The FBI has recently issued a warning about an increase in scam websites that offer free online file conversion services. Rather than providing genuine conversions, these sites often download malware onto victims’ computers. The FBI emphasized the risk of malware leading to ransomware attacks and the installation of browser hijackers and adware from similar sites. […]
CISO Update #77 Attackers frequently target help desks to gain unauthorized access to user accounts. This is achieved through social engineering tactics, where scammers impersonate legitimate users and request password resets. Scammers will fabricate scenarios that require immediate password resets. They often use urgency or authority to pressure help desk personnel into bypassing standard verification […]
We received a report of an FIT alumnus who received a text message from someone pretending to a high level executive at FIT. We want to alert you of the dangers of smishing (text message phishing) and to remind you that official college communication is never sent in the form of a text message.“SMS” phishing […]
We have received reports of some FIT employees receiving emails with blank subject lines or one character subject lines with no content in the body of the email. Cybersecurity researchers have reported that blank, unsolicited emails are often an early sign of a potential future phishing attack. Cyber gangs will often put feelers out to […]
What happened?Over the weekend and this morning, FIT (and many of our peer SUNY campuses) received emails from several senders all purporting to represent the IRS, with a subject line of “Recalculating Your Tax Refund Payment.” The emails contained a click button that brings users to a site that looks like an IRS.gov site, but […]
What happened?An advisory has just been released by one the Higher Education cybersecurity communication groups alerting us to two phishing campaigns targeting students using the lure of the Pell Grant. The first one attempts to contact students by text message, a form of phishing called “SMiShing,” congratulating them on their acceptance into the Pell Grant Award […]
Download and complete the IT For FIT Request for Days Off form. Submit the completed form to your direct supervisor.
IT Policies All FIT Policies are available in the College Policy Library on the FIT website including all IT Policies. IT Standard Operating Procedures A Standard Operating Procedure (“SOP” or “SOPs”)Is a set of instructions that outline recurring activities carried out by the Division of Information Technology, a unit of IT, or is a function […]
This month focuses on fake domain names. A domain name is an entity’s identity on-line, like FITNYC.EDU. It’s been a long-standing practice among hackers to register domain names that mimic those of legitimate businesses such as 1BM.com instead of IBM.com. However, recently attackers have taken this to a new level. The FBI recently announced that […]