Threats to our security come in many forms. This page describes how to report threats to the ISS Service Desk. The most common threat currently is the 'phishing attack'. It is helpful for us to have a full copy of phishing attack (& Trojan) emails.
If you use 'Webmail', you can send a copy of the 'Threat' message by doing the following:
- open the message (do not click on any links).
- click on 'View Full Header' - see list of technical information.
- drag a highlight over it all.
- press: Ctrl and C - to copy the text (nothing will appear to happen).
- click on 'Compose' button - see new message.
- click into the body of the message.
- press: Ctrl & V - see information in the body of the message.
- click in the 'Send to' box and address it to: email@example.com
- click into the 'Subject:' line and type: Threat Report.
- click on the 'Send' button.
If you use Outlook, you can send a copy of the 'Threat' message by doing the following:
- create to a new message in Outlook 2007/2011.
- click on the 'To' button - see global address list.
- type: ISS Service Desk - see address highlighted.
- click on the 'To ->' button at the bottom of the dialog - see address added.
- write a 'subject' line that includes the words "Threat Report".
- drag the suspect email message into the body of the new message and 'drop' it.
- write a covering note, then send it.
If you find the above procedures 'inpractical', 'forward' the suspect message to the ISS Service Desk with a prief explanation.
There are false warnings going around. Some try to alarm you about viruses that don't exist and some try alarm you about threats in the 'real' world. These are called variously 'Internet Hoaxes' and 'Urban Myths'. To discover whether a warning you have received is an 'Internet hoaxes' follow the link below:
If in doubt ring the ISS Service Desk on x10987.
Typically 'hoax virus warning' messages will have one or more of the following features:
- the message refers to higher authorities e.g. AOL, Intel and Microsoft.
- and urges you to forward the message to ALL YOUR FRIENDS.
- includes incomprehensible spurious technical 'info'.
- includes TEXT IN CAPITALS with multiple exclamation marks!!!!!!!
- have multiple > > > > > signs in front of each line.
- some hoaxes are like chain letters offering you money for passing the message on - ignore these also.
In general hoax messages concentrate on trying to frighten you with dire warnings uncheckable references.
How does this differ from real virus warnings? Not much really as the messages are designed to mimic genuine virus warnings. In general hoax warnings have an URGENT or 'hysterical!!!' tone, whereas genuine warnings should be 'matter-of-fact'.
Be suspicious of the following:
- all warnings from Microsoft, IBM, HP, AOL.
They are, in general, very slow to issue warnings.
- all warnings from colleagues & friends.
Internet warnings and urban myths also typically use CAPITALS and false references to authority, but are (obviously) more varied in their content. If you are worried look up the info on the links below or call the ISS Service Desk.