests at
service.stonybrook.edu
On Thu, Nov 3, 2016 at 11:00 PM, RESNET-L automatic digest system <
LISTSERV@listserv.nd.edu> wrote:
> There are 12 messages totaling 3474 lines in this issue.
>
> Topics of the day:
>
> 1. Email Scam Problems (12)
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ----------------------------------------------------------------------
>
> Date: Thu, 3 Nov 2016 13:42:17 +0000
> From: "Rizzo, Jim" <JRIZZO@PROVIDENCE.EDU>
> Subject: Email Scam Problems
>
> Hey all,
>
> We=E2=80=99re having serious issues with phishing and email scams. In fac=
t, we
> seem to have been hit with a zero-day ransomware virus that encrypted a
> whole bunch of files on a couple people=E2=80=99s computers and network d=
rives. The
> network drives can be restored from the last good backup. The local files
> seem to be a lost cause.
>
> Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people ab=
out these
> types of problems? The ransomware issue was related to actually clicking =
on
> a bad attachment (and seems to have required downloading a zip file and
> unzipping it and then running the VBS file contained within). Phishing is
> just that. People seem to have no problem sharing their passwords. We
> fairly regularly send emails to the campus about suspicious email message=
s,
> unexpected attachments, and messages asking people to share their
> passwords. They seem to fall on deaf ears/eyes. The same people read thos=
e
> emails, and it=E2=80=99s not the people who need to be taking the message=
to heart.
>
> Looking for any ideas here. If you have a webpage about it, please share
> the link. If you send emails, please share the text of the email.
>
> Thanks!
> Jim
>
> --
> Jim Rizzo
> Helpdesk Manager
> Providence College Information Technology
> (401) 865-1277
>
> http://www.providence.edu/helpdesk
> http://www.providence.edu/ihelp
>
> Like us on Facebook!
> http://www.facebook.com/ProvCollHelpDesk
>
> Follow us on Twitter!
> http://twitter.com/PCITHelpdesk
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> __________________________________________________
>
> ------------------------------
>
> Date: Thu, 3 Nov 2016 13:52:03 +0000
> From: Jack Vizelter <jack@MAIL.ROCKEFELLER.EDU>
> Subject: Re: Email Scam Problems
>
> We block zip files and other known bad attachments on the server end.
>
> We do outreach campaigns every few months about security, phishing, etc..
>
> We do phishing tests to several groups at a time.
>
> In our signature file from our main IT email account, we have a note that
> IT will never ask for passwords, never give it out.
>
> Should someone fall prey, they need to meet with our InfoSec team and fil=
l
> out a questionnaire.
>
>
> From: Resnet Forum [mailto:RESNET-L@LISTSERV.ND.EDU] On Behalf Of Rizzo,
> Jim
> Sent: Thursday, November 3, 2016 9:42 AM
> To: RESNET-L@LISTSERV.ND.EDU
> Subject: Email Scam Problems
>
> Hey all,
>
> We=E2=80=99re having serious issues with phishing and email scams. In fac=
t, we
> seem to have been hit with a zero-day ransomware virus that encrypted a
> whole bunch of files on a couple people=E2=80=99s computers and network d=
rives. The
> network drives can be restored from the last good backup. The local files
> seem to be a lost cause.
>
> Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people ab=
out these
> types of problems? The ransomware issue was related to actually clicking =
on
> a bad attachment (and seems to have required downloading a zip file and
> unzipping it and then running the VBS file contained within). Phishing is
> just that. People seem to have no problem sharing their passwords. We
> fairly regularly send emails to the campus about suspicious email message=
s,
> unexpected attachments, and messages asking people to share their
> passwords. They seem to fall on deaf ears/eyes. The same people read thos=
e
> emails, and it=E2=80=99s not the people who need to be taking the message=
to heart.
>
> Looking for any ideas here. If you have a webpage about it, please share
> the link. If you send emails, please share the text of the email.
>
> Thanks!
> Jim
>
> --
> Jim Rizzo
> Helpdesk Manager
> Providence College Information Technology
> (401) 865-1277
>
> http://www.providence.edu/helpdesk
> http://www.providence.edu/ihelp
>
> Like us on Facebook!
> http://www.facebook.com/ProvCollHelpDesk
>
> Follow us on Twitter!
> http://twitter.com/PCITHelpdesk
> ___________________________________________________ You are subscribed to
> the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives, go to
> http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> _______________________________
>
> ------------------------------
>
> Date: Thu, 3 Nov 2016 09:53:42 -0400
> From: "Gaynor, Suzanne" <gaynors@HARTWICK.EDU>
> Subject: Re: Email Scam Problems
>
> I hope the responses will be shared with the group. We have been lucky to
> avoid ransomware but people fall for phishing scams regularly. I had one
> employee who took an email out of her spam folder and responded to it, an=
d
> a coach who fell for one and his account used which resulted in almost th=
e
> whole team falling for it. I have a part in new employee orientation and =
I
> focus on this issue but we are not immune. Also did a workshop for our
> Staff Council on the topic. 10 people attended. : ( I have read abou=
t
> companies who do fake phishing schemes to see who falls for them and uses
> the results for education. Not sure how I feel about that.
>
> Suzanne
>
> Suzanne Gaynor
> Director, Technology Resource Center
> Hartwick College
> gaynors@hartwick.edu
> 607-431-4670
>
> On Thu, Nov 3, 2016 at 9:42 AM, Rizzo, Jim <JRIZZO@providence.edu> wrote:
>
> > Hey all,
> >
> >
> >
> > We=E2=80=99re having serious issues with phishing and email scams. In f=
act, we
> > seem to have been hit with a zero-day ransomware virus that encrypted a
> > whole bunch of files on a couple people=E2=80=99s computers and network=
drives.
> The
> > network drives can be restored from the last good backup. The local fil=
es
> > seem to be a lost cause.
> >
> >
> >
> > Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people =
about
> these
> > types of problems? The ransomware issue was related to actually clickin=
g
> on
> > a bad attachment (and seems to have required downloading a zip file and
> > unzipping it and then running the VBS file contained within). Phishing =
is
> > just that. People seem to have no problem sharing their passwords. We
> > fairly regularly send emails to the campus about suspicious email
> messages,
> > unexpected attachments, and messages asking people to share their
> > passwords. They seem to fall on deaf ears/eyes. The same people read
> those
> > emails, and it=E2=80=99s not the people who need to be taking the messa=
ge to
> heart.
> >
> >
> >
> > Looking for any ideas here. If you have a webpage about it, please shar=
e
> > the link. If you send emails, please share the text of the email.
> >
> >
> >
> > Thanks!
> >
> > Jim
> >
> >
> >
> > --
> >
> > Jim Rizzo
> >
> > Helpdesk Manager
> >
> > Providence College Information Technology
> >
> > (401) 865-1277
> >
> >
> >
> > http://www.providence.edu/helpdesk
> >
> > *http://www.providence.edu/ihelp <http://www.providence.edu/ihelp>*
> >
> >
> >
> > Like us on Facebook!
> >
> > http://www.facebook.com/ProvCollHelpDesk
> >
> >
> >
> > Follow us on Twitter!
> >
> > http://twitter.com/PCITHelpdesk
> > ___________________________________________________ You are subscribed
> to
> > the ResNet-L mailing list.
> >
> > To subscribe, unsubscribe or search the archives, go to
> > http://LISTSERV.ND.EDU/archives/resnet-l.html
> > ___________________________________________________
> >
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ------------------------------
>
> Date: Thu, 3 Nov 2016 14:00:21 +0000
> From: "Richard Musal (ITS)" <richard.musal@MANHATTAN.EDU>
> Subject: Re: Email Scam Problems
>
> Blog posts mostly.
>
> On Thu, Nov 3, 2016 at 6:42 AM Rizzo, Jim <JRIZZO@providence.edu> wrote:
>
> > Hey all,
> >
> >
> >
> > We=E2=80=99re having serious issues with phishing and email scams. In f=
act, we
> > seem to have been hit with a zero-day ransomware virus that encrypted a
> > whole bunch of files on a couple people=E2=80=99s computers and network=
drives.
> The
> > network drives can be restored from the last good backup. The local fil=
es
> > seem to be a lost cause.
> >
> >
> >
> > Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people =
about
> these
> > types of problems? The ransomware issue was related to actually clickin=
g
> on
> > a bad attachment (and seems to have required downloading a zip file and
> > unzipping it and then running the VBS file contained within). Phishing =
is
> > just that. People seem to have no problem sharing their passwords. We
> > fairly regularly send emails to the campus about suspicious email
> messages,
> > unexpected attachments, and messages asking people to share their
> > passwords. They seem to fall on deaf ears/eyes. The same people read
> those
> > emails, and it=E2=80=99s not the people who need to be taking the messa=
ge to
> heart.
> >
> >
> >
> > Looking for any ideas here. If you have a webpage about it, please shar=
e
> > the link. If you send emails, please share the text of the email.
> >
> >
> >
> > Thanks!
> >
> > Jim
> >
> >
> >
> > --
> >
> > Jim Rizzo
> >
> > Helpdesk Manager
> >
> > Providence College Information Technology
> >
> > (401) 865-1277
> >
> >
> >
> > http://www.providence.edu/helpdesk
> >
> > *http://www.providence.edu/ihelp <http://www.providence.edu/ihelp>*
> >
> >
> >
> > Like us on Facebook!
> >
> > http://www.facebook.com/ProvCollHelpDesk
> >
> >
> >
> > Follow us on Twitter!
> >
> > http://twitter.com/PCITHelpdesk
> > ___________________________________________________ You are subscribed
> to
> > the ResNet-L mailing list.
> >
> > To subscribe, unsubscribe or search the archives, go to
> > http://LISTSERV.ND.EDU/archives/resnet-l.html
> > ___________________________________________________
> >
> --
>
> -----------------------
>
> *Richard A. Musal, M.A., M.S., P.D.*
>
> *Associate Director of Client Services & Operations, ITS*
>
> Riverdale, NY 10471
>
> Phone: 718-862-7933
>
> richard.musal@manhattan.edu <richard.musal@manhattan.edu?src=3Dinbox>
>
> www.manhattan.edu
>
> <http://itsblog.manhattan.edu/>
>
> <http://manhattan.edu/its>
>
> *-Have a question? * Check our Knowledge Base
> <https://manhattan.teamdynamix.com/TDClient/KB/Default>
>
> Check on your tickets here
> <https://manhattan.teamdynamix.com/TDClient/Requests/TicketRequests/>.
>
> Have you transitioned to Drive yet? Learn more here
> <http://itsblog.manhattan.edu/p/google-drive-one-place-to-create.html> or
> ask ITS.
>
> Click here
> <https://manhattan.teamdynamix.com/TDClient/KB/Default?CategoryID=3D1022>
> for
> instructions on how to transition.
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ------------------------------
>
> Date: Thu, 3 Nov 2016 14:00:27 +0000
> From: Bruce Vieweg <bvieweg@CORD.EDU>
> Subject: Re: Email Scam Problems
>
> Jim,
>
>
> 1. I send occasion messages to the community, and always include th=
e
> following at the bottom: Please remember: ITS will NEVER ask for your
> log-in information. The only exception is NEVER. If you do receive such=
a
> request, please bring it to my attention immediately
>
> 2. We have a relationship with KnowBe4 . . . and do occasional
> phishing =E2=80=98tests=E2=80=99 across the community . . . actually one =
is running right
> now
>
> 3. We make on-line training available from KnowBe4 . . . it has bee=
n
> very well received and is accessed by a substantial portion of our commun=
ity
>
> 4. We have recently deployed Vipre . . . which has been highly
> successful, although not perfect, at =E2=80=98removing=E2=80=99 bad links=
in such e-mails
>
> 5. I occasionally will send a =E2=80=98warning=E2=80=99 about a kno=
wn =E2=80=9Cphishing=E2=80=9D
> attempt that we received . . . =E2=80=9CWatch out for . . . =E2=80=9C kin=
d of message.
>
> This is tough stuff and requires way too much of our limited resources to
> manage . . . however, the world is the world. Criminals, sadly, abound.
>
> Good luck,
>
> Bruce
>
> Bruce W. Vieweg
> Associate Vice President for Academic Affairs
> Chief Information Officer
> Concordia College
> 901 8th Street S.
> Moorhead, MN 56562
> 218-299-4737
>
> The purpose of Concordia College is to influence the affairs of the world
> by sending
> into society thoughtful and informed men and women dedicated to the
> Christian life.
>
> Please remember: ITS will NEVER ask for your log-in information. The onl=
y
> exception is NEVER. If you do receive such a request, please bring it to
> my attention immediately.
>
>
>
> From: Resnet Forum [mailto:RESNET-L@LISTSERV.ND.EDU] On Behalf Of Rizzo,
> Jim
> Sent: Thursday, November 3, 2016 8:42 AM
> To: RESNET-L@LISTSERV.ND.EDU
> Subject: Email Scam Problems
>
> Hey all,
>
> We=E2=80=99re having serious issues with phishing and email scams. In fac=
t, we
> seem to have been hit with a zero-day ransomware virus that encrypted a
> whole bunch of files on a couple people=E2=80=99s computers and network d=
rives. The
> network drives can be restored from the last good backup. The local files
> seem to be a lost cause.
>
> Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people ab=
out these
> types of problems? The ransomware issue was related to actually clicking =
on
> a bad attachment (and seems to have required downloading a zip file and
> unzipping it and then running the VBS file contained within). Phishing is
> just that. People seem to have no problem sharing their passwords. We
> fairly regularly send emails to the campus about suspicious email message=
s,
> unexpected attachments, and messages asking people to share their
> passwords. They seem to fall on deaf ears/eyes. The same people read thos=
e
> emails, and it=E2=80=99s not the people who need to be taking the message=
to heart.
>
> Looking for any ideas here. If you have a webpage about it, please share
> the link. If you send emails, please share the text of the email.
>
> Thanks!
> Jim
>
> --
> Jim Rizzo
> Helpdesk Manager
> Providence College Information Technology
> (401) 865-1277
>
> http://www.providence.edu/helpdesk
> http://www.providence.edu/ihelp
>
> Like us on Facebook!
