Georgia Tech will always be in danger of hackers working from outside to get to sensitive information from the Institute. The Office of Information Technology (OIT) wants to ensure that members of the campus community do not get caught in the scam. Recently, e-mail messages titled Update YOUR Gatech EMAIL EMAIL NOW have been sent to campus inboxes, claiming to be from Gatech messaging center. The message claims that Tech's e-mail center and database are being upgraded, and requests a reply with the recipient's username and password.
This is the latest example of phishing, an attempt to fraudulently acquire sensitive information from a company or organization. Typically this technique has been used in messages disguised as a request from PayPal, eBay or financial institutions.
It should be noted that Georgia Tech's Computer & Network Usage and Security Policy specifically prohibits sharing passwords and any system administrator requesting it would be in violation of the policy. OIT officials warn that this type of e-mail `phishing' scam is becoming more sophisticated, and remind the campus community never to provide this type of personal data via e-mail to anyone for any reason.
Anyone who has sent sensitive information via this or any other e-mail should immediately reset his or her password and then contact the OIT Customer Support Center at 894-7173.
Remember:
- Legitimate businesses do not request personal information through e-mail. Do not provide passwords, account information, Social Security numbers or other information if requested.
- Do not click on e-mail links requesting personal information.
- Use a firewall, anti-spyware and anti-virus programs on your home computer. Faculty and staff have access to free anti-virus software through the OIT Web site.
Additional information about this can be found at Universities in the US being targeted in a Spear Phising attack.