Phishing emails – ‘REFUND CONFIRMATION – Heriot-Watt University Student’

We have had reports of staff and students receiving phishing emails this afternoon. 

Some have a subject line of  REFUND CONFIRMATION – Heriot-Watt University Student – and a link to claim a tax refund.  Some are requesting bank details for refunds.  

Do NOT click on the link in the email 

If you think you have received a phishing email

  • DON’T click on any links
    DON’T open any attachments
  • Forward the email to abuse@hw.ac.uk
  • Delete it

Top tips to help you spot phishing emails

  • Be suspicious of any urgent requests for personal or financial information
  • Be aware: Phishing scams are common at main instalment payment dates
  • Check that you’re using a secure website when submitting credit card or other sensitive information;
  • Prevention: Your email details may have been taken from a social networking site so avoid disclosing your email address or make sure you hide it on your page
  • Look for tell-tale signs of phishing: Check the quality of the communication. Misspelling, poor punctuation and bad grammar are often good indicators

 

Upgrade of S: Drive – 28th Feb 17:00 GMT

Information Services will be migrating the S: drive to a new location in order to improve the service. This change will utilise new IT infrastructure that will offer a faster, robust and more secure platform.
Access to the S: drive should be considered “at risk” from Friday 28th February 17:00 – Monday 2nd March 9:00 GMT. 
During the switch over all data on the S: drive will be secure.

For those users with managed desktops/laptops the new path to the S: drive will automatically be updated, however Recent Documents and Shortcuts to the old S: drive locations will no longer work and will need to be recreated.

For those on unmanaged machines you will need to remap the S: drive from the current location \\netapp04b\HWShare to \\HWSHARE\hwshare

Please contact ISHelp@hw.ac.uk if you have any questions

Essential maintenance – VPN and Single Sign On Systems – Saturday 22nd February

Essential maintenance – VPN and Single Sign On Systems – Saturday 22nd February

To enhance stability and performance, essential maintenance will be taking place on our VPN and Single Sign On systems on Saturday 22nd February.
VPN access and log in to the Portal, Office365 and Dropbox services will be “at risk” on this day although we will endeavour to keep any service disruption to a minimum.
Information Services apologises for any inconvenience and appreciate your co-operation

 

Phishing emails – “Annual refund”

Phishing emails “Heriot-Watt University – Valuation Office Agency – Annual refund”

A high volume of phishing emails have been received by staff and students this afternoon.  Some are requesting bank details for refunds similar to the example below.

Do NOT click on the link in the email 

Phishing email example

If you think you have received a phishing email

  • DON’T click on any links
    DON’T open any attachments
  • Forward the email to abuse@hw.ac.uk
  • Delete it

Top tips to help you spot phishing emails

  • Be suspicious of any urgent requests for personal or financial information
  • Be aware: Phishing scams are common at main instalment payment dates
  • Check that you’re using a secure website when submitting credit card or other sensitive information;
  • Prevention: Your email details may have been taken from a social networking site so avoid disclosing your email address or make sure you hide it on your page
  • Look for tell-tale signs of phishing: Check the quality of the communication. Misspelling, poor punctuation and bad grammar are often good indicators

 

Study Break cards – Edinburgh Campus Library

We are introducing Study Break cards for use in our Edinburgh Campus Library.
Although the Library is open 24/7 everyday, it is important to have regular breaks.  Therefore when you leave your desk in the Library, fill in a Study Break card, place it clearly on the desk and your space will be saved for you for up to 30 minutes.
Pick up a card from the Library Service Desk.

Study Break cards

Space in the Library is in high demand during revision and exam time so please use the Study Break cards.  If your space remains unoccupied for longer than 30 minutes, and other students need the space, then your belongings will be put aside or moved by Library staff.  You may not reclaim the desk if you return after 30 minutes.
Staff will be monitoring the study spaces throughout the day and evening but cannot accept responsibility for unattended items.
Please DO NOT leave any valuables unattended at any time. 

We will be monitoring the Library space as usual.  We have had lots of feedback from students in favour of Floor 3 being silent study space so please continue to use it responsibly.