> http://www.facebook.com/ProvCollHelpDesk
>
> Follow us on Twitter!
> http://twitter.com/PCITHelpdesk
> ___________________________________________________ You are subscribed to
> the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives, go to
> http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> _______
>
> ------------------------------
>
> Date: Thu, 3 Nov 2016 09:15:59 -0500
> From: Lynn Boyce <lboyce@USAO.EDU>
> Subject: Re: Email Scam Problems
>
> We also have an account with Knowbe4. We are about to start running an
> online training session for all faculty and staff. The price was very
> reasonable as we just recovered our files from someone who clicked on a
> link, and encrypted our entire file server. Of course it's backed up qui=
te
> often, but still took most of the day to recover everything.
>
>
>
> Lynn
>
>
>
> J. Lynn Boyce
>
> Vice President
>
> Information Services and Technology
>
> University of Science and Arts of Oklahoma
>
> <http://www.usao.edu> http://www.usao.edu
>
> <mailto:lboyce@usao.edu> lboyce@usao.edu
>
> 1727 W. Alabama
>
> Chickasha, OK 73018
>
> 405.224.3140 (voice)
>
> 405.574.1220 (fax)
>
>
>
> Information Services will never ask for your password. Never email your
> password to anyone!
>
>
>
> This e-mail (including any attachments) is for the sole use of the intend=
ed
> recipient(s) and may contain information that is confidential and/or
> protected by legal privilege. Any unauthorized review, use, copy,
> disclosure
> or distribution of this e-mail is strictly prohibited. If you are not the
> intended recipient, please notify the appropriate party at USAO, and
> immediately destroy all copies of this e-mail. USAO does not accept any
> liability for breach of security, error or virus that may result from the
> transmission of this message.
>
>
>
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ------------------------------
>
> Date: Thu, 3 Nov 2016 09:46:14 -0400
> From: Jeremy Mlazovsky <jmlazovsky1@UDAYTON.EDU>
> Subject: Re: Email Scam Problems
>
> Some of our folks in central IT have been very aggressive in educating th=
e
> campus community about issues like this.
>
> You can read more about it here:
> https://www.udayton.edu/blogs/udit/wiredflyer/2016/becoming_
> cybermindful_in_2016.php
>
> It has been surprisingly effective.
>
>
> Thank you.
>
> Jeremy Mlazovsky '02
> Director of Information Technology
> College of Arts and Sciences
> University of Dayton
> 300 College Park
> Dayton, Ohio 45469-2206
> 937-229-2166
>
> Leadership UD 2009
>
> http://www.udayton.edu/artssciences/casit/
>
> Please contact the UDit Call Center (937-229-3888) for service requests.
>
> On Thu, Nov 3, 2016 at 9:42 AM, Rizzo, Jim <JRIZZO@providence.edu> wrote:
>
> > Hey all,
> >
> >
> >
> > We=E2=80=99re having serious issues with phishing and email scams. In f=
act, we
> > seem to have been hit with a zero-day ransomware virus that encrypted a
> > whole bunch of files on a couple people=E2=80=99s computers and network=
drives.
> The
> > network drives can be restored from the last good backup. The local fil=
es
> > seem to be a lost cause.
> >
> >
> >
> > Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people =
about
> these
> > types of problems? The ransomware issue was related to actually clickin=
g
> on
> > a bad attachment (and seems to have required downloading a zip file and
> > unzipping it and then running the VBS file contained within). Phishing =
is
> > just that. People seem to have no problem sharing their passwords. We
> > fairly regularly send emails to the campus about suspicious email
> messages,
> > unexpected attachments, and messages asking people to share their
> > passwords. They seem to fall on deaf ears/eyes. The same people read
> those
> > emails, and it=E2=80=99s not the people who need to be taking the messa=
ge to
> heart.
> >
> >
> >
> > Looking for any ideas here. If you have a webpage about it, please shar=
e
> > the link. If you send emails, please share the text of the email.
> >
> >
> >
> > Thanks!
> >
> > Jim
> >
> >
> >
> > --
> >
> > Jim Rizzo
> >
> > Helpdesk Manager
> >
> > Providence College Information Technology
> >
> > (401) 865-1277
> >
> >
> >
> > http://www.providence.edu/helpdesk
> >
> > *http://www.providence.edu/ihelp <http://www.providence.edu/ihelp>*
> >
> >
> >
> > Like us on Facebook!
> >
> > http://www.facebook.com/ProvCollHelpDesk
> >
> >
> >
> > Follow us on Twitter!
> >
> > http://twitter.com/PCITHelpdesk
> > ___________________________________________________ You are subscribed
> to
> > the ResNet-L mailing list.
> >
> > To subscribe, unsubscribe or search the archives, go to
> > http://LISTSERV.ND.EDU/archives/resnet-l.html
> > ___________________________________________________
> >
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ------------------------------
>
> Date: Thu, 3 Nov 2016 14:46:48 +0000
> From: "Richard Musal (ITS)" <richard.musal@MANHATTAN.EDU>
> Subject: Re: Email Scam Problems
>
> We also add to signatures for ticketing and our emails about guarding
> passwords. You can see ours below.
>
> On Thu, Nov 3, 2016 at 7:00 AM Richard Musal (ITS) <
> richard.musal@manhattan.edu> wrote:
>
> > Blog posts mostly.
> >
> >
> > On Thu, Nov 3, 2016 at 6:42 AM Rizzo, Jim <JRIZZO@providence.edu> wrote=
:
> >
> > Hey all,
> >
> >
> >
> > We=E2=80=99re having serious issues with phishing and email scams. In f=
act, we
> > seem to have been hit with a zero-day ransomware virus that encrypted a
> > whole bunch of files on a couple people=E2=80=99s computers and network=
drives.
> The
> > network drives can be restored from the last good backup. The local fil=
es
> > seem to be a lost cause.
> >
> >
> >
> > Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people =
about
> these
> > types of problems? The ransomware issue was related to actually clickin=
g
> on
> > a bad attachment (and seems to have required downloading a zip file and
> > unzipping it and then running the VBS file contained within). Phishing =
is
> > just that. People seem to have no problem sharing their passwords. We
> > fairly regularly send emails to the campus about suspicious email
> messages,
> > unexpected attachments, and messages asking people to share their
> > passwords. They seem to fall on deaf ears/eyes. The same people read
> those
> > emails, and it=E2=80=99s not the people who need to be taking the messa=
ge to
> heart.
> >
> >
> >
> > Looking for any ideas here. If you have a webpage about it, please shar=
e
> > the link. If you send emails, please share the text of the email.
> >
> >
> >
> > Thanks!
> >
> > Jim
> >
> >
> >
> > --
> >
> > Jim Rizzo
> >
> > Helpdesk Manager
> >
> > Providence College Information Technology
> >
> > (401) 865-1277
> >
> >
> >
> > http://www.providence.edu/helpdesk
> >
> > *http://www.providence.edu/ihelp <http://www.providence.edu/ihelp>*
> >
> >
> >
> > Like us on Facebook!
> >
> > http://www.facebook.com/ProvCollHelpDesk
> >
> >
> >
> > Follow us on Twitter!
> >
> > http://twitter.com/PCITHelpdesk
> > ___________________________________________________ You are subscribed
> to
> > the ResNet-L mailing list.
> >
> > To subscribe, unsubscribe or search the archives, go to
> > http://LISTSERV.ND.EDU/archives/resnet-l.html
> > ___________________________________________________
> >
> > --
> >
> > -----------------------
> >
> > *Richard A. Musal, M.A., M.S., P.D.*
> >
> > *Associate Director of Client Services & Operations, ITS*
> >
> > Riverdale, NY 10471
> >
> > Phone: 718-862-7933 <(718)%20862-7933>
> >
> > richard.musal@manhattan.edu <richard.musal@manhattan.edu?src=3Dinbox>
> >
> > www.manhattan.edu
> >
> > <http://itsblog.manhattan.edu/>
> >
> > <http://manhattan.edu/its>
> >
> > *-Have a question? * Check our Knowledge Base
> > <https://manhattan.teamdynamix.com/TDClient/KB/Default>
> >
> > Check on your tickets here
> > <https://manhattan.teamdynamix.com/TDClient/Requests/TicketRequests/>.
> >
> > Have you transitioned to Drive yet? Learn more here
> > <http://itsblog.manhattan.edu/p/google-drive-one-place-to-create.html>
> or
> > ask ITS.
> >
> > Click here
> > <https://manhattan.teamdynamix.com/TDClient/KB/Default?CategoryID=3D102=
2>
> for
> > instructions on how to transition.
> >
> --
>
> -----------------------
>
> *Richard A. Musal, M.A., M.S., P.D.*
>
> *Associate Director of Client Services & Operations, ITS*
>
> Riverdale, NY 10471
>
> Phone: 718-862-7933
>
> richard.musal@manhattan.edu <richard.musal@manhattan.edu?src=3Dinbox>
>
> www.manhattan.edu
>
> <http://itsblog.manhattan.edu/>
>
> <http://manhattan.edu/its>
>
> *-Have a question? * Check our Knowledge Base
> <https://manhattan.teamdynamix.com/TDClient/KB/Default>
>
> Check on your tickets here
> <https://manhattan.teamdynamix.com/TDClient/Requests/TicketRequests/>.
>
> Have you transitioned to Drive yet? Learn more here
> <http://itsblog.manhattan.edu/p/google-drive-one-place-to-create.html> or
> ask ITS.
>
> Click here
> <https://manhattan.teamdynamix.com/TDClient/KB/Default?CategoryID=3D1022>
> for
> instructions on how to transition.
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ------------------------------
>
> Date: Thu, 3 Nov 2016 15:03:40 +0000
> From: "Rizzo, Jim" <JRIZZO@PROVIDENCE.EDU>
> Subject: Re: Email Scam Problems
>
> Do you block all zip files?
>
> Jim
>
> --
> Jim Rizzo
> Helpdesk Manager
> Providence College Information Technology
> (401) 865-1277
>
> http://www.providence.edu/helpdesk
> http://www.providence.edu/ihelp
>
> Like us on Facebook!
> http://www.facebook.com/ProvCollHelpDesk
>
> Follow us on Twitter!
> http://twitter.com/PCITHelpdesk
>
> From: Resnet Forum <RESNET-L@LISTSERV.ND.EDU> on behalf of Jack Vizelter =
<
> jack@MAIL.ROCKEFELLER.EDU>
> Reply-To: Resnet Forum <RESNET-L@LISTSERV.ND.EDU>
> Date: Thursday, November 3, 2016 at 9:52 AM
> To: Resnet Forum <RESNET-L@LISTSERV.ND.EDU>
> Subject: Re: [RESNET-L] Email Scam Problems
>
> We block zip files and other known bad attachments on the server end.
>
> We do outreach campaigns every few months about security, phishing, etc..
>
> We do phishing tests to several groups at a time.
>
> In our signature file from our main IT email account, we have a note that
> IT will never ask for passwords, never give it out.
>
> Should someone fall prey, they need to meet with our InfoSec team and fil=
l
> out a questionnaire.
>
>
> From: Resnet Forum [mailto:RESNET-L@LISTSERV.ND.EDU] On Behalf Of Rizzo,
> Jim
> Sent: Thursday, November 3, 2016 9:42 AM
> To: RESNET-L@LISTSERV.ND.EDU
> Subject: Email Scam Problems
>
> Hey all,
>
> We=E2=80=99re having serious issues with phishing and email scams. In fac=
t, we
> seem to have been hit with a zero-day ransomware virus that encrypted a
> whole bunch of files on a couple people=E2=80=99s computers and network d=
rives. The
> network drives can be restored from the last good backup. The local files
> seem to be a lost cause.
>
> Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people ab=
out these
> types of problems? The ransomware issue was related to actually clicking =
on
> a bad attachment (and seems to have required downloading a zip file and
> unzipping it and then running the VBS file contained within). Phishing is
> just that. People seem to have no problem sharing their passwords. We
> fairly regularly send emails to the campus about suspicious email message=
s,
> unexpected attachments, and messages asking people to share their
> passwords. They seem to fall on deaf ears/eyes. The same people read thos=
e
> emails, and it=E2=80=99s not the people who need to be taking the message=
to heart.
>
> Looking for any ideas here. If you have a webpage about it, please share
> the link. If you send emails, please share the text of the email.
>
> Thanks!
> Jim
>
> --
> Jim Rizzo
> Helpdesk Manager
> Providence College Information Technology
> (401) 865-1277
>
> http://www.providence.edu/helpdesk
> http://www.providence.edu/ihelp
>
> Like us on Facebook!
> http://www.facebook.com/ProvCollHelpDesk
>
> Follow us on Twitter!
> http://twitter.com/PCITHelpdesk
> ___________________________________________________ You are subscribed to
> the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives, go to
> http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
> ___________________________________________________ You are subscribed to
> the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives, go to
> http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> __________
>
> ------------------------------
>
> Date: Thu, 3 Nov 2016 10:11:11 -0500
> From: Becky Klein <becky.klein@VALPO.EDU>
> Subject: Re: Email Scam Problems
>
> Here at Valpo, we do several things to help educate our community about
> cyber threats.
>
> ~ First, we use GSuite for email/collaboration. So Gmail automatically
> blocks a lot of the offending things (such as .exe files), and has great
> spam filtering. We try to teach people how to use the "report spam" and
> "report phishing" tools within Gmail to help filter the bad stuff out tha=
t
> does slip through.
>
> ~ When we start receiving numerous identical reports of phishing scams
> circulating campus, we send a campus-wide email reminding people to not
> share their login information. It usually includes a description of the
> current scam and points out indicators that show it's not legitimate. (I
> can forward one of the more recent examples if that would be helpful.)
> Over the years we've had a lot of people fall victim, from international
> students all the way up to high-ranking administrators. Since we started
> emailing campus though (which is probably 3-4 years ago now), the number =
of
> victims has dropped dramatically. We have a couple YouTube videos about
> how to recognize phishing and how to recover from falling victim, and we
> share those with people to help educate them (both those who are victims,
> and proactively in our messaging).
