I just need to post something to this blog. Have been neglecting it for almost 2 months.
I got this email from our 'trusted' communications management team a.k.a. ICT Security at USM -- the PPKT (Pusat Pengetahuan, Komunikasi & Teknologi) entitled: Makluman Berkenaan Aktiviti Phishing / Acknowledgement on Phising Activities.
Not sure yet whether the USM's ICT Security effort to tighten outgoing email by filtering and denying all emails that has the word "password" is a smart idea.
What if we receive official emails from outside that say something like this:
After you have sent in your application, we will sent you all the details. You will need to go to our website and log-in with your name and the password given...." or something to the effect in which the other party has to use the word 'password'.
Anyway this was the email sent to all USM staf today:
Good day,
Regarding to recent email scam activities (phising), we like to advice user to:
1. DO NOT reply to email that asked for password or personal information.
2. DO NOT give any password or personal information via phone conversation.
3. DO NOT click on any link directly from email.
4. DO NOT forward scam emails to friends or reply back to sender.
5. DO NOT fill in unvarified online form that asked for password or personal information.
6. DO NOT be greedy to any promises in emails or web sites.
7. ALERT us on any scam emails that you have received.
ICT Security USM, Email services or any other service providers will not ask for password. You should ignore such request.
Hereby ICT Security USM had tightened outgoing email filter. Any email that contains "Password_:" or "spreadsheets._google._com" (without _) will be denied.
Regards.
Infostruktur Keselamatan ICT
PPKT, USM
No comments:
Post a Comment