Kansas State University


IT News

Category: Security

Beware of Equifax settlement and Capital One phishing scams

Did we mention K-Staters need to be constantly on guard for protecting yourself against phishing scams? Scammers will target you both personally and professionally. Keep your guard up. Recent attacks include phishing scams for the Equifax settlement claim and the Capital One breach.

Equifax settlement claim

Cybercriminals are trying to trick you into filing an Equifax claim and receiving a $125 payment because your personal data was part of the Equifax data breach. Scammers are sending phishing attacks that appear to come from Equifax, however, when the user clicks the link they are on a fake website that mimics  Equifax. This website then attempts to steal your personal information.

Don’t fall for it. Forward this fake email to abuse@ksu.edu.

Equifax spoofed email

To file a claim, go the legitimate FTC website and click on the blue “File a Claim” button. The website checks your eligibility for that claim.

Note: Not everyone’s information was compromised. The link to the FTC site is: https://www.ftc.gov/enforcement/cases-proceedings/refunds/equifax-data-breach-settlement.

Capital One

Cybercriminals are trying to exploit the Capital One breach with a phishing email that is using a Windows security update as the bait. Clicking the link in the email will install a backdoor Trojan.

CapitalOne phishing email

Do not click on links in an email to install the software. Forward emails such as these to abuse@ksu.edu.

Breaches such as Equifax and Capitol One are prime opportunities for cybercriminals to trick K-Staters into giving up their credentials. Remember: Go to the organization’s website for information on recent breaches.

If you have any questions, contact the IT Help Desk (helpdesk@ksu.edu).

Phishing alert: Microsoft OneNote Audio Note is used to get users to go to a fake Microsoft Login page

K-Staters need to be constantly on guard for potential phishing scams. The latest on the scene is a OneNote Audio Note phishing scam campaign.

Scammers are sending emails with the subject line: “New Audio Note Received” and then the body of the email message states that one of your contacts in your address book sent the email. The email includes a link such as “Listen to the full message here” which then takes you to a fake OneNote Online page. If you login, your credentials are stolen.

What can you do?  

  • Be aware of emails asking you to view an audio note. Ask the person who “sent” it if they actually did send it.
  • Be aware that Microsoft login forms will just be on microsoft.com, live.com, microsoftonline.com, and outlook.com domains only. If you are presented with a Microsoft login form from any other URL, avoid it and only use your normal bookmarks to go to these sites.

If you have any questions, contact the IT Help Desk (helpdesk@ksu.edu).


ITS Trend servers to shut down 5:00 p.m. June 14

K-State requires all campus network connected computers to run some form of antivirus software and has provided faculty, staff and students with a centrally funded and administered antivirus solution for over 20 years.  During that time, extensive financial and personnel resources have been dedicated to maintaining the service, however the value of doing so has been steadily declining.

Many modern operating systems include built-in or open source antivirus protection that is as effective as the solution K-State is currently providing. During spring semester, Information Technology Services has been working with system administrators across campus to remove the centrally supported antivirus, Trend Micro, from servers and departmental computers.

Students, staff and faculty will also need to uninstall Trend Micro from their personal machines both on campus and at home.  A list of recommended antivirus solutions is provided on the K-State Antivirus Software webpage.

Central Trend Micro servers will shutdown at 5 p.m. on June 14. After that time, clients should continue to receive pattern file updates directly from Trend but will not receive program updates. Individuals who attempt to install Trend Micro will receive an error message.

What should you do?

The K-State Antivirus Software webpage will continue to be updated as the campus works through this process. If you have any questions, contact the IT Help Desk (helpdesk@ksu.edu)

Phishing scams keep coming

Two weeks ago we had more compromised eIDs than in the period from January 1 – May 13. Last week proved to be equally lucrative for scammers.  Scammers attack when individuals are busy and vulnerable.

As these attacks continue to increase in frequency and sophistication, it is of critical importance that you:

  • Think before you click – always be suspicious of any unsolicited communication.
  • Don’t respond to that email if you are not absolutely certain of the sender and the contents.
  • If you are not certain about an attachment, don’t open it.
  • If you do respond to a scam, immediately change your password.

These simple guidelines could prevent scammers from using your credentials elsewhere and even save your identity. Personal information is like money. Value it. Protect it.


Malware filtering applied to email attachments

Office 365 and Outlook logosIn an ongoing effort to keep K-State’s systems and services safe, malware filtering has been activated for K-State’s email. The filter protects the mail system and individual mailboxes from malicious software by blocking attachments that are commonly used to transmit viruses or malicious software.

The malware filtering is applied to all K-State email: Office 365 webmail and Outlook. All incoming and outgoing email is filtered. Go to File Attachment Types Blocked By K-State Email to view a complete listing of the filetypes currently being blocked, along with common file extensions for the specific filetypes. Continue reading “Malware filtering applied to email attachments”

Duo: April 2 enrollment deadline for faculty/staff Group 5

by Information Technology Services

Members of Duo enrollment Group 5 will receive their enrollment email on Tuesday, March 19, with an enrollment deadline Tuesday, April 2.

K-State password + Duo (second-layer security) = Access

Continue reading “Duo: April 2 enrollment deadline for faculty/staff Group 5”

Office 365: Gift card warning notification

Over the last few months, K-State has seen an increase in gift card scams. As you may have noticed a feature has been turned on in Office 365 that warns K-Staters about messages that contain the words “gift card” whether it is in subject line or in the body of the message. If the system detects those words, it will display the following disclaimer in your message:

**These messages have been known to be malicious. Please, be very cautious with these messages.**

You will most likely receive emails that are legitimate and emails that are scams. Review the email carefully before responding. The following are some examples:

Gift card email example

Notice a few things:

  • The email address seem suspicious.
  • The request is urgent. All scams put some sort of emergency in the request.
  • There are typos.

Continue reading “Office 365: Gift card warning notification”