Monitoring card

Information Services Allen McTernan Building Uninterruptible Power Supply (UPS) Maintenance – 17th 18th December

Information Services Allen McTernan Building Uninterruptible Power Supply (UPS) Maintenance

As part of our ongoing infrastructure maintenance schedule, we are required to replace the batteries in the main data centre UPS, which provides backup power to the majority of services housed in Allen McTernan, in the event of a power outage.
This work will take place on the 17th December and will last one working day.
Whilst this work is ongoing the existing services will be powered directly from the mains supply, but we will have no battery backup in the event of a mains power failure.
Services should therefore be considered at risk during Monday the 17th and Tuesday the 18th of December.
All services run from Allen McTernan should be backed up in advance of this date.

Any questions, please submit a ticket to the Help Desk ITHelp@hw.ac.uk

Heriot-Watt secures Cyber Essentials Plus accreditation #InformationServices

We have recently been awarded Cyber Essentials Plus accreditation in information security following an audit by a Scottish Government approved assessment body, ID Cyber Solutions.

The UK government scheme, which is specifically designed for public sector organisations in the UK, is a globally recognised certification that serves as a kite mark for industries around the world and is increasing becoming a requirement for research funders.

Receiving the certification is testament to our commitment to cyber security. It is also a demonstration of our commitment to continuous process improvement and safeguarding data

Kathy McCabe, Global Director Information Services

The certification covers the entire range of IT services provided within the university. It includes an assurance framework and a set of security controls to protect information from threats coming from the internet. Cyber Essentials Plus includes additional independent testing which requires an on-site technical assessment.

We achieved accreditation by the 31st October 2018 target date set out by the Scottish Government as part of its Cyber Resilience Strategy for Scotland, making it the largest Scottish University of our size and complexity to achieve the CE+ certification to date.

Kathy McCabe, Global Director of Information Services labelled the certification a huge achievement and an absolute credit to the teams involved”, saying it was the “culmination of many thousands of hours of work undertaken by an institution-wide team of dedicated colleagues.”

She added: “Receiving the certification is testament to our commitment to cyber security. It is also a demonstration of our commitment to continuous process improvement and  safeguarding data. But more than that, it provides the necessary accreditation to access funding from a range of funders, a proactive step giving Heriot-Watt an advantage over other HEIs/competitors.” 

Congratulations to everyone involved.

Cyber-EssentialsPlus-forweb (1)

‘Payment submitted’ – spam and phishing emails

Phishing emails with ‘Payment submitted’  in the subject line similar to those below are doing the rounds – please beware

spam emailIf you think you have received a phishing email

  • DON’T click on any links
    DON’T open any attachments
  • forward the email to abuse@hw.ac.uk
  • delete it

Phishing emails ‘Invoice’ or ‘Purchase Order’

Phishing emails with ‘Invoice’ or ‘Purchase Order’ in the subject line similar to those below are doing the rounds – please beware

If you think you have received a phishing email

  • DON’T click on any links
    DON’T open any attachments
  • forward the email to abuse@hw.ac.uk
  • delete it

Phish purchase

phish invoice

Top tips to help you spot phishing emails

  • Be suspiciousof any urgent requests for personal or financial information
  • Be aware: Phishing scams are common at main instalment payment dates
  • Check that you’re using a secure websitewhen submitting credit card or other sensitive information;
  • Prevention: Your email details may have been taken from a social networking site so avoid disclosing your email address or make sure you hide it on your page
  • Look for tell-tale signs of phishing: Check the quality of the communication. Misspelling, poor punctuation and bad grammar are often good indicators

 

Get Safe Online Week 2017

Get Safe Online week starts today in the UK.  The key theme this year is phishing – and how to reduce the chances of getting caught.

National Stats reveal that

  • Younger people are more likely to be victims of phishing than older people:
    • 11 per cent of 18-24 year olds have been a victim of phishing
    • 5 per cent of 55+ year olds have been a victim of phishing
  • This is despite the fact that older people are more likely to be targeted:
    • 36 per cent of 18-24 year olds have been targeted by phishing, but have not fallen victim to it
    • 47 per cent of 55+ year olds have been targeted by phishing, but have not fallen victim to it
  • This indicates younger people are less savvy when it comes to phishing than older people

Visit Get Safe Online for more info and advice.

GSO_Week-17

  • Recent Posts

  • Follow HWU_IS on Twitter

  • Archives

  • Categories

  • Subscribe

  • Tags