News

March 9, 2017

CRITICAL Apache Struts 2.x Vulnerability (CVE-2017-5638)

Summary

A critical vulnerability has been discovered and released in the Apache Struts 2 framework. Patches are available from Apache. [1]

Impact

This vulnerability allows for unauthenticated, remote code execution on the server. Further, there are at least two known public exploits for this vulnerability [2] and ISP has already started to see scanning and exploit attempts against campus systems.

February 3, 2017

WordPress 4.7.2 Security Release

Summary

WordPress has fixed several critical flaws in its content management system, addressing cross-site scripting and sql injection bugs, along with a severe privilege escalation / content injection vulnerability. [1]

January 30, 2017

Phishing Example: Your Dropbox File

Hello, You just received a file through Dropbox Share Application. Please click below and log in to view file. View file Every time a friend installs Dropbox, we'll give both of you 1 GB of space for free! Need even more space? Upgrade your Dropbox and get 1 TB (1,000 GB) of space. Happy Dropboxing. - The Dropbox Team

January 25, 2017

Phishing Example: bCourses Expiration Notice

A targeted phishing message was received on campus appearing as an expiration notice for access to bCourses. The message attempted to trick recipients to login with CalNet credentials to prevent access expiration

January 24, 2017

Phishing Example: First 2017 Tax Season Phish

The Human Resources/Payroll Department has completed the final paystub changes for 2017 tax year. To view the changes to your paystub information and view/download your W-2 forms (2014 - 2016 tax years), go to: Adp Portal We hope you find the changes to your paystub information useful and welcome any comments you may have. Yours Sincerely, Danielle Carrel.

Protect Yourself Against Tax Fraud

As tax season begins, W-2 wage statements have already begun to be made available online this week. Last year, several convincing phishing messages were crafted by tax scammers and sent to Campus to trick victims into divulging personal information for criminal purposes.

These fraudsters use your stolen credentials and tax documents to commit identity theft, and file a fraudulent tax return with the IRS in order to collect a refund using your identity.

January 20, 2017

Unwanted Printouts Hitting Campus Printers

Campus printers have received unwanted printouts in recent weeks. Report any unwanted printouts to CSS-IT and Information Security and Policy.

January 3, 2017

Phishing Example: FedEx Shipment Update

Dear Customer, We could not deliver your item. You can review and print complete details of shipping duty on your order. Thanks

December 14, 2016

Phishing Example: Important Announcement from Chancellor Dirks

Good Morning Berkeley Family, Please read attached for an important announcement from Chancellor Nicholas B. Dirks Thanks, Nicholas B. Dirks Chancellor 1 attachment: shared Document.pdf

October 28, 2016

Phishing Example: Email Account Upgrade

Dear User, Someone else was trying to use your Berkeley ID to sign into iCloud via a web browser. Date and Time: 28 October 2016, 1:38 PM Browser: Firefox Operating System: Windows Location:Thailand If the information above looks familiar, you can disregard this email. If you have not recently and believe someone may be trying to access your account, you should Click Here . Sincerely, Technical Support Team

October 24, 2016

Dirty COW Linux Kernel Local Privilege Escalation Vulnerability (CVE-2016-5195)

A local privilege escalation vulnerability has been found in the Linux kernel. Nearly all versions of Linux are affected, and when exploited, attackers can escalate local privileges to root. Linux users are advised to patch or implement temporary mitigation immediately.

October 20, 2016

Phishing Example: Irregular Activity

We have detected irregular activity on your account on the date 10/20/2016. For your protection, we have temporary limited your account. In order to regain full access to your account, you must verify this activity before you can continue using your account. We have sent you an attachment , open it and follow the steps to verify your account. Once completed, please allow up to 48h to update. Copyright © 2016 BankOfAmerica, All rights reserve IrregularActivityFile.html

August 24, 2016

Phishing Example: Messages containing Locky malware

Hello, Please sign the attached contract with our technical service company for 2016 � 2017. We would appreciate your quick response. King regards, Cynthia Curtis (Digital-Signature: f0a0e01386d19b03736165288026cc97e325560c78700e95)

July 13, 2016

Remote Code Execution Vulnerabilities in Drupal 7 Third-party Modules

Highly critical remote code execution vulnerabilities have been announced by the Drupal security team for the third-party modules RESTWS, Coder, and Webform Multiple File Upload. Open Berkeley Drupal sites are NOT affected.

June 29, 2016

Multiple Vulnerabilities in Symantec Products Including SEP (CVE-2016-2210)

Multiple, critical vulnerabilities have been discovered in Symantec products including Symantec Endpoint Protection (SEP), an anti-virus product previously licensed and distributed on campus. Users are advised to remove or upgrade affected Symantec products.

June 13, 2016

Apple Ends Support for Quicktime on Windows

Apple has announced that it will no longer support Quicktime on Windows. All users are advised to remove Quicktime on Windows machines as there are multiple zero-day, remote code execution vulnerabilities that Apple has announced they will not be patching.

May 24, 2016

Vulnerable Adobe Flash Player allows remote code execution (CVE-2016-4117)

Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and ChromeOS. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe is aware of a report that an exploit for CVE-2016-4117 exists in the wild. Please refer to APSA16-02 for additional details.

May 23, 2016

Phishing Example: Vital Info

Hello, Please refer to the vital info I've shared with you using Google Drive. Click https://www.google.com/drive/docs/file0116 and sign in to view details.. Regard --

May 20, 2016

Phishing Example: bCourses Phish Attack

Dear User, This message is to inform you that your access to bCourses will soon expire. You will have to log in to your account to continue to have access to this service. You need to reactivate it just by logging in through the following URL. A a successful login will activate your account, and you will be redirected to your bCourses page. http://bcourses.berkeley.cnea.gq/login_0DZbL4B22o0ki22F0IZotK2LqgZijDXvf... If you are not able to login, please contact Mary Patel at mpatel@berkeley.edu for immediate assistance. Sincerely, Mary Patel Berkeley Security University of California, Berkeley 510-643-6927 mpatel@berkeley.edu

May 17, 2016

WARNING: Ransomware Attacks on the Rise

The US-CERT (US Computer Emergency Readiness Team) has issued a recent alert concerning ransomware. Ransomware is a type of malicious software that infects a computer and restricts users’ access to it until a ransom is paid to unlock it. The alert warns that in early 2016, destructive ransomware variants such as Locky and

« first Full listing: News
‹ previous Full listing: News
…
2 of 10 Full listing: News
3 of 10 Full listing: News
4 of 10 Full listing: News
5 of 10 Full listing: News
6 of 10 Full listing: News
7 of 10 Full listing: News
8 of 10 Full listing: News (Current page)
9 of 10 Full listing: News
10 of 10 Full listing: News
next › Full listing: News
last » Full listing: News