The UNM IT Customer Support Service Desk and the UNM Information Security & Privacy Office (ISPO) have received many reports of fraudulent/phishing emails sent to UNM community members.

Extortion Emails

There does not appear to be any evidence of automatic downloads, malware, or other malicious software associated with the email samples provided.  Any credentials (usernames, passwords, etc.) associated with these emails appear to have been the result of high-profile data breaches of parties external to UNM.

For more information regarding extortion email schemes please reference the following PSA from the Federal Bureau of Investigation (FBI):

https://www.ic3.gov/media/2018/180807.aspx

Impersonation Emails

All email accounts associated with the impersonation attempts have been hosted by third-parties external to UNM.  As with the extortion emails referenced above, there does not appear to be any indication of compromised UNM accounts associated with these types phishing/spoofing campaigns.  Additionally, there is no evidence automatic downloads, malware, or other malicious software associated with the email samples provided.

For more information regarding extortion email schemes please reference the following PSA from the Federal Trade Commission (FTC):

https://www.consumer.gov/articles/imposter-scams

What you can do

UNM community members are encouraged to report suspicious activity to the University Information Security & Privacy Office at the address security@unm.edu.  Where possible, ISPO staff encourage users to submit samples ‘as an attachment’ so the full message headers can be analyzed.  For information on providing an email as an attachment please visit the following:

https://ispo.unm.edu/frequently-asked-questions.html

Spam:

These messages typically have one or more of the following attributes/characteristics:

• The messages are unsolicited and are sent from unfamiliar addresses
• Contain ‘[SPAM?? #%]’ in the subject line
• Contain advertising in the message body

What you should do:  Forward the Spam sample (as an attachment) to spamdrop@unm.edu

Phishing:

These messages typically have one or more of the following attributes/characteristics:

• The messages are unsolicited and are sent from unfamiliar addresses
• The message body encourages you to take any action such as responding to the original message or clicking a link, or contains otherwise suspicious text

What you should do:  Forward the Phishing sample (as an attachment) to security@unm.edu

To stay updated with the latest phishing attempts and major security alerts visit the ISPO’s Phish Bowl and Advisories page:

https://ispo.unm.edu/phish-bowl/index.html

https://ispo.unm.edu/advisories/index.html

For more information regarding phishing/spoofing email schemes please reference the following PSA from the Federal Bureau of Investigation (FBI):

https://www.ic3.gov/crimeschemes.aspx#item-14

If you feel you have been the victim of a crime please file a report with UNM PD or visit https://police.unm.edu.

In the last several weeks, numerous customer NetIDs and passwords were compromised through successful phishing attacks. These attacks have become more sophisticated, and now include using UNM’s SharePoint online services to distribute malicious/ phishing content.  UNM IT is investigating and working to mitigate the attacks.

To increase security and efficiency, https redirects on cpanel-p51 and p52 will be reconfigured at 10am on June 13th, 2020.  In order to increase efficiency in how sites are redirected from the non-secure web port (80/http) to the secure port (443/https), we are making a change to these environments that will require redirection for each site.  If your site is hosted on these environments, you will need to ensure that the site functions properly using https.

To ensure continued support and improve service, FastInfo and StudentInfo will unavailable due to the annual upgrade on Tuesday, June 2nd, between 2:00 a.m. and 2:30 a.m.

IT staff from several campus departments will be performing quality assurance and functionality testing when FastInfo and StudentInfo services are available after the upgrade is in place.

To ensure continued security, vendor support, and resolution of minor issues, the cPanel servers will upgraded from version 78.0.45 to version 86.0.18 on Monday, June 1st from 9:00 AM to 4:00 PM. There are five servers to be updated and configured, with each taking an hour to complete. Each server will be upgraded sequentially.

During this work time, the cPanel administrative web interface (https://<yoursite>.unm.edu/cpanel) will be intermittently unavailable. This DOES NOT affect the availability of actual websites hosted on cPanel - just the cPanel administrative interface itself.

Once the upgrade is completed, the cPanel web interface should appear as before. Announcements will be made to the cPanel List Serv for progress and completion.

If you manage your website entirely through Cascade, WordPress, another CMS, or manually, this change will not impact

To ensure continued security, vendor support, and resolution of minor issues, the cPanel servers will upgraded from version 78.0.45 to version 86.0.18 on Monday, June 1st from 9:00 AM to 4:00 PM. There are five servers to be updated and configured, with each taking an hour to complete. Each server will be upgraded sequentially.

During this work time, the cPanel administrative web interface (https://<yoursite>.unm.edu/cpanel) will be intermittently unavailable. This DOES NOT affect the availability of actual websites hosted on cPanel - just the cPanel administrative interface itself.

Once the upgrade is completed, the cPanel web interface should appear as before. Announcements will be made to the cPanel List Serv for progress and completion.

If you manage your website entirely through Cascade, WordPress, another CMS, or manually, this change will not impact

We are receiving reports that the Adobe Creative Campus is down.  IT technicians are aware of the issue and are working with Adobe to restore service.

To ensure that Financial Aid processes are able to run as intended we will be installing this patch Tuesday, May 26th, 2020 between 7 and 8 AM.

The following service will be unavailable during the upgrade:
-Banner 9 Processes related to RNRQINI