Security issue – Android Device users Scam Alert

There have been widespread reports of a new scam affecting Android users called “Flubot”

This is a text-message scam that infects Android phones and is spreading across the UK. The message – which pretends to be from a package delivery firm, prompts users to install a tracking app – but is actually a malicious piece of spyware.

Crucially, it can take over devices and spy on phones to gather confidential data, including things such as sensitive work information or online banking details.

It has been reported on BBC news https://www.bbc.co.uk/news/technology-56859091

If you receive a text message that looks like the one below:
IGNORE: Do not click any links.
DELETE: Remove the text from your phone

Be vigilant for phishing and scam emails

Be vigilant for phishing and scam emails

We regularly receive reports from staff and students of suspicious emails e.g. false vaccination appointments, bogus HMRC tax refunds etc.
These can appear to be very believable and sophisticated and sometimes scammers can take names from university or company websites and then create other email accounts so the sender details look correct.

What to do:
If you think you have received a phishing email to your @hw.ac.uk account
Do not click on any links
Do not open any attachments
Don’t reply to the message

Information Services Help:
To notify Information Services of a phishing email, or you have concerns about whether an email is real or not,  please forward it to phishing@hw.ac.uk  and then delete it.


If you have received a phishing email, accidently clicked the link in it and provided your university credentials (username and password), please send an email to ishelp.hw.ac.uk for assistance.

Accounts that are suspected to be compromised will be blocked automatically for security purposes. 
If your account has been blocked because of this, please send an email to ishelp.hw.ac.uk for assistance.

Information Services are constantly working to make systems including emails as safe and secure as possible.
Planning is underway to implement Multi Factor Authentication for staff and then students to improve staff and student security and their data.

Top tips to help you spot phishing emails

(phishing is the attempt to acquire sensitive information such as usernames, passwords, and credit card details (and sometimes, indirectly, money) by masquerading as a trustworthy entity in an electronic communication).

  • Be suspicious of any urgent requests for personal or financial information
  • Be aware: Phishing scams are common at main instalment payment dates or connected to newsworthy events
  • Check that you’re using a secure website when submitting credit card or other sensitive information.
  • Prevention: Your email details may have been taken from a social networking site so avoid disclosing your email address or make sure you hide it on your page
  • Look for tell-tale signs of phishing: Check the quality of the communication. Misspelling, poor punctuation and bad grammar are often good indicators

Warning regarding Sci-Hub website and phishing attacks

Sci-Hub is an illegal website which poses serious security risks and should be avoided by University students and staff.
Police have warned against using websites, and Sci-Hub, in particular that allow users to illegally access scientific research papers. 

The Sci-Hub website will be blocked for accessing on campus but it is important that students and staff do not access the site from home or off campus.

Sci-Hub obtains the papers through a variety of malicious means, such as the use of phishing emails to trick university staff and students into divulging their login credentials. 
Sci Hub then use this to compromise the university’s network and download the research papers” 
The City of London Police’s Intellectual Property Crime Unit (PIPCU) press release

Phishing emails “vaccination appointments”

Please be aware that there are reports of several phishing emails being sent to HWU staff and student accounts.  Some of these emails claim to be from the NHS about vaccination appointments e.g. “important Book an appointment using the NHS e-Referral Service NHSVaccination” with links to book an appointment. 

If you think you have received a phishing email, do not click on any links, and do not open any attachments. 

If you are unsure if an email is real or not please forward it or screenshot the email content and send it to ishelp@hw.ac.uk 
If you have received a phishing email, accidently clicked the link in it and provided your university credentials (username and password), please contact the IS Helpdesk for assistance. 

Accounts that are suspected to be compromised will be blocked automatically.
If your account has been blocked because of this, please send an email to ishelp.hw.ac.uk for further assistance.

Top tips to help you spot phishing emails

(phishing is the attempt to acquire sensitive information such as usernames, passwords, and credit card details (and sometimes, indirectly, money) by masquerading as a trustworthy entity in an electronic communication).

  • Be suspicious of any urgent requests for personal or financial information
  • Be aware: Phishing scams are common at main instalment payment dates or connected to newsworthy events
  • Check that you’re using a secure website when submitting credit card or other sensitive information.
  • Prevention: Your email details may have been taken from a social networking site so avoid disclosing your email address or make sure you hide it on your page
  • Look for tell-tale signs of phishing: Check the quality of the communication. Misspelling, poor punctuation and bad grammar are often good indicators

Phishing emails – ‘REFUND CONFIRMATION – Heriot-Watt University Student’

We have had reports of staff and students receiving phishing emails this afternoon. 

Some have a subject line of  REFUND CONFIRMATION – Heriot-Watt University Student – and a link to claim a tax refund.  Some are requesting bank details for refunds.  

