Security Advisory: Spear Phishing Attacks Targeting Intellectual Property

Earlier this month, security analysts discovered a spear phishing campaign targeted at US government contractors and service providers within the industrial control systems community. Carnegie Mellon was one of several universities targeted by these attacks. These particular phishing emails pretended to be from familiar acquaintances.

Furthermore, the messages contained a link to what appeared to be a PDF file about staffing changes, but actually downloaded malicious software.  If installed, the software provides remote access to the compromised computer. 

For information on the spear phishing attack and on What You Need To Do, please read the entire security advisory message on Spear Phishing Attacks Targeting Intellectual Property.