[Faccus] Email security alert – April 27

Darren Bondy darren.bondy at uwaterloo.ca
Thu Apr 27 13:17:39 EDT 2017

Please circulate this message with your colleagues

What is happening? The University is currently being targeted by a malware campaign. If you receive an email with the subject line “Contract Documents” from email address “a.s.zarabadi at gmail.com<mailto:a.s.zarabadi at gmail.com>” with a PDF attachment, please do not open the attachment and delete the email. IST is investigating to determine a way to prevent further emails from reaching users.

Contact soc at uwaterloo.ca<mailto:soc at uwaterloo.ca> if you have opened the attachment or followed any links that may have been in the email.

When is this happening? Began around 12:30 p.m. today and is currently ongoing.

Reminder: Be cautious of any suspicious email you receive. Under no circumstances should you open or extract unexpected zip files, run any files contained within the attachment, or click on links within the email. Doing so allows the malware access to your machine, which will render it unavailable until fixed. This process can take 1-2 business days.

What should you do if you receive such an email?

1.       Do not open any attachments or click on included links.

2.       Please forward the email to soc at uwaterloo.ca<mailto:soc at uwaterloo.ca> and include email headers (information available at https://uwaterloo.ca/information-systems-technology/full-email-headers).

3.       Delete the original message.

Questions or concerns? Contact the IST Service Desk, helpdesk at uwaterloo.ca<mailto:helpdesk at uwaterloo.ca> or ext. 44357.

Recipients of this message: isthd, ist-staff, faccus, admin-support, ctsc, ucist

Darren Bondy
Information Systems and Technology
(519)888-4567 x49525
University of Waterloo, Waterloo, ON

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.uwaterloo.ca/pipermail/faccus/attachments/20170427/9ac22d2a/attachment.html>

More information about the Faccus mailing list