Do NOT click on the link in the email 

If you think you have received a phishing email

  • DON’T click on any links
    DON’T open any attachments
  • Forward the email to abuse@hw.ac.uk
  • Delete it

Top tips to help you spot phishing emails

  • Be suspicious of any urgent requests for personal or financial information
  • Be aware: Phishing scams are common at main instalment payment dates
  • Check that you’re using a secure website when submitting credit card or other sensitive information;
  • Prevention: Your email details may have been taken from a social networking site so avoid disclosing your email address or make sure you hide it on your page
  • Look for tell-tale signs of phishing: Check the quality of the communication. Misspelling, poor punctuation and bad grammar are often good indicators

 

Upgrade of S: Drive – 28th Feb 17:00 GMT

Information Services will be migrating the S: drive to a new location in order to improve the service. This change will utilise new IT infrastructure that will offer a faster, robust and more secure platform.
Access to the S: drive should be considered “at risk” from Friday 28th February 17:00 – Monday 2nd March 9:00 GMT. 
During the switch over all data on the S: drive will be secure.

For those users with managed desktops/laptops the new path to the S: drive will automatically be updated, however Recent Documents and Shortcuts to the old S: drive locations will no longer work and will need to be recreated.

For those on unmanaged machines you will need to remap the S: drive from the current location \\netapp04b\HWShare to \\HWSHARE\hwshare

Please contact ISHelp@hw.ac.uk if you have any questions

Essential maintenance – VPN and Single Sign On Systems – Saturday 22nd February

Essential maintenance – VPN and Single Sign On Systems – Saturday 22nd February

To enhance stability and performance, essential maintenance will be taking place on our VPN and Single Sign On systems on Saturday 22nd February.
VPN access and log in to the Portal, Office365 and Dropbox services will be “at risk” on this day although we will endeavour to keep any service disruption to a minimum.
Information Services apologises for any inconvenience and appreciate your co-operation

 

Phishing emails – “Annual refund”

Phishing emails “Heriot-Watt University – Valuation Office Agency – Annual refund”

A high volume of phishing emails have been received by staff and students this afternoon.  Some are requesting bank details for refunds similar to the example below.

Do NOT click on the link in the email 

Phishing email example

If you think you have received a phishing email

  • DON’T click on any links
    DON’T open any attachments
  • Forward the email to abuse@hw.ac.uk
  • Delete it

Top tips to help you spot phishing emails

  • Be suspicious of any urgent requests for personal or financial information
  • Be aware: Phishing scams are common at main instalment payment dates
  • Check that you’re using a secure website when submitting credit card or other sensitive information;
  • Prevention: Your email details may have been taken from a social networking site so avoid disclosing your email address or make sure you hide it on your page
  • Look for tell-tale signs of phishing: Check the quality of the communication. Misspelling, poor punctuation and bad grammar are often good indicators

 

Study Break cards – Edinburgh Campus Library

We are introducing Study Break cards for use in our Edinburgh Campus Library.
Although the Library is open 24/7 everyday, it is important to have regular breaks.  Therefore when you leave your desk in the Library, fill in a Study Break card, place it clearly on the desk and your space will be saved for you for up to 30 minutes.
Pick up a card from the Library Service Desk.

Study Break cards

Space in the Library is in high demand during revision and exam time so please use the Study Break cards.  If your space remains unoccupied for longer than 30 minutes, and other students need the space, then your belongings will be put aside or moved by Library staff.  You may not reclaim the desk if you return after 30 minutes.
Staff will be monitoring the study spaces throughout the day and evening but cannot accept responsibility for unattended items.
Please DO NOT leave any valuables unattended at any time. 

We will be monitoring the Library space as usual.  We have had lots of feedback from students in favour of Floor 3 being silent study space so please continue to use it responsibly.

Monitoring card

Information Services Allen McTernan Building Uninterruptible Power Supply (UPS) Maintenance – 17th 18th December

Information Services Allen McTernan Building Uninterruptible Power Supply (UPS) Maintenance

As part of our ongoing infrastructure maintenance schedule, we are required to replace the batteries in the main data centre UPS, which provides backup power to the majority of services housed in Allen McTernan, in the event of a power outage.
This work will take place on the 17th December and will last one working day.
Whilst this work is ongoing the existing services will be powered directly from the mains supply, but we will have no battery backup in the event of a mains power failure.
Services should therefore be considered at risk during Monday the 17th and Tuesday the 18th of December.
All services run from Allen McTernan should be backed up in advance of this date.

Any questions, please submit a ticket to the Help Desk ITHelp@hw.ac.uk

  • Recent Posts

  • Follow HWU_IS on Twitter

  • Archives

  • Categories

  • Subscribe

  • Tags