Fraud emails have recently been sent to Carnegie Mellon email accounts claiming to be from "ADMIN HELPDESK" <adminhelpdesk7@gmail.com>.  The fraud messages ask people to reply with their EMAIL Password.  PLEASE ENABLE SPAM FILTERING AND DO NOT REPLY!

For What You Need To Do, see Security Alert - Fraud Emails - VERIFY YOUR ANDREW.CMU.EDU EMAIL ACCOUNT NOW..

Fraud emails have recently been sent to Carnegie Mellon email accounts claiming to be from "CMU HELP DESK" <helpdek@cmu.edu>.  The fraud messages ask people to reply with their CMU UNIVERSITY webmail password.  PLEASE DO NOT REPLY!

For What You Need To Do, see Security Alert - Fraud Emails - Please Verify Your Email Address.

Fraud emails have recently been sent to Carnegie Mellon email accounts claiming to be from "ANDREW.CMU.EDU WEB CUSTOMER SERVICE" <rjmcevitt@eircom.net>.  The fraud messages ask people to reply with their surname and password.  PLEASE DO NOT REPLY!

For What You Need To Do, see Security Alert - Fraud Emails - PLEASE PROTECT YOUR ANDREW.CMU.EDU ACCOUNT FROM BEING CLOSED.

Fraud emails have recently been sent to Carnegie Mellon email accounts claiming to be from "webmaster@cmu.edu" <garyscottchambers23@yahoo.co.uk>.  The fraud messages ask people to reply with their E-mail Password.  PLEASE DO NOT REPLY!

For What You Need To Do, see Security Alert - Fraud Emails - ADMIN/HELP DESK: DATABASE UPGRADE..

Fraudulent emails have recently been sent to Carnegie Mellon email accounts claiming to be from ADMIN HELPDESK <adminhelpdesk@andrew.cmu.edu> asking people to reply with their EMAIL Password.

For What You Need To Do, see Security Alert - Verify Your Andrew.cmu.edu Email Account Phishing Emails.

Fraudulent emails have recently been sent to Carnegie Mellon email accounts claiming to be from "webmaster@andrew.cmu.edu" <uknalot4@yahoo.co.uk> asking people to reply with their andrew.cmu.edu E-mail account passwords.

For What You Need To Do, see Security Alert - Database Upgrade Phishing Emails.

Fraudulent emails have recently been sent to Carnegie Mellon email accounts claiming to be from the Squirrel Mail Development Team <development@squirrelmail.org> asking people to login to a fake website to download an update.

For What You Need To Do, see Security Alert - SquirrelMail Phishing Emails.

Fraudulent emails have recently been sent to Carnegie Mellon email accounts claiming to be from the CMU SUPPORT TEAM <support@cmu.edu> asking people to reply with their CMU Webmail account passwords.

For What You Need To Do, see Security Alert - Phishing Emails.

Apple computers running Apple Mac OS X, Adobe Flash Player and Reader, Apple Quicktime, Mozilla Firefox & Thunderbird, RealNetworks RealPlayer and VLC media player may be vulnerable to exploits.  The most serious of these vulnerabilities may allow an unauthorized user to take complete control of an affected system by convincing the user to open a maliciously crafted document, media file,  media stream or website.

For What You Need To Do, see Early Spring Cumulative Security Maintenance - Apple Mac OS X.

Windows computers running Microsoft Windows, Adobe Flash Player and Reader, AOL Radio, Apple Quicktime, Facebook Photo Uploader, Mozilla Firefox & Thunderbird, MySpace Uploader, RealNetworks RealPlayer, Sun Java and VLC media player may be vulnerable to exploits. The most serious of these vulnerabilities may allow an unauthorized user to take complete control of an affected system by convincing the user to open a maliciously crafted document, media file,  media stream or website.

For What You Need To Do, see Early Spring Cumulative Security Maintenance - Microsoft Windows.

Protect Yourself, Others and the University from Identity Theft with Identity Finder!


Did You Know?

• Your computer might be storing personally identifiable information (PII) such as your Social Security Number, bank account numbers, credit card numbers and passwords without your knowledge
• If your computer or external media is lost, stolen or broken into over the Internet, someone might use it to steal your identity and the identities of anyone who shares your computer or whose personal information you might handle
• If you store sensitive PII for Carnegie Mellon work and your computer or external media is lost or compromised, the University is obligated under PA state law to notify everyone affected by the breach and could potentially be legally liable
• Over eight million Americans have their identities stolen annually and on average victims spend 600 hours clearing their good name -- Federal Trade Commission & Identity Theft Resource Center

For What You Need To Do, see Do Your Part: Prevent Identity Theft.

Computing Services will NEVER send unsolicited attachments in notification e-mail messages. If Computing Services requires that you install a patch, the e-mail message will NOT CONTAIN the patch, but instead direct you to an appropriate download page for the vendor or on www.cmu.edu.

If you are in doubt about a message do not open it! Contact the Help Center to verify the message's authenticity.

Most peer-to-peer file sharing programs (Kazaa, LimeWire, BitTorent, etc.) set your computer to share (allow uploading) downloaded files AND possibly all your personal files to anyone who asks for them. The University of Chicago provides instructions on how to disable this feature for many of the more popular file sharing programs.

NOTE: The instructions on the University of Chicago pages are a guide for what we currently think are feasible workarounds, but ultimate responsibility for your network usage falls to you. Don't lose your network connection (or face a potential lawsuit) for copyright infringement!