> Phishing awareness: https://youtu.be/ZCYsq0wunAM
> Recovering from phishing: https://youtu.be/5uRb5vmwYe0
>
> ~ For 4-5 years now, we've put together a campaign every October for
> National Cyber Security Awareness Month. I sign us up as a champion, and
> the campaign has now gotten pretty big: weekly campus-wide emails, daily
> social media posts, a special page on our website, workshops on campus on
> security topics (password management, avoiding malware/ransomware, etc),
> slides for our digital screens, posters distributed in all buildings on
> campus, table toppers in dining areas, buttons with the NCSAM logo (it's
> amazing how much students love these), customized workshops available for
> departments on request. This year I also initiated the "Crusader Cyber
> Citizen Pledge" (which I shamelessly stole from Florida State) outlining
> best practices to protect yourself, and promoted that pretty heavily -
> including a table in our student union with free candy to encourage peopl=
e
> to sign.
>
> ~ I also sign us up as a champion for Data Privacy Day each January, and
> craft a small campaign for that
>
> ~ For as long as I can remember (I've been on staff since '96 when I was
> still a student), we've given administrator rights to all users on their
> computers. A couple months ago we had a situation where a staff member i=
n
> one of the colleges installed a "registry cleaner" on her 2-week old camp=
us
> computer; of course it was ransomware in disguise. Since it cost 4 IT
> staff members a couple days' time, and affected the files of almost 200
> people on campus as it spread, we are now starting work on changing this
> policy to no longer give admin rights. It's going to include a campaign =
to
> let people know why we're making the change.
>
> ~ We also had a situation a couple months ago where a traveling advanceme=
nt
> officer got infected with ransomware while at a hotel. I gave a custom
> presentation to his entire department on how to protect yourself from cyb=
er
> threats while traveling.
>
> It seems that most people who fall victim are appropriately embarrassed a=
nd
> they don't tend to repeat their mistakes. They also end up being
> ambassadors to others in helping them to avoid the same thing happening t=
o
> them.
>
> What terrifies me the most is whether the scammers will start using my na=
me
> on their nefarious messages. I handle all the communications for the IT
> department, so people recognize and trust my name. (No pressure!!) If
> they start using my name, then it's game over - we'll end up with way too
> many victims.
>
> -Becky Klein
>
>
> On Thu, Nov 3, 2016 at 8:42 AM, Rizzo, Jim <JRIZZO@providence.edu> wrote:
>
> > Hey all,
> >
> >
> >
> > We=E2=80=99re having serious issues with phishing and email scams. In f=
act, we
> > seem to have been hit with a zero-day ransomware virus that encrypted a
> > whole bunch of files on a couple people=E2=80=99s computers and network=
drives.
> The
> > network drives can be restored from the last good backup. The local fil=
es
> > seem to be a lost cause.
> >
> >
> >
> > Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people =
about
> these
> > types of problems? The ransomware issue was related to actually clickin=
g
> on
> > a bad attachment (and seems to have required downloading a zip file and
> > unzipping it and then running the VBS file contained within). Phishing =
is
> > just that. People seem to have no problem sharing their passwords. We
> > fairly regularly send emails to the campus about suspicious email
> messages,
> > unexpected attachments, and messages asking people to share their
> > passwords. They seem to fall on deaf ears/eyes. The same people read
> those
> > emails, and it=E2=80=99s not the people who need to be taking the messa=
ge to
> heart.
> >
> >
> >
> > Looking for any ideas here. If you have a webpage about it, please shar=
e
> > the link. If you send emails, please share the text of the email.
> >
> >
> >
> > Thanks!
> >
> > Jim
> >
> >
> >
> > --
> >
> > Jim Rizzo
> >
> > Helpdesk Manager
> >
> > Providence College Information Technology
> >
> > (401) 865-1277
> >
> >
> >
> > http://www.providence.edu/helpdesk
> >
> > *http://www.providence.edu/ihelp <http://www.providence.edu/ihelp>*
> >
> >
> >
> > Like us on Facebook!
> >
> > http://www.facebook.com/ProvCollHelpDesk
> >
> >
> >
> > Follow us on Twitter!
> >
> > http://twitter.com/PCITHelpdesk
> > ___________________________________________________ You are subscribed
> to
> > the ResNet-L mailing list.
> >
> > To subscribe, unsubscribe or search the archives, go to
> > http://LISTSERV.ND.EDU/archives/resnet-l.html
> > ___________________________________________________
> >
>
>
>
> --
>
> Becky (Belmont '97) Klein
> <http://www.google.com/calendar/embed?src=3Dbecky.
> klein%40valpo.edu&ctz=3DAmerica/Chicago>
> Manager of IT Communications
> Valparaiso University
> Office of Information Technology
> Phone: 219.464.5986
> valpo.edu/it
>
> *New skills. Improved skills. Now. Login to Lynda.com
> <http://valpo.edu/r/lynda>!*
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ------------------------------
>
> Date: Thu, 3 Nov 2016 14:59:08 -0400
> From: Randy Kouns <randykouns@GMAIL.COM>
> Subject: Re: Email Scam Problems
>
> Hey Jim, been a while.... hope things are getting better for you... I a=
m
> no longer in Education side of IT but, still stay interested in the
> happenings... I have joined the municipal government field as the
> Director of IT for a city here in Indiana... one of our sub-government
> entities is currently using and I am planning of subscribing to the Knowb=
e4
> (www.knowbe4.com) service. They provide training video's that are then
> followed by an interactive email test...that tracks and records users who
> click links when they shouldn't so remedial training can be accomplished.
> the quote I have for this service is approximately $2200 per year for 500
> employees.
>
> Good luck with your issues.
>
> Randy Kouns
>
>
> On Thu, Nov 3, 2016 at 9:42 AM, Rizzo, Jim <JRIZZO@providence.edu> wrote:
>
> > Hey all,
> >
> >
> >
> > We=E2=80=99re having serious issues with phishing and email scams. In f=
act, we
> > seem to have been hit with a zero-day ransomware virus that encrypted a
> > whole bunch of files on a couple people=E2=80=99s computers and network=
drives.
> The
> > network drives can be restored from the last good backup. The local fil=
es
> > seem to be a lost cause.
> >
> >
> >
> > Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people =
about
> these
> > types of problems? The ransomware issue was related to actually clickin=
g
> on
> > a bad attachment (and seems to have required downloading a zip file and
> > unzipping it and then running the VBS file contained within). Phishing =
is
> > just that. People seem to have no problem sharing their passwords. We
> > fairly regularly send emails to the campus about suspicious email
> messages,
> > unexpected attachments, and messages asking people to share their
> > passwords. They seem to fall on deaf ears/eyes. The same people read
> those
> > emails, and it=E2=80=99s not the people who need to be taking the messa=
ge to
> heart.
> >
> >
> >
> > Looking for any ideas here. If you have a webpage about it, please shar=
e
> > the link. If you send emails, please share the text of the email.
> >
> >
> >
> > Thanks!
> >
> > Jim
> >
> >
> >
> > --
> >
> > Jim Rizzo
> >
> > Helpdesk Manager
> >
> > Providence College Information Technology
> >
> > (401) 865-1277
> >
> >
> >
> > http://www.providence.edu/helpdesk
> >
> > *http://www.providence.edu/ihelp <http://www.providence.edu/ihelp>*
> >
> >
> >
> > Like us on Facebook!
> >
> > http://www.facebook.com/ProvCollHelpDesk
> >
> >
> >
> > Follow us on Twitter!
> >
> > http://twitter.com/PCITHelpdesk
> > ___________________________________________________ You are subscribed
> to
> > the ResNet-L mailing list.
> >
> > To subscribe, unsubscribe or search the archives, go to
> > http://LISTSERV.ND.EDU/archives/resnet-l.html
> > ___________________________________________________
> >
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ------------------------------
>
> Date: Fri, 4 Nov 2016 00:41:28 +0000
> From: "Koerber, Jeff" <jkoerber@TOWSON.EDU>
> Subject: Re: Email Scam Problems
>
> I like the idea of Phishing our clients, but others seem to think people
> would take offense to it.
>
> Publicizing that your department never asks for passwords doesn't work
> because people don't see clicking on a link and getting a password prompt
> as you asking for their passwords.
>
> The phishing that we have been seeing lately is much more believable. No
> misspellings, duplicating our real login pages and even registering
> domains, such as Towson-edu.tk (which I have asked to be taken down twice
> since Saturday, and was still up yesterday). The last one asked recipient=
s
> to check their health records. I could see someone who just went to our
> health center falling for that one (we have been hit hard with the flu
> lately).
>
> We had a InfoSec event on Monday and at my booth, I was showing people
> what the last attack looked like asking them "would you log into this
> page?" Most didn't notice that the domain wasn't ours; one grabbed my pho=
ne
> and started to attempt logging in :).
>
> Jeff Koerber
> Supervisor, Student Computing Services Lab and Service Desk
> Towson University
> Towson, MD
>
> Sent from my iPhone
>
> On Nov 3, 2016, at 2:59 PM, Randy Kouns <randykouns@GMAIL.COM<mailto:r
> andykouns@GMAIL.COM>> wrote:
>
> Hey Jim, been a while.... hope things are getting better for you... I a=
m
> no longer in Education side of IT but, still stay interested in the
> happenings... I have joined the municipal government field as the
> Director of IT for a city here in Indiana... one of our sub-government
> entities is currently using and I am planning of subscribing to the Knowb=
e4
> (www.knowbe4.com<http://www.knowbe4.com>) service. They provide
> training video's that are then followed by an interactive email test...th=
at
> tracks and records users who click links when they shouldn't so remedial
> training can be accomplished. the quote I have for this service is
> approximately $2200 per year for 500 employees.
>
> Good luck with your issues.
>
> Randy Kouns
>
>
> On Thu, Nov 3, 2016 at 9:42 AM, Rizzo, Jim <JRIZZO@providence.edu<mailto:
> JRIZZO@providence.edu>> wrote:
> Hey all,
>
> We're having serious issues with phishing and email scams. In fact, we
> seem to have been hit with a zero-day ransomware virus that encrypted a
> whole bunch of files on a couple people's computers and network drives. T=
he
> network drives can be restored from the last good backup. The local files
> seem to be a lost cause.
>
> Anyway... How do you all inform, educate, scold, whatever people about
> these types of problems? The ransomware issue was related to actually
> clicking on a bad attachment (and seems to have required downloading a zi=
p
> file and unzipping it and then running the VBS file contained within).
> Phishing is just that. People seem to have no problem sharing their
> passwords. We fairly regularly send emails to the campus about suspicious
> email messages, unexpected attachments, and messages asking people to sha=
re
> their passwords. They seem to fall on deaf ears/eyes. The same people rea=
d
> those emails, and it's not the people who need to be taking the message t=
o
> heart.
>
> Looking for any ideas here. If you have a webpage about it, please share
> the link. If you send emails, please share the text of the email.
>
> Thanks!
> Jim
>
> --
> Jim Rizzo
> Helpdesk Manager
> Providence College Information Technology
> (401) 865-1277<tel:%28401%29%20865-1277>
>
> http://www.providence.edu/helpdesk
> http://www.providence.edu/ihelp
>
> Like us on Facebook!
> http://www.facebook.com/ProvCollHelpDesk
>
> Follow us on Twitter!
> http://twitter.com/PCITHelpdesk
> ___________________________________________________ You are subscribed to
> the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives, go to
> http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ___________________________________________________ You are subscribed to
> the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives, go to
> http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ___________________________________________________
> You are subscribed to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives,
> go to http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
> ------------------------------
>
> End of RESNET-L Digest - 1 Nov 2016 to 3 Nov 2016 (#2016-132)
> *************************************************************
>
___________________________________________________
You are subscribed to the ResNet-L mailing list.
