Montgomery College print logo

Monday, April 15

Features

Display Image

Maryland International Education Consortium Spring Conference, Friday, April 26

Need to Know

Display Image

Scholarship for Montgomery County Students of Caribbean Heritage

Guest Lectures

Display Image

BSAD 111 Personal Finance* Presents Guest Speaker Tracy Rezvani

Professional Development

Display Image

Toastmasters Demo Meeting at Rockville, April 18

Community Engagement

Display Image

MC Nursing Club Alumni Continue the Raptor Spirit of Community Service

IT@MC

Display Image

March Phishing Results

College/Campus News

Display Image

MCRPA Spotlight for April: Get to Know Carroll Rollman

Office of Equity & Inclusion

Display Image

Equity Summit on April 30 at Germantown

HRSTM

Display Image

Current Employment Opportunites

MC Events

Display Image

HIV/AIDS Awareness and Education Event on April 24 at TP/SS!

Student Affairs

Display Image

Submit a Healthy Recipe to the SHaW Center

Grants Update

Display Image

Community Food Rescue Grant Supports MC's Fuel for Success Food Campaign

March Phishing Results

Display Image

Category: IT@MC

Published: Apr 15 2019 1:07AM

The Office of Information Technology's (OIT) March 2019 phishing scenario invoked a sense of urgency upon the recipient to "Re-confirm" their ID. This urgency tactic is a common emotional ploy used to get employees to act quickly - and to not pay attention to the details in the email. Over 1,030 employees reported this phishing email to the PhishTrap, and 225 employees clicked on the link.

The goal of "account confirmation" email threats is to capture your account credentials. Clicking on unknown links and giving up your user name and password in a credential harvesting phishing email provides an attacker the key (password) to log in to your O365 email AND your MyMC account. To avoid falling victim to credential harvesting and general phishing emails, OIT recommends all employees:

* Enroll in Two-Factor Authentication (2FA) to protect your Office 365 account. 2FA is an added layer of security that requires log on authentication using the first factor, your user name and password, and the second factor, your mobile phone, tablet, or landline to easily confirm your login requests. To learn more about 2FA, please visit https://mcblogs.montgomerycollege.edu/itprojects/2fa.
* Report all suspicious emails to the Phishtrap for analysis using the Report Phishing tool located on the Microsoft Outlook toolbar or in the Outlook mobile app for iPhone and Android. IT Security will analyze the content and web links and if legitimate, will send the email back to you.
* Review and assess before clicking on the links. Do not click on the links in an email. If you have a business relationship with the sender or an account (MyMC, O365, Amazon.com, your bank, etc.), log in to the account by using the known web address for the account, i.e. montgomerycollege.edu - Access MyMC.

OIT encourages all employees who need assistance in spotting a phishing email to take the Cybersecurity e-courses within MC Learns. The e-courses are short videos that provide employees with the skills needed to detect malicious emails.

Related Media

  1. Phishing.png


MyMC
Authentication Required



Montgomery College

Montgomery County, MD

240-567-5000

©2019, Montgomery College

Top