Security Alert: An email with subject line "Problem with invoices" carries a malware infected attachment
WHOM DOES THIS AFFECT?
All University Faculty and Staff
SUMMARY
An email with the subject line "Problem with invoices" containing a malware infected attachment named "New.zip" is currently circulating at Carnegie Mellon University. When a recipient opens the .zip attachment and double clicks on the program inside, the malware is executed, infecting the computer system you are using if it is running any version of the Windows operating system. The malware is known to hijack your email credentials (Andrew UserID and password) and then attempt to spread itself by sending email from your system.
WHAT YOU NEED TO DO
DO NOT attempt to open the attached .zip file or the program archived within the .zip file (named "Document-19285.exe").
If you attempted to open the attached file (Document-19285.exe):
- Disconnect your computer from the network IMMEDIATELY
- Report the incident to the Information Security Office at iso-ir@andrew.cmu.edu. Indicate whether you may have sensitive information embedded in your email acount and messages
- Go to a known clean computer and change your password at identity.andrew.cmu.edu
CONTACT
Please direct any questions or comments to the Computing Services Help Center (412-268-HELP or it-help@cmu.edu) or to your departmental administrator or DSP consultant.