To subscribe, unsubscribe or search the archives,
go to http://LISTSERV.ND.EDU/archives/resnet-l.html
___________________________________________________
--001a1148bb6cfc741f0540b7aa26
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
<div dir=3D"ltr"><div class=3D"gmail_default" style=3D"font-family:arial,he=
lvetica,sans-serif;font-size:small"><div class=3D"gmail_default" style=3D"f=
ont-family:arial,sans-serif"><font face=3D"arial, helvetica, sans-serif"><a=
href=3D"https://it.stonybrook.edu/news/articles/be-alert-to-phishing-scams=
">https://it.stonybrook.edu/news/articles/be-alert-to-phishing-scams</a></f=
ont><br clear=3D"all"></div><div class=3D"gmail_default" style=3D"font-fami=
ly:arial,sans-serif"><br></div><div class=3D"gmail_default" style=3D"font-f=
amily:arial,sans-serif">We block zip files at server level, we support Cybe=
r Security during =C2=A0Month of October.=C2=A0 Users are not admin's t=
o their machines.</div><div class=3D"gmail_default" style=3D"font-family:ar=
ial,sans-serif"><br></div><div class=3D"gmail_default" style=3D"font-family=
:arial,sans-serif"><a href=3D"https://it.stonybrook.edu/services/it-securit=
y">https://it.stonybrook.edu/services/it-security</a><br></div><div><br></d=
iv></div><div class=3D"gmail_extra"><br clear=3D"all"><div><div class=3D"gm=
ail_signature" data-smartmail=3D"gmail_signature"><div dir=3D"ltr"><div><di=
v dir=3D"ltr"><div><div dir=3D"ltr"><div dir=3D"ltr"><div dir=3D"ltr"><div =
dir=3D"ltr"><div dir=3D"ltr"><div dir=3D"ltr"><div dir=3D"ltr"><p style=3D"=
MARGIN:0in 0in 0pt"><span style=3D"color:rgb(35,35,35);font-family:Verdana;=
font-size:10px"><br></span></p><p style=3D"MARGIN:0in 0in 0pt"><br></p><p s=
tyle=3D"MARGIN:0in 0in 0.25in"><font size=3D"2"><b style=3D"color:rgb(153,1=
8,0);font-family:Verdana">Keith J Bradley</b><br></font></p><p style=3D"col=
or:rgb(0,0,0);margin:0px 0px 2px;font-stretch:normal;font-family:Verdana"><=
b><font size=3D"2">Master of my Universe</font></b></p><p style=3D"color:rg=
b(0,0,0);margin:0px 0px 2px;font-stretch:normal;font-family:Verdana"><b><fo=
nt size=3D"2">Campus Residences</font></b></p><p style=3D"color:rgb(0,0,0);=
margin:0px 0px 2px;font-stretch:normal;font-family:Verdana"><b><font size=
=3D"2">Stony Brook University</font></b></p><p style=3D"color:rgb(0,0,0);ma=
rgin:0px 0px 2px;font-stretch:normal;font-family:Verdana"><font size=3D"2">=
Office: 631.632.4357</font></p><p style=3D"color:rgb(0,0,0);margin:0px 0px =
2px;font-stretch:normal;font-family:Verdana"><font size=3D"2">Cell: 631.300=
.5717</font></p><p style=3D"color:rgb(0,0,0);margin:0px 0px 2px;font-stretc=
h:normal;font-family:Verdana"><font size=3D"2"><a href=3D"mailto:keith.brad=
ley@stonybrook.edu" target=3D"_blank">keith.bradley@stonybrook.edu</a></fon=
t></p><ul style=3D"margin-top:0px;margin-bottom:12px;padding:0px 5px;list-s=
tyle-type:none;color:rgb(43,43,43);font-family:aktiv-grotesk-std,Arial,Helv=
etica,sans-serif;line-height:24px"><li style=3D"font-size:16px;padding:12px=
15px;border-bottom:1px solid rgb(255,255,255)"><br></li><li style=3D"paddi=
ng:12px 15px;border-bottom:1px solid rgb(255,255,255)"><span style=3D"backg=
round-color:rgb(255,255,0)"><font size=3D"2">Restorative - Achiever - Woo -=
Self-Assurance - Arranger</font></span></li></ul><p style=3D"color:rgb(0,0=
,0);margin:0px 0px 2px;font-stretch:normal;font-size:10px;font-family:Verda=
na"><br></p><p style=3D"color:rgb(0,0,0);margin:0px 0px 2px;font-stretch:no=
rmal;font-size:10px;font-family:Verdana"><br></p><p style=3D"margin:0in 0in=
0.25in"><a href=3D"http://twitter.com/intent/tweet?text=3D%E2%80%9CGive%2C=
%20even%20if%20you%20only%20have%20a%20little.%E2%80%9D%20The%20Buddha.%20h=
ttp%3A%2F%2Fwld.mn%2F1Lka5kx" style=3D"border:0px none rgb(239,239,239);fon=
t-family:Lato,sans-serif;margin:0px;outline:0px;padding:0px;vertical-align:=
baseline;text-decoration:none;font-stretch:inherit;line-height:1" target=3D=
"_blank"><font size=3D"2" color=3D"#ff0000">=E2=80=9CGive, even if you only=
have a little.=E2=80=9D The Buddha</font></a><br></p><p style=3D"font-size=
:12.8px;margin:0in 0in 0.25in"><span style=3D"font-family:"Helvetica N=
eue",Helvetica,Arial,sans-serif;font-size:14px;line-height:20px"><font=
color=3D"#ff0000">You should be a person inside the world with knowledge o=
f your terrain. And if you lock yourself into the 2,000-by-3,000-square-mil=
e, lower-48 box of the United States, you're going to be frustrated by =
its limitations. You gotta think outside the box. Chuck D</font></span><br =
style=3D"color:rgb(51,51,51);font-family:"Helvetica Neue",Helveti=
ca,Arial,sans-serif;font-size:14px;line-height:20px"><br></p><div><font siz=
e=3D"4"><span style=3D"color:rgb(255,0,0);line-height:16px"><br></span></fo=
nt></div><p style=3D"color:rgb(0,0,0);margin:0px 0px 2px;font-stretch:norma=
l;font-size:10px;font-family:Verdana"><a href=3D"http://www.stonybrook.edu/=
" target=3D"_blank"><img src=3D"http://www.stonybrook.edu/sb/email/images/S=
BU_signature_FarBeyond.jpg" alt=3D"Stony Brook University Far Beyond"></a><=
/p><p style=3D"MARGIN:0in 0in 0.25in"><span style=3D"font-size:12.800000190=
7349px">Do you know you can request, and track help requests at=C2=A0</span=
><a href=3D"http://service.stonybrook.edu/" style=3D"color:rgb(17,85,204);f=
ont-size:12.8000001907349px" target=3D"_blank">service.stonybrook.edu</a><f=
ont size=3D"4"><span style=3D"color:rgb(255,0,0);font-family:arial,sans-ser=
if;line-height:16px;background-color:rgb(255,255,255)"><br></span></font></=
p></div></div></div></div></div></div></div></div></div></div></div></div><=
/div>
<br><div class=3D"gmail_quote">On Thu, Nov 3, 2016 at 11:00 PM, RESNET-L au=
tomatic digest system <span dir=3D"ltr"><<a href=3D"mailto:LISTSERV@list=
serv.nd.edu" target=3D"_blank">LISTSERV@listserv.nd.edu</a>></span> wrot=
e:<br><blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-l=
eft:1px #ccc solid;padding-left:1ex">There are 12 messages totaling 3474 li=
nes in this issue.<br>
<br>
Topics of the day:<br>
<br>
=C2=A0 1. Email Scam Problems (12)<br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
______________________________<wbr>_____________________<br>
<br>
------------------------------<wbr>------------------------------<wbr>-----=
-----<br>
<br>
Date:=C2=A0 =C2=A0 Thu, 3 Nov 2016 13:42:17 +0000<br>
From:=C2=A0 =C2=A0 "Rizzo, Jim" <<a href=3D"mailto:JRIZZO@PROV=
IDENCE.EDU">JRIZZO@PROVIDENCE.EDU</a>><br>
Subject: Email Scam Problems<br>
<br>
Hey all,<br>
<br>
We=E2=80=99re having serious issues with phishing and email scams. In fact,=
we seem to have been hit with a zero-day ransomware virus that encrypted a=
whole bunch of files on a couple people=E2=80=99s computers and network dr=
ives. The network drives can be restored from the last good backup. The loc=
al files seem to be a lost cause.<br>
<br>
Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people abou=
t these types of problems? The ransomware issue was related to actually cli=
cking on a bad attachment (and seems to have required downloading a zip fil=
e and unzipping it and then running the VBS file contained within). Phishin=
g is just that. People seem to have no problem sharing their passwords. We =
fairly regularly send emails to the campus about suspicious email messages,=
unexpected attachments, and messages asking people to share their password=
s. They seem to fall on deaf ears/eyes. The same people read those emails, =
and it=E2=80=99s not the people who need to be taking the message to heart.=
<br>
<br>
Looking for any ideas here. If you have a webpage about it, please share th=
e link. If you send emails, please share the text of the email.<br>
<br>
Thanks!<br>
Jim<br>
<br>
--<br>
Jim Rizzo<br>
Helpdesk Manager<br>
Providence College Information Technology<br>
<a href=3D"tel:%28401%29%20865-1277" value=3D"+14018651277">(401) 865-1277<=
/a><br>
<br>
<a href=3D"http://www.providence.edu/helpdesk" rel=3D"noreferrer" target=3D=
"_blank">http://www.providence.edu/<wbr>helpdesk</a><br>
<a href=3D"http://www.providence.edu/ihelp" rel=3D"noreferrer" target=3D"_b=
lank">http://www.providence.edu/<wbr>ihelp</a><br>
<br>
Like us on Facebook!<br>
<a href=3D"http://www.facebook.com/ProvCollHelpDesk" rel=3D"noreferrer" tar=
get=3D"_blank">http://www.facebook.com/<wbr>ProvCollHelpDesk</a><br>
<br>
Follow us on Twitter!<br>
<a href=3D"http://twitter.com/PCITHelpdesk" rel=3D"noreferrer" target=3D"_b=
lank">http://twitter.com/<wbr>PCITHelpdesk</a><br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
______________________________<wbr>____________________<br>
<br>
------------------------------<br>
<br>
Date:=C2=A0 =C2=A0 Thu, 3 Nov 2016 13:52:03 +0000<br>
From:=C2=A0 =C2=A0 Jack Vizelter <<a href=3D"mailto:jack@MAIL.ROCKEFELLE=
R.EDU">jack@MAIL.ROCKEFELLER.EDU</a>><br>
Subject: Re: Email Scam Problems<br>
<br>
We block zip files and other known bad attachments on the server end.<br>
<br>
We do outreach campaigns every few months about security, phishing, etc..<b=
r>
<br>
We do phishing tests to several groups at a time.<br>
<br>
In our signature file from our main IT email account, we have a note that I=
T will never ask for passwords, never give it out.<br>
<br>
Should someone fall prey, they need to meet with our InfoSec team and fill =
out a questionnaire.<br>
<br>
<br>
From: Resnet Forum [mailto:<a href=3D"mailto:RESNET-L@LISTSERV.ND.EDU">RESN=
ET-L@LISTSERV.ND.<wbr>EDU</a>] On Behalf Of Rizzo, Jim<br>
Sent: Thursday, November 3, 2016 9:42 AM<br>
To: <a href=3D"mailto:RESNET-L@LISTSERV.ND.EDU">RESNET-L@LISTSERV.ND.EDU</a=
><br>
Subject: Email Scam Problems<br>
<br>
Hey all,<br>
<br>
We=E2=80=99re having serious issues with phishing and email scams. In fact,=
we seem to have been hit with a zero-day ransomware virus that encrypted a=
whole bunch of files on a couple people=E2=80=99s computers and network dr=
ives. The network drives can be restored from the last good backup. The loc=
al files seem to be a lost cause.<br>
<br>
Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people abou=
t these types of problems? The ransomware issue was related to actually cli=
cking on a bad attachment (and seems to have required downloading a zip fil=
e and unzipping it and then running the VBS file contained within). Phishin=
g is just that. People seem to have no problem sharing their passwords. We =
fairly regularly send emails to the campus about suspicious email messages,=
unexpected attachments, and messages asking people to share their password=
s. They seem to fall on deaf ears/eyes. The same people read those emails, =
and it=E2=80=99s not the people who need to be taking the message to heart.=
<br>
<br>
Looking for any ideas here. If you have a webpage about it, please share th=
e link. If you send emails, please share the text of the email.<br>
<br>
Thanks!<br>
Jim<br>
<br>
--<br>
Jim Rizzo<br>
Helpdesk Manager<br>
Providence College Information Technology<br>
<a href=3D"tel:%28401%29%20865-1277" value=3D"+14018651277">(401) 865-1277<=
/a><br>
<br>
<a href=3D"http://www.providence.edu/helpdesk" rel=3D"noreferrer" target=3D=
"_blank">http://www.providence.edu/<wbr>helpdesk</a><br>
<a href=3D"http://www.providence.edu/ihelp" rel=3D"noreferrer" target=3D"_b=
lank">http://www.providence.edu/<wbr>ihelp</a><br>
<br>
Like us on Facebook!<br>
<a href=3D"http://www.facebook.com/ProvCollHelpDesk" rel=3D"noreferrer" tar=
get=3D"_blank">http://www.facebook.com/<wbr>ProvCollHelpDesk</a><br>
<br>
Follow us on Twitter!<br>
<a href=3D"http://twitter.com/PCITHelpdesk" rel=3D"noreferrer" target=3D"_b=
lank">http://twitter.com/<wbr>PCITHelpdesk</a><br>
______________________________<wbr>_____________________ You are subscribed=
to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives, go to <a href=3D"http://L=
ISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"noreferrer" target=3D"_blank"=
>http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.html</a> ___________________=
___________<wbr>_____________________<br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
______________________________<wbr>_<br>
<br>
------------------------------<br>
<br>
Date:=C2=A0 =C2=A0 Thu, 3 Nov 2016 09:53:42 -0400<br>
From:=C2=A0 =C2=A0 "Gaynor, Suzanne" <<a href=3D"mailto:gaynor=
s@HARTWICK.EDU">gaynors@HARTWICK.EDU</a>><br>
Subject: Re: Email Scam Problems<br>
<br>
I hope the responses will be shared with the group. We have been lucky to<b=
r>
avoid ransomware but people fall for phishing scams regularly. I had one<br=
>
employee who took an email out of her spam folder and responded to it, and<=
br>
a coach who fell for one and his account used which resulted in almost the<=
br>
whole team falling for it. I have a part in new employee orientation and I<=
br>
focus on this issue but we are not immune. Also did a workshop for our<br>
Staff Council on the topic. 10 people attended.=C2=A0 =C2=A0:=C2=A0 (=C2=A0=
