Raider Fam, an important heads up from our Chief Technology Officer:
Some of you have recently received messages requesting banking information to purportedly make a tuition payment. As most of you have deduced, this is a scam. The most recent emails looked like this:
I am looking for Bank ABA routing number to make a student tuition payment (wire transfer). Could you please help me with that?
Thanks & Regards,
These messages are growing increasingly sophisticated. In some cases, these emails will come from real Gmail, Outlook, or Yahoo addresses. In a few cases, scammers have gone so far as to register lookalike domain names. It's no longer easy to spot scams by looking for poorly written or nonsensical English.
So, what should you do?
1. It is SOU policy that banking and financial information is never provided over email.
2. Do check with Business Services, Service Center, or Information Technology whether a request is legitimate. It's always better to ask, even if it means there's a delay responding to the email.
3. If it's a scam, don't reply! Instead, report phishing to Google by following these instructions. We can't report it for you, you must report it yourself.
3. Don't share sensitive personally identifiable information over email. For example, don't email a document containing social security numbers even to you SOU addresses. Instead, when sharing this information is required, use services like Google Drive or ownCloud. Or, better yet, leave that information in systems like Banner whenever possible.
4. Don't collect personally identifiable information if it's unnecessary.
5. Don't store sensitive documents on your personal devices. Instead, use services like Google Drive or ownCloud when remote access is needed.
6. Don't store sensitive documents on your work laptop. Instead, use Google Drive, ownCloud, or the P:/S: drives.
Security breaches can have very significant consequences. Our colleagues at OHSU paid $3 million in fines for just two security breaches.
IT periodically teaches Cyber Security classes and we announce them regularly in the Daily Newsletter. If there's interest, we're always prepared to