Date:2019/10/02

【Security Vulnerability Warning】 Academics received security notification containing phishing emails, please be alerted

Subject: Academics received security notification containing phishing emails, please be alerted

  • Description:
    • Academics received security notification containing phishing emails, please be alerted.
    • The content of the email is written in English; contain old security information and a hyperlink to download a file.
    • All departments should follow the social engineering prevention as an alert, do not open unknown sources attachments or hyperlinks to maintain information security.
    • If you receive a similar letter, do not click on the attached hyperlink and provide the letter to TACERT(service@cert.tanet.edu.tw) for collection and analysis the related information.
      1. Content example 1:
        Hello,
        We need this reviewed, categorized and filed as soon as possible. Take a look and let me know how soon can you finish it.
        ATTACHMENT DOCUMENT(hyperlink containing a malware)
        Thank you

      2. Content example 2:
        Hello,
        I believe we completely missed our target on this one, I need you to double check by how much. I attached the file for review below.
        ATTACHMENT DOCUMENT(hyperlink containing a malware)
        Thank you

  • Impact platform: Email
  • Recommended practices:
    1. Confirm the sender information and the content are correct.
    2. Do not click or open unknown sources attachments or hyperlinks easily.
    3. Follow the social engineering prevention as an alert.

Network System Division
Computer and Communication Center