=C2=A0I have read about<br>
companies who do fake phishing schemes to see who falls for them and uses<b=
r>
the results for education. Not sure how I feel about that.<br>
<br>
Suzanne<br>
<br>
Suzanne Gaynor<br>
Director, Technology Resource Center<br>
Hartwick College<br>
<a href=3D"mailto:gaynors@hartwick.edu">gaynors@hartwick.edu</a><br>
<a href=3D"tel:607-431-4670" value=3D"+16074314670">607-431-4670</a><br>
<br>
On Thu, Nov 3, 2016 at 9:42 AM, Rizzo, Jim <<a href=3D"mailto:JRIZZO@pro=
vidence.edu">JRIZZO@providence.edu</a>> wrote:<br>
<br>
> Hey all,<br>
><br>
><br>
><br>
> We=E2=80=99re having serious issues with phishing and email scams. In =
fact, we<br>
> seem to have been hit with a zero-day ransomware virus that encrypted =
a<br>
> whole bunch of files on a couple people=E2=80=99s computers and networ=
k drives. The<br>
> network drives can be restored from the last good backup. The local fi=
les<br>
> seem to be a lost cause.<br>
><br>
><br>
><br>
> Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people=
about these<br>
> types of problems? The ransomware issue was related to actually clicki=
ng on<br>
> a bad attachment (and seems to have required downloading a zip file an=
d<br>
> unzipping it and then running the VBS file contained within). Phishing=
is<br>
> just that. People seem to have no problem sharing their passwords. We<=
br>
> fairly regularly send emails to the campus about suspicious email mess=
ages,<br>
> unexpected attachments, and messages asking people to share their<br>
> passwords. They seem to fall on deaf ears/eyes. The same people read t=
hose<br>
> emails, and it=E2=80=99s not the people who need to be taking the mess=
age to heart.<br>
><br>
><br>
><br>
> Looking for any ideas here. If you have a webpage about it, please sha=
re<br>
> the link. If you send emails, please share the text of the email.<br>
><br>
><br>
><br>
> Thanks!<br>
><br>
> Jim<br>
><br>
><br>
><br>
> --<br>
><br>
> Jim Rizzo<br>
><br>
> Helpdesk Manager<br>
><br>
> Providence College Information Technology<br>
><br>
> <a href=3D"tel:%28401%29%20865-1277" value=3D"+14018651277">(401) 865-=
1277</a><br>
><br>
><br>
><br>
> <a href=3D"http://www.providence.edu/helpdesk" rel=3D"noreferrer" targ=
et=3D"_blank">http://www.providence.edu/<wbr>helpdesk</a><br>
><br>
> *<a href=3D"http://www.providence.edu/ihelp" rel=3D"noreferrer" target=
=3D"_blank">http://www.providence.edu/<wbr>ihelp</a> <<a href=3D"http://=
www.providence.edu/ihelp" rel=3D"noreferrer" target=3D"_blank">http://www.p=
rovidence.edu/<wbr>ihelp</a>>*<br>
><br>
><br>
><br>
> Like us on Facebook!<br>
><br>
> <a href=3D"http://www.facebook.com/ProvCollHelpDesk" rel=3D"noreferrer=
" target=3D"_blank">http://www.facebook.com/<wbr>ProvCollHelpDesk</a><br>
><br>
><br>
><br>
> Follow us on Twitter!<br>
><br>
> <a href=3D"http://twitter.com/PCITHelpdesk" rel=3D"noreferrer" target=
=3D"_blank">http://twitter.com/<wbr>PCITHelpdesk</a><br>
> ______________________________<wbr>_____________________ You are subsc=
ribed to<br>
> the ResNet-L mailing list.<br>
><br>
> To subscribe, unsubscribe or search the archives, go to<br>
> <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"noref=
errer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.html=
</a><br>
> ______________________________<wbr>_____________________<br>
><br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
______________________________<wbr>_____________________<br>
<br>
------------------------------<br>
<br>
Date:=C2=A0 =C2=A0 Thu, 3 Nov 2016 14:00:21 +0000<br>
From:=C2=A0 =C2=A0 "Richard Musal (ITS)" <<a href=3D"mailto:ri=
chard.musal@MANHATTAN.EDU">richard.musal@MANHATTAN.EDU</a>><br>
Subject: Re: Email Scam Problems<br>
<br>
Blog posts mostly.<br>
<br>
On Thu, Nov 3, 2016 at 6:42 AM Rizzo, Jim <<a href=3D"mailto:JRIZZO@prov=
idence.edu">JRIZZO@providence.edu</a>> wrote:<br>
<br>
> Hey all,<br>
><br>
><br>
><br>
> We=E2=80=99re having serious issues with phishing and email scams. In =
fact, we<br>
> seem to have been hit with a zero-day ransomware virus that encrypted =
a<br>
> whole bunch of files on a couple people=E2=80=99s computers and networ=
k drives. The<br>
> network drives can be restored from the last good backup. The local fi=
les<br>
> seem to be a lost cause.<br>
><br>
><br>
><br>
> Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people=
about these<br>
> types of problems? The ransomware issue was related to actually clicki=
ng on<br>
> a bad attachment (and seems to have required downloading a zip file an=
d<br>
> unzipping it and then running the VBS file contained within). Phishing=
is<br>
> just that. People seem to have no problem sharing their passwords. We<=
br>
> fairly regularly send emails to the campus about suspicious email mess=
ages,<br>
> unexpected attachments, and messages asking people to share their<br>
> passwords. They seem to fall on deaf ears/eyes. The same people read t=
hose<br>
> emails, and it=E2=80=99s not the people who need to be taking the mess=
age to heart.<br>
><br>
><br>
><br>
> Looking for any ideas here. If you have a webpage about it, please sha=
re<br>
> the link. If you send emails, please share the text of the email.<br>
><br>
><br>
><br>
> Thanks!<br>
><br>
> Jim<br>
><br>
><br>
><br>
> --<br>
><br>
> Jim Rizzo<br>
><br>
> Helpdesk Manager<br>
><br>
> Providence College Information Technology<br>
><br>
> <a href=3D"tel:%28401%29%20865-1277" value=3D"+14018651277">(401) 865-=
1277</a><br>
><br>
><br>
><br>
> <a href=3D"http://www.providence.edu/helpdesk" rel=3D"noreferrer" targ=
et=3D"_blank">http://www.providence.edu/<wbr>helpdesk</a><br>
><br>
> *<a href=3D"http://www.providence.edu/ihelp" rel=3D"noreferrer" target=
=3D"_blank">http://www.providence.edu/<wbr>ihelp</a> <<a href=3D"http://=
www.providence.edu/ihelp" rel=3D"noreferrer" target=3D"_blank">http://www.p=
rovidence.edu/<wbr>ihelp</a>>*<br>
><br>
><br>
><br>
> Like us on Facebook!<br>
><br>
> <a href=3D"http://www.facebook.com/ProvCollHelpDesk" rel=3D"noreferrer=
" target=3D"_blank">http://www.facebook.com/<wbr>ProvCollHelpDesk</a><br>
><br>
><br>
><br>
> Follow us on Twitter!<br>
><br>
> <a href=3D"http://twitter.com/PCITHelpdesk" rel=3D"noreferrer" target=
=3D"_blank">http://twitter.com/<wbr>PCITHelpdesk</a><br>
> ______________________________<wbr>_____________________ You are subsc=
ribed to<br>
> the ResNet-L mailing list.<br>
><br>
> To subscribe, unsubscribe or search the archives, go to<br>
> <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"noref=
errer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.html=
</a><br>
> ______________________________<wbr>_____________________<br>
><br>
--<br>
<br>
-----------------------<br>
<br>
*Richard A. Musal, M.A., M.S., P.D.*<br>
<br>
*Associate Director of Client Services & Operations, ITS*<br>
<br>
Riverdale, NY 10471<br>
<br>
Phone: <a href=3D"tel:718-862-7933" value=3D"+17188627933">718-862-7933</a>=
<br>
<br>
<a href=3D"mailto:richard.musal@manhattan.edu">richard.musal@manhattan.edu<=
/a> <<a href=3D"http://richard.musal@manhattan.edu?src=3Dinbox" rel=3D"n=
oreferrer" target=3D"_blank">richard.musal@manhattan.edu?<wbr>src=3Dinbox</=
a>><br>
<br>
<a href=3D"http://www.manhattan.edu" rel=3D"noreferrer" target=3D"_blank">w=
ww.manhattan.edu</a><br>
<br>
<<a href=3D"http://itsblog.manhattan.edu/" rel=3D"noreferrer" target=3D"=
_blank">http://itsblog.manhattan.edu/</a><wbr>><br>
<br>
<<a href=3D"http://manhattan.edu/its" rel=3D"noreferrer" target=3D"_blan=
k">http://manhattan.edu/its</a>><br>
<br>
*-Have a question? * Check our Knowledge Base<br>
<<a href=3D"https://manhattan.teamdynamix.com/TDClient/KB/Default" rel=
=3D"noreferrer" target=3D"_blank">https://manhattan.<wbr>teamdynamix.com/TD=
Client/KB/<wbr>Default</a>><br>
<br>
Check on your tickets here<br>
<<a href=3D"https://manhattan.teamdynamix.com/TDClient/Requests/TicketRe=
quests/" rel=3D"noreferrer" target=3D"_blank">https://manhattan.<wbr>teamdy=
namix.com/TDClient/<wbr>Requests/TicketRequests/</a>>.<br>
<br>
Have you transitioned to Drive yet? Learn more here<br>
<<a href=3D"http://itsblog.manhattan.edu/p/google-drive-one-place-to-cre=
ate.html" rel=3D"noreferrer" target=3D"_blank">http://itsblog.manhattan.edu=
/<wbr>p/google-drive-one-place-to-<wbr>create.html</a>> or<br>
ask ITS.<br>
<br>
Click here<br>
<<a href=3D"https://manhattan.teamdynamix.com/TDClient/KB/Default?Catego=
ryID=3D1022" rel=3D"noreferrer" target=3D"_blank">https://manhattan.<wbr>te=
amdynamix.com/TDClient/KB/<wbr>Default?CategoryID=3D1022</a>> for<br>
instructions on how to transition.<br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
______________________________<wbr>_____________________<br>
<br>
------------------------------<br>
<br>
Date:=C2=A0 =C2=A0 Thu, 3 Nov 2016 14:00:27 +0000<br>
From:=C2=A0 =C2=A0 Bruce Vieweg <<a href=3D"mailto:bvieweg@CORD.EDU">bvi=
eweg@CORD.EDU</a>><br>
Subject: Re: Email Scam Problems<br>
<br>
Jim,<br>
<br>
<br>
1.=C2=A0 =C2=A0 =C2=A0 =C2=A0I send occasion messages to the community, and=
always include the following at the bottom: Please remember: ITS will NEVE=
R ask for your log-in information.=C2=A0 The only exception is NEVER.=C2=A0=
If you do receive such a request, please bring it to my attention immediat=
ely<br>
<br>
2.=C2=A0 =C2=A0 =C2=A0 =C2=A0We have a relationship with KnowBe4 . . . and =
do occasional phishing =E2=80=98tests=E2=80=99 across the community . . . a=
ctually one is running right now<br>
<br>
3.=C2=A0 =C2=A0 =C2=A0 =C2=A0We make on-line training available from KnowBe=
4 . . . it has been very well received and is accessed by a substantial por=
tion of our community<br>
<br>
4.=C2=A0 =C2=A0 =C2=A0 =C2=A0We have recently deployed Vipre . . . which ha=
s been highly successful, although not perfect, at =E2=80=98removing=E2=80=
=99 bad links in such e-mails<br>
<br>
5.=C2=A0 =C2=A0 =C2=A0 =C2=A0I occasionally will send a =E2=80=98warning=E2=
=80=99 about a known =E2=80=9Cphishing=E2=80=9D attempt that we received . =
. . =E2=80=9CWatch out for . . . =E2=80=9C kind of message.<br>
<br>
This is tough stuff and requires way too much of our limited resources to m=
anage . . . however, the world is the world.=C2=A0 Criminals, sadly, abound=
.<br>
<br>
Good luck,<br>
<br>
Bruce<br>
<br>
Bruce W. Vieweg<br>
Associate Vice President for Academic Affairs<br>
Chief Information Officer<br>
Concordia College<br>
901 8th Street S.<br>
Moorhead, MN=C2=A0 56562<br>
218-299-4737<br>
<br>
The purpose of Concordia College is to influence the affairs of the world b=
y sending<br>
into society thoughtful and informed men and women dedicated to the Christi=
an life.<br>
<br>
Please remember: ITS will NEVER ask for your log-in information.=C2=A0 The =
only exception is NEVER.=C2=A0 If you do receive such a request, please bri=
ng it to my attention immediately.<br>
<br>
<br>
<br>
From: Resnet Forum [mailto:<a href=3D"mailto:RESNET-L@LISTSERV.ND.EDU">RESN=
ET-L@LISTSERV.ND.<wbr>EDU</a>] On Behalf Of Rizzo, Jim<br>
Sent: Thursday, November 3, 2016 8:42 AM<br>
To: <a href=3D"mailto:RESNET-L@LISTSERV.ND.EDU">RESNET-L@LISTSERV.ND.EDU</a=
><br>
Subject: Email Scam Problems<br>
<br>
Hey all,<br>
<br>
We=E2=80=99re having serious issues with phishing and email scams. In fact,=
we seem to have been hit with a zero-day ransomware virus that encrypted a=
whole bunch of files on a couple people=E2=80=99s computers and network dr=
ives. The network drives can be restored from the last good backup. The loc=
al files seem to be a lost cause.<br>
<br>
Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people abou=
t these types of problems? The ransomware issue was related to actually cli=
cking on a bad attachment (and seems to have required downloading a zip fil=
e and unzipping it and then running the VBS file contained within). Phishin=
g is just that. People seem to have no problem sharing their passwords. We =
fairly regularly send emails to the campus about suspicious email messages,=
unexpected attachments, and messages asking people to share their password=
s. They seem to fall on deaf ears/eyes. The same people read those emails, =
and it=E2=80=99s not the people who need to be taking the message to heart.=
<br>
<br>
Looking for any ideas here. If you have a webpage about it, please share th=
e link. If you send emails, please share the text of the email.<br>
<br>
Thanks!<br>
Jim<br>
<br>
--<br>
Jim Rizzo<br>
Helpdesk Manager<br>
Providence College Information Technology<br>
<a href=3D"tel:%28401%29%20865-1277" value=3D"+14018651277">(401) 865-1277<=
/a><br>
<br>
<a href=3D"http://www.providence.edu/helpdesk" rel=3D"noreferrer" target=3D=
"_blank">http://www.providence.edu/<wbr>helpdesk</a><br>
<a href=3D"http://www.providence.edu/ihelp" rel=3D"noreferrer" target=3D"_b=
lank">http://www.providence.edu/<wbr>ihelp</a><br>
<br>
Like us on Facebook!<br>
<a href=3D"http://www.facebook.com/ProvCollHelpDesk" rel=3D"noreferrer" tar=
