Another phishing attempt titled “Alerts” pretending to be from “My Denison” is a scam.

If you are using Denison Apps Mail:

Open the message and click the down arrow beside the Reply button and select “Report phishing” in the menu that appears. (Note: if “Report phishing” does not appear as an option and “Report not phishing” appears instead then the message is already flagged as phishing.)

This reports the phishing attack to Google and improves the identification and blocking of future phishing attacks. After you report it, please delete the message.

NOTE: this option is only available in the web (Gmail) interface for Denison Apps. It is not available if you are using Thunderbird, Apple Mail, or another client to access your Denison Apps email.

Please DO NOT RESPOND to or click links in this or any emails that request computer account or other personal information. They are an attempt to steal, at minimum, your email or other computer account, at maximum, your identity.

If you replied to it in any fashion, please visit the ITS Help Desk Online FAQ about what to do if you suspect your account may be compromised and follow all the steps listed:
http://apps.denison.edu/helpdesk/faq3422

Please contact the ITS Help Desk at helpdesk@denison.edu or 740-587-6395 if you have any questions or concerns.

September edition:

Password Managers

(Note:  Denison ITS recommends LastPass)

(https://securingthehuman.sans.org/newsletters/ouch/issues/OUCH-201709_en.pdf)

OUCH! is the world’s leading, free security awareness newsletter designed for the common computer user. Published every month and in multiple languages, each edition is carefully researched and developed by the SANS Securing The Human team, SANS instructor subject matter experts and team members of the community. Each issue focuses on and explains a specific topic and actionable steps people can take to protect themselves, their family and their organization.

What is the Equifax data breach?

On September 7, 2017, Equifax CEO Rick Smith announced that on July 29, 2017 Equifax suffered a data breach between May and July 2017. The breach may have included the personal credit information of 143 million Americans, including social security numbers, birthdates, addresses, driver’s license numbers and credit account information. As a point of comparison, there are only about 126 million households in America.

What does this mean for me?

If a malicious actor were to get your personal information, they could sell it, or use it to impersonate you. They could open credit accounts in your name, and use them for illegal means. This could lead to lowering your credit score, or having charges pressed against you for non-payment. It is a serious breach, but we are all in this together.

What can I do to protect myself?

• Consider a credit monitoring/protection service – Equifax has a website, www.equifaxsecurity2017.com, where you can check to see if your record is impacted. After you enter your last name and last 6 digits of your social security number (SSN) it will tell you whether your personal information was part of the breach. Afterward, it will give you the opportunity to enroll in TrustedID Premier*. Based on the number of enrollments, they will give you an enrollment date. On your enrollment date, you will have to return to the link they gave you and continue through the enrollment process. Once enrolled, Equifax will monitor your credit and alert you if there is a problem. *NOTICE:  The arbitration clause and class action waiver included in the TrustedID Premier Terms of Use applies to the free credit file monitoring and identity theft protection products, and not the cybersecurity incident.
• Setup your personal account on SSA.gov – The stolen information from this breach could potentially be used to open an account with the SSA and perpetrate tax fraud. We recommend creating an SSA account as a preemptive measure.
• Consider freezing your credit accounts – A freeze tells the four major credit agencies that your credit report should not be shared and a new line of credit should not be opened when requested. You can unfreeze your account with a PIN if you want to take out a loan in the future. In order to freeze your credit, you must notify each of the major credit bureaus. Brian Krebs, a renowned information security professional has a great post that covers this topic in detail.
  • Equifax Security Freeze
  • Experian Security Freeze
  • Innovis Security Freeze
  • TransUnion Security Freeze
• Check your credit report annually – The Ohio Attorney General website has more information.

What if I have more questions?

In addition to information provided on www.equifaxsecurity2017.com, Equifax also has a toll free number setup, 1-866-447-7559, although some callers are reporting a fast busy signal due to high call volume.

Check out these new features from Dialpad:

• Audio settings and system test – Not sure if you have your headset or microphone setup correctly? The system test will you check all aspects of your setup.
• Run Dialpad from within your Chrome Browser – Using a different computer or a shared workspace? Now you can access Dialpad by just using your browser.
• Do not disturb mode now displays a banner across your app screen so you don’t forget to turn it off.
• There are new guides available from Dialpad, including tutorial videos on things like making a three-way call, setting your caller ID, and recording your voicemail greeting.

Update 1:30pm

Google has notified us that the problem has been corrected.

Update 10:50am

Google has posted this update on their status board.  “We’re investigating reports of an issue with Google Drive. We will provide more information shortly.  Google Drive is not loading files and results in a 500 error.”

Original message:

Some users are experiencing Google Drive issues.  They are getting the message “The server encountered an error. Please try again later.”  Updates will be added here as we learn more about the issue.