Published: Apr 19 2017 12:00AM
Last week the College was hit with two real phishing attacks that resulted in employees clicking on the malicious links and providing their MyMC/Active Directory/Office 365 user names and passwords.
Please note that Montgomery College will never ask for your password.
Remember the theme: Stop. Think. Report.
It is not just College resources that can be compromised. Your own data is at risk if you take the bait in a phishing campaign. Recent attacks at other schools include direct deposit fraud, where the bad guys get into your Banner Web account and update your direct deposit information to redirect your paycheck to another bank.
Please be vigilant.
Attached are examples from the actual phishing campaigns that attacked College users. Please remember that since we migrated employee mailboxes to Office 365, you will not receive mailbox size/quota alerts.
To learn more about Phishing consider signing up for Phishing Awareness classes offered from 1 to 2 p.m., through MC Learns, on the following dates:
Takoma Park/Silver Spring April 25, CM 211
Rockville April 26, SW 306
Germantown April 27, PK 178
Takoma Park/Silver Spring May 8, CM 211
Rockville May 9, SW 306
Germantown May 10 PK 178
**Registration is available under the Cybersecurity category**
If you are unable to make the classes, consider the Cybersecurity Awareness e-courses offered through MC Learns. The e-courses are short and quick to point out what to look for in a Phishing e-mail and how to spot a malicious link.
- Real Phishing Examples.pdf