get=3D"_blank">http://www.facebook.com/<wbr>ProvCollHelpDesk</a><br>
<br>
Follow us on Twitter!<br>
<a href=3D"http://twitter.com/PCITHelpdesk" rel=3D"noreferrer" target=3D"_b=
lank">http://twitter.com/<wbr>PCITHelpdesk</a><br>
______________________________<wbr>_____________________ You are subscribed=
to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives, go to <a href=3D"http://L=
ISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"noreferrer" target=3D"_blank"=
>http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.html</a> ___________________=
___________<wbr>_____________________<br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
_______<br>
<br>
------------------------------<br>
<br>
Date:=C2=A0 =C2=A0 Thu, 3 Nov 2016 09:15:59 -0500<br>
From:=C2=A0 =C2=A0 Lynn Boyce <<a href=3D"mailto:lboyce@USAO.EDU">lboyce=
@USAO.EDU</a>><br>
Subject: Re: Email Scam Problems<br>
<br>
We also have an account with Knowbe4.=C2=A0 We are about to start running a=
n<br>
online training session for all faculty and staff.=C2=A0 The price was very=
<br>
reasonable as we just recovered our files from someone who clicked on a<br>
link, and encrypted our entire file server.=C2=A0 Of course it's backed=
up quite<br>
often, but still took most of the day to recover everything.<br>
<br>
<br>
<br>
Lynn<br>
<br>
<br>
<br>
J. Lynn Boyce<br>
<br>
Vice President<br>
<br>
Information Services and Technology<br>
<br>
University of Science and Arts of Oklahoma<br>
<br>
=C2=A0<<a href=3D"http://www.usao.edu" rel=3D"noreferrer" target=3D"_bla=
nk">http://www.usao.edu</a>> <a href=3D"http://www.usao.edu" rel=3D"nore=
ferrer" target=3D"_blank">http://www.usao.edu</a><br>
<br>
=C2=A0<mailto:<a href=3D"mailto:lboyce@usao.edu">lboyce@usao.edu</a>>=
<a href=3D"mailto:lboyce@usao.edu">lboyce@usao.edu</a><br>
<br>
1727 W. Alabama<br>
<br>
Chickasha, OK 73018<br>
<br>
<a href=3D"tel:405.224.3140" value=3D"+14052243140">405.224.3140</a>=C2=A0(=
voice)<br>
<br>
<a href=3D"tel:405.574.1220" value=3D"+14055741220">405.574.1220</a>=C2=A0(=
fax)<br>
<br>
<br>
<br>
Information Services will never ask for your password.=C2=A0 =C2=A0Never em=
ail your<br>
password to anyone!<br>
<br>
<br>
<br>
This e-mail (including any attachments) is for the sole use of the intended=
<br>
recipient(s) and may contain information that is confidential and/or<br>
protected by legal privilege. Any unauthorized review, use, copy, disclosur=
e<br>
or distribution of this e-mail is strictly prohibited. If you are not the<b=
r>
intended recipient, please notify the appropriate party at USAO, and<br>
immediately destroy all copies of this e-mail. USAO does not accept any<br>
liability for breach of security, error or virus that may result from the<b=
r>
transmission of this message.<br>
<br>
<br>
<br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
______________________________<wbr>_____________________<br>
<br>
------------------------------<br>
<br>
Date:=C2=A0 =C2=A0 Thu, 3 Nov 2016 09:46:14 -0400<br>
From:=C2=A0 =C2=A0 Jeremy Mlazovsky <<a href=3D"mailto:jmlazovsky1@UDAYT=
ON.EDU">jmlazovsky1@UDAYTON.EDU</a>><br>
Subject: Re: Email Scam Problems<br>
<br>
Some of our folks in central IT have been very aggressive in educating the<=
br>
campus community about issues like this.<br>
<br>
You can read more about it here:<br>
<a href=3D"https://www.udayton.edu/blogs/udit/wiredflyer/2016/becoming_cybe=
rmindful_in_2016.php" rel=3D"noreferrer" target=3D"_blank">https://www.uday=
ton.edu/blogs/<wbr>udit/wiredflyer/2016/becoming_<wbr>cybermindful_in_2016.=
php</a><br>
<br>
It has been surprisingly effective.<br>
<br>
<br>
Thank you.<br>
<br>
Jeremy Mlazovsky '02<br>
Director of Information Technology<br>
College of Arts and Sciences<br>
University of Dayton<br>
300 College Park<br>
Dayton, Ohio 45469-2206<br>
<a href=3D"tel:937-229-2166" value=3D"+19372292166">937-229-2166</a><br>
<br>
Leadership UD 2009<br>
<br>
<a href=3D"http://www.udayton.edu/artssciences/casit/" rel=3D"noreferrer" t=
arget=3D"_blank">http://www.udayton.edu/<wbr>artssciences/casit/</a><br>
<br>
Please contact the UDit Call Center=C2=A0 <a href=3D"tel:%28937-229-3888" v=
alue=3D"+19372293888">(937-229-3888</a>) for service requests.<br>
<br>
On Thu, Nov 3, 2016 at 9:42 AM, Rizzo, Jim <<a href=3D"mailto:JRIZZO@pro=
vidence.edu">JRIZZO@providence.edu</a>> wrote:<br>
<br>
> Hey all,<br>
><br>
><br>
><br>
> We=E2=80=99re having serious issues with phishing and email scams. In =
fact, we<br>
> seem to have been hit with a zero-day ransomware virus that encrypted =
a<br>
> whole bunch of files on a couple people=E2=80=99s computers and networ=
k drives. The<br>
> network drives can be restored from the last good backup. The local fi=
les<br>
> seem to be a lost cause.<br>
><br>
><br>
><br>
> Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people=
about these<br>
> types of problems? The ransomware issue was related to actually clicki=
ng on<br>
> a bad attachment (and seems to have required downloading a zip file an=
d<br>
> unzipping it and then running the VBS file contained within). Phishing=
is<br>
> just that. People seem to have no problem sharing their passwords. We<=
br>
> fairly regularly send emails to the campus about suspicious email mess=
ages,<br>
> unexpected attachments, and messages asking people to share their<br>
> passwords. They seem to fall on deaf ears/eyes. The same people read t=
hose<br>
> emails, and it=E2=80=99s not the people who need to be taking the mess=
age to heart.<br>
><br>
><br>
><br>
> Looking for any ideas here. If you have a webpage about it, please sha=
re<br>
> the link. If you send emails, please share the text of the email.<br>
><br>
><br>
><br>
> Thanks!<br>
><br>
> Jim<br>
><br>
><br>
><br>
> --<br>
><br>
> Jim Rizzo<br>
><br>
> Helpdesk Manager<br>
><br>
> Providence College Information Technology<br>
><br>
> <a href=3D"tel:%28401%29%20865-1277" value=3D"+14018651277">(401) 865-=
1277</a><br>
><br>
><br>
><br>
> <a href=3D"http://www.providence.edu/helpdesk" rel=3D"noreferrer" targ=
et=3D"_blank">http://www.providence.edu/<wbr>helpdesk</a><br>
><br>
> *<a href=3D"http://www.providence.edu/ihelp" rel=3D"noreferrer" target=
=3D"_blank">http://www.providence.edu/<wbr>ihelp</a> <<a href=3D"http://=
www.providence.edu/ihelp" rel=3D"noreferrer" target=3D"_blank">http://www.p=
rovidence.edu/<wbr>ihelp</a>>*<br>
><br>
><br>
><br>
> Like us on Facebook!<br>
><br>
> <a href=3D"http://www.facebook.com/ProvCollHelpDesk" rel=3D"noreferrer=
" target=3D"_blank">http://www.facebook.com/<wbr>ProvCollHelpDesk</a><br>
><br>
><br>
><br>
> Follow us on Twitter!<br>
><br>
> <a href=3D"http://twitter.com/PCITHelpdesk" rel=3D"noreferrer" target=
=3D"_blank">http://twitter.com/<wbr>PCITHelpdesk</a><br>
> ______________________________<wbr>_____________________ You are subsc=
ribed to<br>
> the ResNet-L mailing list.<br>
><br>
> To subscribe, unsubscribe or search the archives, go to<br>
> <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"noref=
errer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.html=
</a><br>
> ______________________________<wbr>_____________________<br>
><br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
______________________________<wbr>_____________________<br>
<br>
------------------------------<br>
<br>
Date:=C2=A0 =C2=A0 Thu, 3 Nov 2016 14:46:48 +0000<br>
From:=C2=A0 =C2=A0 "Richard Musal (ITS)" <<a href=3D"mailto:ri=
chard.musal@MANHATTAN.EDU">richard.musal@MANHATTAN.EDU</a>><br>
Subject: Re: Email Scam Problems<br>
<br>
We also add to signatures for ticketing and our emails about guarding<br>
passwords.=C2=A0 You can see ours below.<br>
<br>
On Thu, Nov 3, 2016 at 7:00 AM Richard Musal (ITS) <<br>
<a href=3D"mailto:richard.musal@manhattan.edu">richard.musal@manhattan.edu<=
/a>> wrote:<br>
<br>
> Blog posts mostly.<br>
><br>
><br>
> On Thu, Nov 3, 2016 at 6:42 AM Rizzo, Jim <<a href=3D"mailto:JRIZZO=
@providence.edu">JRIZZO@providence.edu</a>> wrote:<br>
><br>
> Hey all,<br>
><br>
><br>
><br>
> We=E2=80=99re having serious issues with phishing and email scams. In =
fact, we<br>
> seem to have been hit with a zero-day ransomware virus that encrypted =
a<br>
> whole bunch of files on a couple people=E2=80=99s computers and networ=
k drives. The<br>
> network drives can be restored from the last good backup. The local fi=
les<br>
> seem to be a lost cause.<br>
><br>
><br>
><br>
> Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people=
about these<br>
> types of problems? The ransomware issue was related to actually clicki=
ng on<br>
> a bad attachment (and seems to have required downloading a zip file an=
d<br>
> unzipping it and then running the VBS file contained within). Phishing=
is<br>
> just that. People seem to have no problem sharing their passwords. We<=
br>
> fairly regularly send emails to the campus about suspicious email mess=
ages,<br>
> unexpected attachments, and messages asking people to share their<br>
> passwords. They seem to fall on deaf ears/eyes. The same people read t=
hose<br>
> emails, and it=E2=80=99s not the people who need to be taking the mess=
age to heart.<br>
><br>
><br>
><br>
> Looking for any ideas here. If you have a webpage about it, please sha=
re<br>
> the link. If you send emails, please share the text of the email.<br>
><br>
><br>
><br>
> Thanks!<br>
><br>
> Jim<br>
><br>
><br>
><br>
> --<br>
><br>
> Jim Rizzo<br>
><br>
> Helpdesk Manager<br>
><br>
> Providence College Information Technology<br>
><br>
> (401) 865-1277<br>
><br>
><br>
><br>
> <a href=3D"http://www.providence.edu/helpdesk" rel=3D"noreferrer" targ=
et=3D"_blank">http://www.providence.edu/<wbr>helpdesk</a><br>
><br>
> *<a href=3D"http://www.providence.edu/ihelp" rel=3D"noreferrer" target=
=3D"_blank">http://www.providence.edu/<wbr>ihelp</a> <<a href=3D"http://=
www.providence.edu/ihelp" rel=3D"noreferrer" target=3D"_blank">http://www.p=
rovidence.edu/<wbr>ihelp</a>>*<br>
><br>
><br>
><br>
> Like us on Facebook!<br>
><br>
> <a href=3D"http://www.facebook.com/ProvCollHelpDesk" rel=3D"noreferrer=
" target=3D"_blank">http://www.facebook.com/<wbr>ProvCollHelpDesk</a><br>
><br>
><br>
><br>
> Follow us on Twitter!<br>
><br>
> <a href=3D"http://twitter.com/PCITHelpdesk" rel=3D"noreferrer" target=
=3D"_blank">http://twitter.com/<wbr>PCITHelpdesk</a><br>
> ______________________________<wbr>_____________________ You are subsc=
ribed to<br>
> the ResNet-L mailing list.<br>
><br>
> To subscribe, unsubscribe or search the archives, go to<br>
> <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"noref=
errer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.html=
</a><br>
> ______________________________<wbr>_____________________<br>
><br>
> --<br>
><br>
> -----------------------<br>
><br>
> *Richard A. Musal, M.A., M.S., P.D.*<br>
><br>
> *Associate Director of Client Services & Operations, ITS*<br>
><br>
> Riverdale, NY 10471<br>
><br>
> Phone: 718-862-7933 <(718)%20862-7933><br>
><br>
> <a href=3D"mailto:richard.musal@manhattan.edu">richard.musal@manhattan=
.edu</a> <<a href=3D"http://richard.musal@manhattan.edu?src=3Dinbox" rel=
=3D"noreferrer" target=3D"_blank">richard.musal@manhattan.edu?<wbr>src=3Din=
box</a>><br>
><br>
> <a href=3D"http://www.manhattan.edu" rel=3D"noreferrer" target=3D"_bla=
nk">www.manhattan.edu</a><br>
><br>
> <<a href=3D"http://itsblog.manhattan.edu/" rel=3D"noreferrer" targe=
t=3D"_blank">http://itsblog.manhattan.edu/</a><wbr>><br>
><br>
> <<a href=3D"http://manhattan.edu/its" rel=3D"noreferrer" target=3D"=
_blank">http://manhattan.edu/its</a>><br>
><br>
> *-Have a question? * Check our Knowledge Base<br>
> <<a href=3D"https://manhattan.teamdynamix.com/TDClient/KB/Default" =
rel=3D"noreferrer" target=3D"_blank">https://manhattan.<wbr>teamdynamix.com=
/TDClient/KB/<wbr>Default</a>><br>
><br>
> Check on your tickets here<br>
> <<a href=3D"https://manhattan.teamdynamix.com/TDClient/Requests/Tic=
ketRequests/" rel=3D"noreferrer" target=3D"_blank">https://manhattan.<wbr>t=
eamdynamix.com/TDClient/<wbr>Requests/TicketRequests/</a>>.<br>
><br>
> Have you transitioned to Drive yet? Learn more here<br>
> <<a href=3D"http://itsblog.manhattan.edu/p/google-drive-one-place-t=
o-create.html" rel=3D"noreferrer" target=3D"_blank">http://itsblog.manhatta=
n.edu/<wbr>p/google-drive-one-place-to-<wbr>create.html</a>> or<br>
> ask ITS.<br>
><br>
> Click here<br>
> <<a href=3D"https://manhattan.teamdynamix.com/TDClient/KB/Default?C=
ategoryID=3D1022" rel=3D"noreferrer" target=3D"_blank">https://manhattan.<w=
br>teamdynamix.com/TDClient/KB/<wbr>Default?CategoryID=3D1022</a>> for<b=
r>
> instructions on how to transition.<br>
><br>
--<br>
<br>
-----------------------<br>
<br>
*Richard A. Musal, M.A., M.S., P.D.*<br>
<br>
*Associate Director of Client Services & Operations, ITS*<br>
<br>
Riverdale, NY 10471<br>
<br>
Phone: 718-862-7933<br>
<br>
