10:30 27/07/17 Spyware outbreak

Earlier today (27th July 2017) the IT department detected a substantial outbreak of Spyware (a malicious programme that aims to gather information from your computer) across the University affecting over 70 machines. While the programme is being prevented from running properly by the University’s Anti-Virus software, the machines them selves are still infected and there will be some disruption while they are cleaned and the outbreak is contained.

The software is spread via an email which does not have a standard text, but refers to either an email payment or an invoice that needs to be paid. Within the body of the email there is then a link, which when clicked on will mean that software is downloaded and the machine is infected. Two examples are:


Subject:   Please pay your invoice with id number: 539193

Good Day,

Thanks for the mail.

Click here to pay and see your payment details:

<link removed>

If you have any questions related to this attachment, we will be more than happy to assist you.

Sincerely Yours,

<name removed>


Subject: Email payment notification number: 25979

Greetings <name removed>,

Click here to pay and see your payment details:

<link removed>

If you need any further assistance or have queries regarding your invoice, please do not hesitate to contact us.

Regards,

<name removed>


If you receive an email like this you should not click on the link, and should just delete the email. Please remember the normal IT Security advice and be suspicious of all links and attachments you receive by email.

If you have any more questions or require further advice then please contact IT.