Internet & Security Threats
Known and Reported Threats
- Carthage will occasionally be hit with phishing attempts via email, text, or phone. Current known, suspected, and reported security threats are shown below. If you do not see the threat that you are experiencing, it does not mean that it is not a threat. Use good judgment when communicating.
- Use these instructions to recognize scams and phishing attempts.
- Check if the links in the email are safe.
- If you still have questions about the legitimacy of a communication, please email email@example.com.
Ransomware On Your Personal Computer
Take a look at this article by Forbes about how to handle Ransomware on your personal computer.
What Should You Do?
- If the threat does not appear in the list below, you can report it to LIS by clicking the “Internet Threat Report” link below.
- Report it to Google from inside the message by clicking the arrow next to Reply, clicking More, then Clicking Report phishing.
- Ignore or delete the message.
- If you replied, clicked a link, provided any information through a form, or opened an attachment, reset your Carthage password and scan your computer for malware (Windows, Mac).
- Email firstname.lastname@example.org for questions or concerns.
- Internet Threat Report
Message or Warning
Click on a link in the menu below to see more information about each threat.
If you know of a threat, please submit the form below to let Library and Information Services know:
Library and Information Services sent an email to all Carthage staff today at 4:30pm. The senders address will be “email@example.com”. This was an intended email sent by LIS and you can proceed to complete the training behind the link within the email. If you have any questions please email firstname.lastname@example.org
We have identified the email below as a known threat, please do not interact with it and mark it as SPAM. If you have received and interacted with it, change your password and then contact us at email@example.com.
The following email has made its way to several hundred Carthage email inboxes. If you receive this email, please report it as Phishing with the banner in the email or click the “report as spam” icon in your email inbox (it has an exclamation point icon). We are working on filtering anything further and removing this threat from any additional inboxes.
From: Carthage College <firstname.lastname@example.org>
Date: Tue, Oct 25, 2022 at 11:37 AM
Subject: Carthage College sent you a documents!
To: Carthage College <email@example.com>
Carthage College has invited you to view the following document
[Folder clipped] CC_0088902-44.pdf
Follow above for more details.
2001 Alford Park Drive
Kenosha, WI 53140
The following email has made its way to Carthage email inboxes. If you receive this email, please report it as SPAM with the banner in the email or click the “report as spam” icon in your email inbox (it has an exclamation point icon)
The following is a known Phishing Attempt reported and confirmed on June 27th, 2022 - please do not interact with any part of the email and report the email as SPAM or Phishing from within to your Gmail inbox.
The following email went out from Carthage Library and Information Services about a legitimate training requirement from LIS and Carthage. Please take this message seriously and complete the training. The text of the email is below.
As indicated in our previous email, you currently have 1 assignment awaiting your completion. Please click the link below to register on our training platform called Cyber Risk Aware and complete your assigned training by 6/25/2022 4:30:00 AM.
Carthage College CyberRickAware Portal
Feel free to rate and provide feedback when prompted upon completion of this training.
Library and Information Services
We’ve been made aware of an email hoax that presents the subject “I.T EVALUATION.pdf” that is signed as John Swallow with link and an “OPEN” button. Please avoid opening or interacting with this email.
-Library and Information Services
firstname.lastname@example.org has shared the following item:
We are urgently conducting a short 5-minute survey about employee efficiency which requires staff to participate.
Your input is critical and will help carry out our responsibilities.
John R. Swallow
A recent phishing attempt via calendar invite has been identified and is actively being delivered in higher education institutions. The Meeting title is “Customer Service Review”, the email may appear to come from users from within our @carthage.edu domain. Please be cautious when acceppting any calendear invites you are not familar with.
-Library and information Services
We’ve been made aware of a phishing attempt that contains the following information and link to a “google doc”, please be on the lookout. Text of email:
See the changes in your Google Document “Contact Me - Form”: CLICK HERE
A user last made changes on 1/23/2022 1:09pm (India Standard Time) regarding the below:
- Form submit
Powered by Google Docs
This is to notify all Carthage College Students and Staffs that we are validating active accounts.
Kidnly confirm that your account is still in use by clicking the validation link below:
Please note that any unvalidated accounts will be marked as disused and subsequently deleted within 72 hours.
IT Help Desk
Carthage College Office of Information Technology
It’s tax season and attackers are capitalizing on that with this phishing email:
Accounting and tax software provider Intuit has notified customers of
an ongoing phishing campaign impersonating the company and trying to
lure victims with fake warnings that their Turbo Tax (Intuit) accounts have been
Intuit’s alert follows reports received from customers who were
emailed and told that their Intuit accounts were “disabled following a
recent server security upgrade”
Email Typically Reads:
“We have temporarily disabled your account due to inactivity. It is
compulsory that you restore your access within the next 24 hours,”
the attackers say in the phishing messages, masquerading as the
Intuit Maintenance Team. “This is a result of recent security upgrade
on our server and database, to fight against vulnerability and
account theft as we begin the new tax season.”
A new phishing campaign is installing the BazarLoader/BazarBackdoor trojan through malicious CSV files. BazarBackdoor is a stealthy backdoor malware created to provide threat actors remote access to an internal device that can be used as a springboard for further lateral movement within a network. The phishing emails pretend to be “Payment Remittance Advice” with links to remote sites that download a CSV file with names similar to “document-21966.csv.”
Subject: Employee Benefit Program
From: Stormy Crawford <email@example.com> or Denise P. Barrett <firstname.lastname@example.org></email@example.com></firstname.lastname@example.org>
The Employee Assistance Program (E.A.P.) will be supporting all employees with cash assistance as part of a benefit plan to help employees get through the hard times due to the COVID-19 pandemic.
The Employee Assistance program will provide $3,700 in assistance to all qualified employees after applications are reviewed, processed, and approved.
Visit the Employee Benefits portal and follow all instructions carefully and enter the most appropriate details to apply.
Note: the support program is only available to qualifying employees. All the information requested is required for your application to be processed.