<a href=3D"mailto:richard.musal@manhattan.edu">richard.musal@manhattan.edu<=
/a> <<a href=3D"http://richard.musal@manhattan.edu?src=3Dinbox" rel=3D"n=
oreferrer" target=3D"_blank">richard.musal@manhattan.edu?<wbr>src=3Dinbox</=
a>><br>
<br>
<a href=3D"http://www.manhattan.edu" rel=3D"noreferrer" target=3D"_blank">w=
ww.manhattan.edu</a><br>
<br>
<<a href=3D"http://itsblog.manhattan.edu/" rel=3D"noreferrer" target=3D"=
_blank">http://itsblog.manhattan.edu/</a><wbr>><br>
<br>
<<a href=3D"http://manhattan.edu/its" rel=3D"noreferrer" target=3D"_blan=
k">http://manhattan.edu/its</a>><br>
<br>
*-Have a question? * Check our Knowledge Base<br>
<<a href=3D"https://manhattan.teamdynamix.com/TDClient/KB/Default" rel=
=3D"noreferrer" target=3D"_blank">https://manhattan.<wbr>teamdynamix.com/TD=
Client/KB/<wbr>Default</a>><br>
<br>
Check on your tickets here<br>
<<a href=3D"https://manhattan.teamdynamix.com/TDClient/Requests/TicketRe=
quests/" rel=3D"noreferrer" target=3D"_blank">https://manhattan.<wbr>teamdy=
namix.com/TDClient/<wbr>Requests/TicketRequests/</a>>.<br>
<br>
Have you transitioned to Drive yet? Learn more here<br>
<<a href=3D"http://itsblog.manhattan.edu/p/google-drive-one-place-to-cre=
ate.html" rel=3D"noreferrer" target=3D"_blank">http://itsblog.manhattan.edu=
/<wbr>p/google-drive-one-place-to-<wbr>create.html</a>> or<br>
ask ITS.<br>
<br>
Click here<br>
<<a href=3D"https://manhattan.teamdynamix.com/TDClient/KB/Default?Catego=
ryID=3D1022" rel=3D"noreferrer" target=3D"_blank">https://manhattan.<wbr>te=
amdynamix.com/TDClient/KB/<wbr>Default?CategoryID=3D1022</a>> for<br>
instructions on how to transition.<br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
______________________________<wbr>_____________________<br>
<br>
------------------------------<br>
<br>
Date:=C2=A0 =C2=A0 Thu, 3 Nov 2016 15:03:40 +0000<br>
From:=C2=A0 =C2=A0 "Rizzo, Jim" <<a href=3D"mailto:JRIZZO@PROV=
IDENCE.EDU">JRIZZO@PROVIDENCE.EDU</a>><br>
Subject: Re: Email Scam Problems<br>
<br>
Do you block all zip files?<br>
<br>
Jim<br>
<br>
--<br>
Jim Rizzo<br>
Helpdesk Manager<br>
Providence College Information Technology<br>
(401) 865-1277<br>
<br>
<a href=3D"http://www.providence.edu/helpdesk" rel=3D"noreferrer" target=3D=
"_blank">http://www.providence.edu/<wbr>helpdesk</a><br>
<a href=3D"http://www.providence.edu/ihelp" rel=3D"noreferrer" target=3D"_b=
lank">http://www.providence.edu/<wbr>ihelp</a><br>
<br>
Like us on Facebook!<br>
<a href=3D"http://www.facebook.com/ProvCollHelpDesk" rel=3D"noreferrer" tar=
get=3D"_blank">http://www.facebook.com/<wbr>ProvCollHelpDesk</a><br>
<br>
Follow us on Twitter!<br>
<a href=3D"http://twitter.com/PCITHelpdesk" rel=3D"noreferrer" target=3D"_b=
lank">http://twitter.com/<wbr>PCITHelpdesk</a><br>
<br>
From: Resnet Forum <<a href=3D"mailto:RESNET-L@LISTSERV.ND.EDU">RESNET-L=
@LISTSERV.ND.EDU</a>> on behalf of Jack Vizelter <<a href=3D"mailto:j=
ack@MAIL.ROCKEFELLER.EDU">jack@MAIL.ROCKEFELLER.EDU</a>><br>
Reply-To: Resnet Forum <<a href=3D"mailto:RESNET-L@LISTSERV.ND.EDU">RESN=
ET-L@LISTSERV.ND.EDU</a>><br>
Date: Thursday, November 3, 2016 at 9:52 AM<br>
To: Resnet Forum <<a href=3D"mailto:RESNET-L@LISTSERV.ND.EDU">RESNET-L@L=
ISTSERV.ND.EDU</a>><br>
Subject: Re: [RESNET-L] Email Scam Problems<br>
<br>
We block zip files and other known bad attachments on the server end.<br>
<br>
We do outreach campaigns every few months about security, phishing, etc..<b=
r>
<br>
We do phishing tests to several groups at a time.<br>
<br>
In our signature file from our main IT email account, we have a note that I=
T will never ask for passwords, never give it out.<br>
<br>
Should someone fall prey, they need to meet with our InfoSec team and fill =
out a questionnaire.<br>
<br>
<br>
From: Resnet Forum [mailto:<a href=3D"mailto:RESNET-L@LISTSERV.ND.EDU">RESN=
ET-L@LISTSERV.ND.<wbr>EDU</a>] On Behalf Of Rizzo, Jim<br>
Sent: Thursday, November 3, 2016 9:42 AM<br>
To: <a href=3D"mailto:RESNET-L@LISTSERV.ND.EDU">RESNET-L@LISTSERV.ND.EDU</a=
><br>
Subject: Email Scam Problems<br>
<br>
Hey all,<br>
<br>
We=E2=80=99re having serious issues with phishing and email scams. In fact,=
we seem to have been hit with a zero-day ransomware virus that encrypted a=
whole bunch of files on a couple people=E2=80=99s computers and network dr=
ives. The network drives can be restored from the last good backup. The loc=
al files seem to be a lost cause.<br>
<br>
Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people abou=
t these types of problems? The ransomware issue was related to actually cli=
cking on a bad attachment (and seems to have required downloading a zip fil=
e and unzipping it and then running the VBS file contained within). Phishin=
g is just that. People seem to have no problem sharing their passwords. We =
fairly regularly send emails to the campus about suspicious email messages,=
unexpected attachments, and messages asking people to share their password=
s. They seem to fall on deaf ears/eyes. The same people read those emails, =
and it=E2=80=99s not the people who need to be taking the message to heart.=
<br>
<br>
Looking for any ideas here. If you have a webpage about it, please share th=
e link. If you send emails, please share the text of the email.<br>
<br>
Thanks!<br>
Jim<br>
<br>
--<br>
Jim Rizzo<br>
Helpdesk Manager<br>
Providence College Information Technology<br>
(401) 865-1277<br>
<br>
<a href=3D"http://www.providence.edu/helpdesk" rel=3D"noreferrer" target=3D=
"_blank">http://www.providence.edu/<wbr>helpdesk</a><br>
<a href=3D"http://www.providence.edu/ihelp" rel=3D"noreferrer" target=3D"_b=
lank">http://www.providence.edu/<wbr>ihelp</a><br>
<br>
Like us on Facebook!<br>
<a href=3D"http://www.facebook.com/ProvCollHelpDesk" rel=3D"noreferrer" tar=
get=3D"_blank">http://www.facebook.com/<wbr>ProvCollHelpDesk</a><br>
<br>
Follow us on Twitter!<br>
<a href=3D"http://twitter.com/PCITHelpdesk" rel=3D"noreferrer" target=3D"_b=
lank">http://twitter.com/<wbr>PCITHelpdesk</a><br>
______________________________<wbr>_____________________ You are subscribed=
to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives, go to <a href=3D"http://L=
ISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"noreferrer" target=3D"_blank"=
>http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.html</a> ___________________=
___________<wbr>_____________________<br>
______________________________<wbr>_____________________ You are subscribed=
to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives, go to <a href=3D"http://L=
ISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"noreferrer" target=3D"_blank"=
>http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.html</a> ___________________=
___________<wbr>_____________________<br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
__________<br>
<br>
------------------------------<br>
<br>
Date:=C2=A0 =C2=A0 Thu, 3 Nov 2016 10:11:11 -0500<br>
From:=C2=A0 =C2=A0 Becky Klein <<a href=3D"mailto:becky.klein@VALPO.EDU"=
>becky.klein@VALPO.EDU</a>><br>
Subject: Re: Email Scam Problems<br>
<br>
Here at Valpo, we do several things to help educate our community about<br>
cyber threats.<br>
<br>
~ First, we use GSuite for email/collaboration.=C2=A0 So Gmail automaticall=
y<br>
blocks a lot of the offending things (such as .exe files), and has great<br=
>
spam filtering.=C2=A0 We try to teach people how to use the "report sp=
am" and<br>
"report phishing" tools within Gmail to help filter the bad stuff=
out that<br>
does slip through.<br>
<br>
~ When we start receiving numerous identical reports of phishing scams<br>
circulating campus, we send a campus-wide email reminding people to not<br>
share their login information.=C2=A0 It usually includes a description of t=
he<br>
current scam and points out indicators that show it's not legitimate.=
=C2=A0 (I<br>
can forward one of the more recent examples if that would be helpful.)<br>
=C2=A0Over the years we've had a lot of people fall victim, from intern=
ational<br>
students all the way up to high-ranking administrators.=C2=A0 Since we star=
ted<br>
emailing campus though (which is probably 3-4 years ago now), the number of=
<br>
victims has dropped dramatically.=C2=A0 We have a couple YouTube videos abo=
ut<br>
how to recognize phishing and how to recover from falling victim, and we<br=
>
share those with people to help educate them (both those who are victims,<b=
r>
and proactively in our messaging).<br>
Phishing awareness: <a href=3D"https://youtu.be/ZCYsq0wunAM" rel=3D"norefer=
rer" target=3D"_blank">https://youtu.be/ZCYsq0wunAM</a><br>
Recovering from phishing: <a href=3D"https://youtu.be/5uRb5vmwYe0" rel=3D"n=
oreferrer" target=3D"_blank">https://youtu.be/5uRb5vmwYe0</a><br>
<br>
~ For 4-5 years now, we've put together a campaign every October for<br=
>
National Cyber Security Awareness Month.=C2=A0 I sign us up as a champion, =
and<br>
the campaign has now gotten pretty big: weekly campus-wide emails, daily<br=
>
social media posts, a special page on our website, workshops on campus on<b=
r>
security topics (password management, avoiding malware/ransomware, etc),<br=
>
slides for our digital screens, posters distributed in all buildings on<br>
campus, table toppers in dining areas, buttons with the NCSAM logo (it'=
s<br>
amazing how much students love these), customized workshops available for<b=
r>
departments on request.=C2=A0 This year I also initiated the "Crusader=
Cyber<br>
Citizen Pledge" (which I shamelessly stole from Florida State) outlini=
ng<br>
best practices to protect yourself, and promoted that pretty heavily -<br>
including a table in our student union with free candy to encourage people<=
br>
to sign.<br>
<br>
~ I also sign us up as a champion for Data Privacy Day each January, and<br=
>
craft a small campaign for that<br>
<br>
~ For as long as I can remember (I've been on staff since '96 when =
I was<br>
still a student), we've given administrator rights to all users on thei=
r<br>
computers.=C2=A0 A couple months ago we had a situation where a staff membe=
r in<br>
one of the colleges installed a "registry cleaner" on her 2-week =
old campus<br>
computer; of course it was ransomware in disguise.=C2=A0 Since it cost 4 IT=
<br>
staff members a couple days' time, and affected the files of almost 200=
<br>
people on campus as it spread, we are now starting work on changing this<br=
>
policy to no longer give admin rights.=C2=A0 It's going to include a ca=
mpaign to<br>
let people know why we're making the change.<br>
<br>
~ We also had a situation a couple months ago where a traveling advancement=
<br>
officer got infected with ransomware while at a hotel.=C2=A0 I gave a custo=
m<br>
presentation to his entire department on how to protect yourself from cyber=
<br>
threats while traveling.<br>
<br>
It seems that most people who fall victim are appropriately embarrassed and=
<br>
they don't tend to repeat their mistakes.=C2=A0 They also end up being<=
br>
ambassadors to others in helping them to avoid the same thing happening to<=
br>
them.<br>
<br>
What terrifies me the most is whether the scammers will start using my name=
<br>
on their nefarious messages.=C2=A0 I handle all the communications for the =
IT<br>
department, so people recognize and trust my name.=C2=A0 (No pressure!!)=C2=
=A0 If<br>
they start using my name, then it's game over - we'll end up with w=
ay too<br>
many victims.<br>
<br>
-Becky Klein<br>
<br>
<br>
On Thu, Nov 3, 2016 at 8:42 AM, Rizzo, Jim <<a href=3D"mailto:JRIZZO@pro=
vidence.edu">JRIZZO@providence.edu</a>> wrote:<br>
<br>
> Hey all,<br>
><br>
><br>
><br>
> We=E2=80=99re having serious issues with phishing and email scams. In =
fact, we<br>
> seem to have been hit with a zero-day ransomware virus that encrypted =
a<br>
> whole bunch of files on a couple people=E2=80=99s computers and networ=
k drives. The<br>
> network drives can be restored from the last good backup. The local fi=
les<br>
> seem to be a lost cause.<br>
><br>
><br>
><br>
> Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people=
about these<br>
> types of problems? The ransomware issue was related to actually clicki=
ng on<br>
> a bad attachment (and seems to have required downloading a zip file an=
d<br>
> unzipping it and then running the VBS file contained within). Phishing=
is<br>
> just that. People seem to have no problem sharing their passwords. We<=
br>
> fairly regularly send emails to the campus about suspicious email mess=
ages,<br>
> unexpected attachments, and messages asking people to share their<br>
> passwords. They seem to fall on deaf ears/eyes. The same people read t=
hose<br>
> emails, and it=E2=80=99s not the people who need to be taking the mess=
age to heart.<br>
><br>
><br>
><br>
> Looking for any ideas here. If you have a webpage about it, please sha=
re<br>
> the link. If you send emails, please share the text of the email.<br>
><br>
><br>
