Hebrew U. Link HUCA - NEWS



News - 2008

Date Bulletin number Topics
15/04/08
250
Support during Hol Hamo'ed
Power outage in Edmond J. Safra Campus
01/06/08
251
Phishing attack in the university
10/06/08
252
Damages from last week's phishing attack
05/10/08
253
Support during Succout
30/10/08
254
Microsoft critical security patch

 

The bulletins were written and distributed by Yehavi Bourvine.



250

15/04/2008

Support during Hol Hamo'ed

During the coming PESACH vacation (APRIL 19-26) our computing systems and servers will continue to operate. We will monitor and maintain the more critical services, such as:

  • Central mail servers
  • Campus communication
  • Connection from home

Emergency support services will operate from Monday till Thursday
between 09:00-14:00. Tel: 02-6585555

Power outage in Edmond J. Safra Campus

Power outage in Edmond J. Safra Campus throughout Hol Hamo'ed. For detailed information you may contact the Division for Construction and Infrastructure (MABAT).

We recommend that you disconnect computing equipment from the power outlets to prevent damage.


251

01/06/2008

Phishing attack in the university

[ Hebrew version: http://ca.huji.ac.il/news/heb251.shtml ]

Shalom Rav,

Phishing is a deception designed to steal your identity. In phishing scams, scam artists try to get you to disclose valuable personal data - like passwords, account data, or other information - by convincing you to provide it under false pretenses.

During the last few days a phishing email message from support@huji.ac.il was distributed in HUJI which threatens to close accounts unless username and password are provided in reply (the full text is enclosed at the bottom of the current message).

If you received such a message - do not reply to it - simply delete it.

If you have responded to such a message - change the passwords you disclosed immediately, otherwise the information you've sent will damage both you personally and our computation services. If you can't do it yourself, contact our support centers: 6585555, 5883450.

Please remember - we never ask to send passwords through email messages, so if you are requested to do it just ignore the request.

 

The original phishing message:

From: Huji.ac.il Technical Support Team [mailto:support@huji.ac.il]

Subject: Re: Account Update-!!!

Dear huji.ac.il Email Account User,

We wrote to you on 28th April 2008 advising that you change the password on your account in order to prevent any unauthorised account access following the network instruction we previously communicated. all Mailhub systems will undergo regularly scheduled maintenance.

Access to your e-mail via the Webmail client will be unavailable for some time during this maintenance period. We are currently upgrading our data base and e-mail account center i.e homepage view.

We shall be deleting old [Giga Net] email accounts which are no longer active to create more space for new accounts users. we have also investigated a system wide security audit to improve and enhance our current security.

In order to continue using our services you are require to updat and re-comfirmed your email account details as requested below.

To complete your account re-comfirmation,you must reply to this email immediately and enter your account details as requested below.

Username : (**************)

Password : (**************)

Date of Birth : (**************)

Future Password : (**************)(Optional)

Failure to do this will immediately render your account deactivated

from our database and service will not be interrupted as important messages may as well be lost due to your declining to re-comfirmed to us your account account details.

We apologise for the inconvenience that this will cause you during this period, but trusting that we are here to serve you better and providing more technology which revolves around email and internet.

It is also pertinent,you understand that our primary concern is for our customers, and for the security of their files and data.

COMFIRMATION CODE: GN-/88-1B388-470

Technical Support Team

Regards

huji.ac.il Support/Maintainance Team TSR.

 


252

10/06/2008

Damages from last week's phishing attack

Hebrew version: http://ca.huji.ac.il/news/heb252.shtml

Last week we sent a bulletin concerning a phishing attack that was targeted against the University. Unfortunately some users fell victim to this fraud and replied to the phishing message, disclosing usernames and passwords. These compromised accounts were used to send large masses of spam and phishing messages worldwide, causing HUJI to be blocked from sending mail to some major mail providers.

Please Make sure to take the following precautions:

  1. Do not disclose passwords or any other sensitive data via mail. We never ask users to send us their passwords.

  2. In case you responded to a phishing scam - immediately change any passwords you disclosed and call the helpdesk (6585555,5883450) ASAP.

  3. Properly log out of web based mail services (such as webmail, HUJImail, etc.) - click on the logout button or link and only when logged out close the browser window.

  4. If you got a suspicious message and you don't know how to act - contact the helpdesk

A reminder: Phishing is tricking someone into giving them confidential information (for example - password, username) by sending an e-mail to a user under a false pretenses of a known person or organization.

Mail accounts used for spam and phishing will be blocked instantly. We will attempt to notify blocked account owners by phone in order to resolve the issue.

 

253

10/06/2008

Support during Succot
Most of our systems and servers will continue to operate. We will monitor and maintain the more critical services, such as: Central mail servers, Central communication, Connection from home.

Critical support services will operate on Wednesday(15/10), Thursday(16/10) and Sunday(19/10) 09:00-14:00. Tel: 02-6585555

  • Power outage:
    Edmond J. Safra Campus: Sunday, 19/10/08. We recommend that you disconnect Computer desktops and other office hardware from the power outlets to prevent damage.

    Please note that the central computing facilities will not be affected by the power outage.

 

254

10/06/2008

Microsoft critical security patch

[Hebrew version: http://ca.huji.ac.il/news/heb254.shtml]

On October 23rd Microsoft released a critical security patch for Windows operating systems (all supported versions). We strongly recommend that you apply the update to your Windows as soon as possible since there are already viruses that infect and exploit
un-patched computers.

You can get the update at the Microsoft Update center:
http://update.microsoft.com
or use our instructions for an automatic updates:
http://ca.huji.ac.il/services/security/winup.shtml

Users connected to the EKMD system in Ein Kerem will receive this patch automatically.

Information about the update is available in Microsoft Security Bulletin MS08-067 -- Critical (958644):
http://www.microsoft.com/technet/security/bulletin/ms08-067.mspx

 



Last updated: 27/07/2011