ACC Mail ACC ACC Homepage
About ACCACC NewsFaculty Services IndexStudent Services IndexACC User DocumentationACC Computing PoliciesRecommended Systems and Purchase informationComputer Support Services
 

Security Bulletin of April 15, 2009

Overview
Tips for Safer Computing
Further Assistance

Other Bulletins
Recent CERT Alerts

COMPUTING ALERT: Malicious Software Compromises Some Haverford Computers

OVERVIEW

Recently the Computing Help Desk has seen a number of computers infected with malicious software that is not detected by our antivirus software. These attacks have come from a class of malicious software that runs in the background and creates security holes; these systems typically have multiple infections.

Infected systems may have trouble starting properly, run slowly, experience network issues, load unexpected web pages, or throw up unexpected pop-up windows. Such pop-up windows may ask for logon information, or ask you to download or run bogus antivirus products (such as PDefender 2009 or AntiVirus 2009).

Current antivirus software products, including the McAfee products we use on campus, are not sufficient to prevent or detect these attacks. While such antivirus software is still essential,  we remind everyone to follow the additional precautions below. As far as we know, only Windows computers have been compromised, but Macintosh users should follow these precautions too.

GENERAL TIPS FOR SAFER COMPUTING

(These tips, along with more detailed information, are also available on our web page https://www.haverford.edu/acc/protect.)

  • Keep current backups of all important files.
  • Install all critical and important updates for your operating system, antivirus software, and other software programs.

  • Beware of scams, phishing attempts, and other malicious emails. Before taking any action suggested by an email message, verify that it is legitimate. Scams, phishing attempts, and other malicious emails are an ever increasing problem. Any bulletin that ACC sends will reference a secure page on Haverford’s web site.

  • Use caution when downloading software and documents. Beware of unsolicited pop-ups offering "antivirus" software or system enhancing tools.

  • Do not open attachments or click on web links in messages unless you are expecting them. Potential hazards are often distributed through email, instant messages, and social networking sites.

  • Avoid peer-to-peer file sharing networks such as LimeWire and Soulseek.

  • Be alert to unusual computer behavior.  If you notice anything unusual, such as the wrong name appearing in your SquirrelMail account, your computer running unusually slow, unexpected login requests, or your browser loading the wrong web pages, please contact the Help Desk immediately. These are common symptoms of a compromised computer or email account.

HELP

If you have any questions, please contact the Computing Help Desk:
Telephone: 610-896-1480
Email: helpdesk@haverford.edu

MORE INFORMATION

Infections recently seen on campus have been trojans--malicious code hidden inside another piece of software that was intentionally or unintentionally installed by the computer user. We have seen variants of the Vundo, Generic-FakeAlert, PDefender 2009, and AntiVirus 2009 trojans. Distribution channels include email, malicious or hacked web pages, Internet Relay Chat (IRC), peer-to-peer networks, etc.

Additional information about computer security and current threats can be found at the following sites:

United States Computer Emergency Readiness Team (US-CERT )
<https://www.us-cert.gov/nav/nt01/>
McAfee Avert Threat Center
<https://www.mcafee.com/us/threat_center/default.asp>
Microsoft Security
<https://www.microsoft.com/security/>
Apple Product Security
<https://www.apple.com/support/security/>

ACC EMAIL POLICY

ACC will never request passwords or other confidential information via email. Email is not secure. We will never email an executable file. Instead, if we ask you to take action, we will always refer you to our web site, using an address that starts with the secure "https" protocol -- that way, you know you are downloading a safe file from us.

VERIFY THIS ALERT IS LEGITIMATE

Before taking an action recommended in an email, please confirm that the email is legitimate. ACC posts a detailed description of all our alerts on our web site, https://www.haverford.edu/acc/bulletins/.

For Questions and Comments, contact Haverford College's Academic Computing Center.
Last updated on April 20, 2009

HC HomeCampus DirectoryHaverford College Library ResourcesHaverford College Web Search EngineAcademic DepartmentsACC Home