><br>
> Thanks!<br>
><br>
> Jim<br>
><br>
><br>
><br>
> --<br>
><br>
> Jim Rizzo<br>
><br>
> Helpdesk Manager<br>
><br>
> Providence College Information Technology<br>
><br>
> (401) 865-1277<br>
><br>
><br>
><br>
> <a href=3D"http://www.providence.edu/helpdesk" rel=3D"noreferrer" targ=
et=3D"_blank">http://www.providence.edu/<wbr>helpdesk</a><br>
><br>
> *<a href=3D"http://www.providence.edu/ihelp" rel=3D"noreferrer" target=
=3D"_blank">http://www.providence.edu/<wbr>ihelp</a> <<a href=3D"http://=
www.providence.edu/ihelp" rel=3D"noreferrer" target=3D"_blank">http://www.p=
rovidence.edu/<wbr>ihelp</a>>*<br>
><br>
><br>
><br>
> Like us on Facebook!<br>
><br>
> <a href=3D"http://www.facebook.com/ProvCollHelpDesk" rel=3D"noreferrer=
" target=3D"_blank">http://www.facebook.com/<wbr>ProvCollHelpDesk</a><br>
><br>
><br>
><br>
> Follow us on Twitter!<br>
><br>
> <a href=3D"http://twitter.com/PCITHelpdesk" rel=3D"noreferrer" target=
=3D"_blank">http://twitter.com/<wbr>PCITHelpdesk</a><br>
> ______________________________<wbr>_____________________ You are subsc=
ribed to<br>
> the ResNet-L mailing list.<br>
><br>
> To subscribe, unsubscribe or search the archives, go to<br>
> <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"noref=
errer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.html=
</a><br>
> ______________________________<wbr>_____________________<br>
><br>
<br>
<br>
<br>
--<br>
<br>
Becky (Belmont '97) Klein<br>
<<a href=3D"http://www.google.com/calendar/embed?src=3Dbecky.klein%40val=
po.edu&ctz=3DAmerica/Chicago" rel=3D"noreferrer" target=3D"_blank">http=
://www.google.com/<wbr>calendar/embed?src=3Dbecky.<wbr>klein%40valpo.edu&am=
p;ctz=3DAmerica/<wbr>Chicago</a>><br>
Manager of IT Communications<br>
Valparaiso University<br>
Office of Information Technology<br>
Phone: 219.464.5986<br>
<a href=3D"http://valpo.edu/it" rel=3D"noreferrer" target=3D"_blank">valpo.=
edu/it</a><br>
<br>
*New skills. Improved skills. Now. Login to Lynda.com<br>
<<a href=3D"http://valpo.edu/r/lynda" rel=3D"noreferrer" target=3D"_blan=
k">http://valpo.edu/r/lynda</a>>!*<br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
______________________________<wbr>_____________________<br>
<br>
------------------------------<br>
<br>
Date:=C2=A0 =C2=A0 Thu, 3 Nov 2016 14:59:08 -0400<br>
From:=C2=A0 =C2=A0 Randy Kouns <<a href=3D"mailto:randykouns@GMAIL.COM">=
randykouns@GMAIL.COM</a>><br>
Subject: Re: Email Scam Problems<br>
<br>
Hey Jim, been a while.... hope things are getting better for you...=C2=A0 =
=C2=A0I am<br>
no longer in Education side of IT but, still stay interested in the<br>
happenings...=C2=A0 =C2=A0I have joined the municipal government field as t=
he<br>
Director of IT for a city here in Indiana...=C2=A0 =C2=A0one of our sub-gov=
ernment<br>
entities is currently using and I am planning of subscribing to the Knowbe4=
<br>
(<a href=3D"http://www.knowbe4.com" rel=3D"noreferrer" target=3D"_blank">ww=
w.knowbe4.com</a>)=C2=A0 service.=C2=A0 =C2=A0They provide training video&#=
39;s that are then<br>
followed by an interactive email test...that tracks and records users who<b=
r>
click links when they shouldn't so remedial training can be accomplishe=
d.<br>
the quote I have for this service is approximately $2200 per year for 500<b=
r>
employees.<br>
<br>
Good luck with your issues.<br>
<br>
Randy Kouns<br>
<br>
<br>
On Thu, Nov 3, 2016 at 9:42 AM, Rizzo, Jim <<a href=3D"mailto:JRIZZO@pro=
vidence.edu">JRIZZO@providence.edu</a>> wrote:<br>
<br>
> Hey all,<br>
><br>
><br>
><br>
> We=E2=80=99re having serious issues with phishing and email scams. In =
fact, we<br>
> seem to have been hit with a zero-day ransomware virus that encrypted =
a<br>
> whole bunch of files on a couple people=E2=80=99s computers and networ=
k drives. The<br>
> network drives can be restored from the last good backup. The local fi=
les<br>
> seem to be a lost cause.<br>
><br>
><br>
><br>
> Anyway=E2=80=A6 How do you all inform, educate, scold, whatever people=
about these<br>
> types of problems? The ransomware issue was related to actually clicki=
ng on<br>
> a bad attachment (and seems to have required downloading a zip file an=
d<br>
> unzipping it and then running the VBS file contained within). Phishing=
is<br>
> just that. People seem to have no problem sharing their passwords. We<=
br>
> fairly regularly send emails to the campus about suspicious email mess=
ages,<br>
> unexpected attachments, and messages asking people to share their<br>
> passwords. They seem to fall on deaf ears/eyes. The same people read t=
hose<br>
> emails, and it=E2=80=99s not the people who need to be taking the mess=
age to heart.<br>
><br>
><br>
><br>
> Looking for any ideas here. If you have a webpage about it, please sha=
re<br>
> the link. If you send emails, please share the text of the email.<br>
><br>
><br>
><br>
> Thanks!<br>
><br>
> Jim<br>
><br>
><br>
><br>
> --<br>
><br>
> Jim Rizzo<br>
><br>
> Helpdesk Manager<br>
><br>
> Providence College Information Technology<br>
><br>
> (401) 865-1277<br>
><br>
><br>
><br>
> <a href=3D"http://www.providence.edu/helpdesk" rel=3D"noreferrer" targ=
et=3D"_blank">http://www.providence.edu/<wbr>helpdesk</a><br>
><br>
> *<a href=3D"http://www.providence.edu/ihelp" rel=3D"noreferrer" target=
=3D"_blank">http://www.providence.edu/<wbr>ihelp</a> <<a href=3D"http://=
www.providence.edu/ihelp" rel=3D"noreferrer" target=3D"_blank">http://www.p=
rovidence.edu/<wbr>ihelp</a>>*<br>
><br>
><br>
><br>
> Like us on Facebook!<br>
><br>
> <a href=3D"http://www.facebook.com/ProvCollHelpDesk" rel=3D"noreferrer=
" target=3D"_blank">http://www.facebook.com/<wbr>ProvCollHelpDesk</a><br>
><br>
><br>
><br>
> Follow us on Twitter!<br>
><br>
> <a href=3D"http://twitter.com/PCITHelpdesk" rel=3D"noreferrer" target=
=3D"_blank">http://twitter.com/<wbr>PCITHelpdesk</a><br>
> ______________________________<wbr>_____________________ You are subsc=
ribed to<br>
> the ResNet-L mailing list.<br>
><br>
> To subscribe, unsubscribe or search the archives, go to<br>
> <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"noref=
errer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.html=
</a><br>
> ______________________________<wbr>_____________________<br>
><br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
______________________________<wbr>_____________________<br>
<br>
------------------------------<br>
<br>
Date:=C2=A0 =C2=A0 Fri, 4 Nov 2016 00:41:28 +0000<br>
From:=C2=A0 =C2=A0 "Koerber, Jeff" <<a href=3D"mailto:jkoerber=
@TOWSON.EDU">jkoerber@TOWSON.EDU</a>><br>
Subject: Re: Email Scam Problems<br>
<br>
I like the idea of Phishing our clients, but others seem to think people wo=
uld take offense to it.<br>
<br>
Publicizing that your department never asks for passwords doesn't work =
because people don't see clicking on a link and getting a password prom=
pt as you asking for their passwords.<br>
<br>
The phishing that we have been seeing lately is much more believable. No mi=
sspellings, duplicating our real login pages and even registering domains, =
such as Towson-edu.tk (which I have asked to be taken down twice since Satu=
rday, and was still up yesterday). The last one asked recipients to check t=
heir health records. I could see someone who just went to our health center=
falling for that one (we have been hit hard with the flu lately).<br>
<br>
We had a InfoSec event on Monday and at my booth, I was showing people what=
the last attack looked like asking them "would you log into this page=
?" Most didn't notice that the domain wasn't ours; one grabbed=
my phone and started to attempt logging in :).<br>
<br>
Jeff Koerber<br>
Supervisor, Student Computing Services Lab and Service Desk<br>
Towson University<br>
Towson, MD<br>
<br>
Sent from my iPhone<br>
<br>
On Nov 3, 2016, at 2:59 PM, Randy Kouns <<a href=3D"mailto:randykouns@GM=
AIL.COM">randykouns@GMAIL.COM</a><mailto:<a href=3D"mailto:randykouns@GM=
AIL.COM">r<wbr>andykouns@GMAIL.COM</a>>> wrote:<br>
<br>
Hey Jim, been a while.... hope things are getting better for you...=C2=A0 =
=C2=A0I am no longer in Education side of IT but, still stay interested in =
the happenings...=C2=A0 =C2=A0I have joined the municipal government field =
as the Director of IT for a city here in Indiana...=C2=A0 =C2=A0one of our =
sub-government entities is currently using and I am planning of subscribing=
to the Knowbe4 (<a href=3D"http://www.knowbe4.com" rel=3D"noreferrer" targ=
et=3D"_blank">www.knowbe4.com</a><<a href=3D"http://www.knowbe4.com" rel=
=3D"noreferrer" target=3D"_blank">http://www.<wbr>knowbe4.com</a>>)=C2=
=A0 service.=C2=A0 =C2=A0They provide training video's that are then fo=
llowed by an interactive email test...that tracks and records users who cli=
ck links when they shouldn't so remedial training can be accomplished.=
=C2=A0 =C2=A0the quote I have for this service is approximately $2200 per y=
ear for 500 employees.<br>
<br>
Good luck with your issues.<br>
<br>
Randy Kouns<br>
<br>
<br>
On Thu, Nov 3, 2016 at 9:42 AM, Rizzo, Jim <<a href=3D"mailto:JRIZZO@pro=
vidence.edu">JRIZZO@providence.edu</a><mailto:<a href=3D"mailto:JRIZZO@p=
rovidence.edu"><wbr>JRIZZO@providence.edu</a>>> wrote:<br>
Hey all,<br>
<br>
We're having serious issues with phishing and email scams. In fact, we =
seem to have been hit with a zero-day ransomware virus that encrypted a who=
le bunch of files on a couple people's computers and network drives. Th=
e network drives can be restored from the last good backup. The local files=
seem to be a lost cause.<br>
<br>
Anyway... How do you all inform, educate, scold, whatever people about thes=
e types of problems? The ransomware issue was related to actually clicking =
on a bad attachment (and seems to have required downloading a zip file and =
unzipping it and then running the VBS file contained within). Phishing is j=
ust that. People seem to have no problem sharing their passwords. We fairly=
regularly send emails to the campus about suspicious email messages, unexp=
ected attachments, and messages asking people to share their passwords. The=
y seem to fall on deaf ears/eyes. The same people read those emails, and it=
's not the people who need to be taking the message to heart.<br>
<br>
Looking for any ideas here. If you have a webpage about it, please share th=
e link. If you send emails, please share the text of the email.<br>
<br>
Thanks!<br>
Jim<br>
<br>
--<br>
Jim Rizzo<br>
Helpdesk Manager<br>
Providence College Information Technology<br>
(401) 865-1277<tel:%28401%29%20865-<wbr>1277><br>
<br>
<a href=3D"http://www.providence.edu/helpdesk" rel=3D"noreferrer" target=3D=
"_blank">http://www.providence.edu/<wbr>helpdesk</a><br>
<a href=3D"http://www.providence.edu/ihelp" rel=3D"noreferrer" target=3D"_b=
lank">http://www.providence.edu/<wbr>ihelp</a><br>
<br>
Like us on Facebook!<br>
<a href=3D"http://www.facebook.com/ProvCollHelpDesk" rel=3D"noreferrer" tar=
get=3D"_blank">http://www.facebook.com/<wbr>ProvCollHelpDesk</a><br>
<br>
Follow us on Twitter!<br>
<a href=3D"http://twitter.com/PCITHelpdesk" rel=3D"noreferrer" target=3D"_b=
lank">http://twitter.com/<wbr>PCITHelpdesk</a><br>
______________________________<wbr>_____________________ You are subscribed=
to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives, go to <a href=3D"http://L=
ISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"noreferrer" target=3D"_blank"=
>http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.html</a> ___________________=
___________<wbr>_____________________<br>
<br>
______________________________<wbr>_____________________ You are subscribed=
to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives, go to <a href=3D"http://L=
ISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"noreferrer" target=3D"_blank"=
>http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.html</a> ___________________=
___________<wbr>_____________________<br>
<br>
______________________________<wbr>_____________________<br>
You are subscribed to the ResNet-L mailing list.<br>
<br>
To subscribe, unsubscribe or search the archives,<br>
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" rel=3D"nore=
ferrer" target=3D"_blank">http://LISTSERV.ND.EDU/<wbr>archives/resnet-l.htm=
l</a><br>
______________________________<wbr>_____________________<br>
<br>
------------------------------<br>
<br>
End of RESNET-L Digest - 1 Nov 2016 to 3 Nov 2016 (#2016-132)<br>
******************************<wbr>******************************<wbr>*<br>
</blockquote></div><br></div></div>
___________________________________________________
You are subscribed to the ResNet-L mailing list.
<p>
To subscribe, unsubscribe or search the archives,
go to <a href=3D"http://LISTSERV.ND.EDU/archives/resnet-l.html" target=3D"_blank">http://LISTSERV.ND.EDU/archives/resnet-l.html</a>
___________________________________________________
--001a1148bb6cfc741f0540b7aa26--
