CofC Logo
Ask the Cougar

Archives For Email

Phishing Attempt

By Monica Lavin
Posted on 29 June 2015 | 10:11 pm

Information Security has been alerted to a Phishing email that is being delivered to accounts at the College. This does not indicate that your account has been compromised. The e-mail has the subject: “Fraudulent CC charge from XXXXXXXX@cofc.edu.

The body reads:

“I have this $582 charge on my card from XXXXXXXX@cofc.edu

I am attaching my credit card statement, please cross reference it with your data and tell me what this is.

I wanted to contact you before I call the authorities.

Regards,

Derek L. Cody”

The email is being delivered with an attached file titled “Statement.doc”

Please do not open the attachment and immediately delete the email and empty your “Trash” folder.

If you have any questions or concerns, please contact the Information Technology Helpdesk at (843) 953-3375 or by emailing helpdesk@cofc.edu.

Safe Sender List

By Monica Lavin
Posted on 30 May 2014 | 12:00 pm

Why did a student’s email end up in my junk email folder?

The College faculty and staff junk email folder is managed locally. You can add email addresses and domain names that you trust to the Safe Senders List. This way, messages from those sources are never considered as ‘junk’. You can add g.cofc.edu to your safe senders list to prevent any student emails going to your junk mail folder in the future.

Windows Outlook 2010 and Outlook 2013

To add a person to the Safe Senders List, click a message from the sender. On the Home tab, in the Delete group, click Junk, and then click Never Block Sender.

To add a specific address or domain to the Safe Recipients List, click a message from the sender. On the Home tab, in the Delete group, click Junk, and then click Never Block the Group or Mailing List.

To manually add names or domains to these lists, do the following:

  1. On the Home tab, in the Delete group, click Junk, and then click Junk E-mail Options.
  2. Do one of the following:
    • To add safe senders, on the Safe Senders tab, click Add.
    • To add safe recipients, on the Safe Recipients tab, click Add.

      Add address or domain dialog box
  3. In the Enter an e-mail address or Internet domain name to be added to the list box, enter the name or address that you want to add. For example, you can add :
    • a specific email address, such as someone@g.cofc.edu
    • an Internet domain, such as @g.cofc.edu, or hotmail.com.
  4. Click OK and repeat for each entry that you want to add.
    • If you want all Contacts to be considered safe senders, select the Also trust e-mail from my Contacts check box in the Safe Senders tab.
    • Some people whom you correspond to might not be listed in your Contacts. If you want all such people to be considered as safe senders, select the Automatically add people I e-mail to the Safe Senders List check box.
    • If you are using a Microsoft Exchange Server account, all of the names and email addresses that are in your organization’s address book — also known as the Global Address List — are automatically considered safe.

Outlook Mac 2011

To manually add domains to these lists, do the following:

  1. Click Tools from the toolbar menu, and then click Junk E-mail Protection.
  2. Click the Domains tab.
  3. Type in the Internet domain, such as @g.cofc.edu, or hotmail.com
  4. Click OK.

If you have any questions or concerns, please contact the Information Technology Helpdesk at (843) 953-3375 or by emailing helpdesk@cofc.edu.

 

Outlook Web App Security Features

By Monica Lavin
Posted on 27 May 2014 | 2:19 pm

One of the security features of the Outlook Web App (OWA) is your ability to monitor and administer all of the devices that you may use to connect to your College email account. With OWA, you can ensure that only the devices that you have authorized to sync are connected, as well as delete the accounts of old devices no longer in use, or which have become lost or stolen, in order to protect personal information. These security features are common to all Exchange servers and mobile devices.

The Android device will alert you if you add your Exchange email account to your phone. In order to proceed with the installation of the account, you must approve of the notification that the “Exchange server requires that you allow it to remotely control some features…”. You must approve of this requirement in order to connect to the College’s server.  Details of the notification may differ, but it may include any of the following:

  • Erase all data
  • Set password rules / Limit password
  • Monitor screen-unlock attempts / Watch login attempts
  • Lock the screen / Force lock
  • Set lock-screen password expiration
  • Set storage encryption

You can access all of these features by:

  • Logging on to OWA webmail
  • Click on the Options drop down box in the upper right corner, then click See All Options
  • Click the Phone link
  • You will see all of the mobile devices that you have connected to your CofC Outlook account.  You will also be presented with options that will allow you to administer, manage, wipe or disconnect each mobile device that you own as well as check their status.

If you have any questions, please contact the Information Technology Helpdesk at (843) 953-3375 or by emailing helpdesk@cofc.edu.

Date: January 25, 2014
Time: 5:00PM

Description: On Saturday, January 25, 2014 at 5:00PM, Information Technology will upgrade a critical component of the faculty and staff email system (CofC.edu). This upgrade will provide improved spam, virus, and phishing protection. There will be no disruption in service and no email will be lost during the upgrade. Additionally, your Outlook email rules will not be affected.

This spam filter upgrade will:

  • decrease the amount of spam and phishing emails that you receive;
  • allow faster intervention if an account becomes compromised;
  • allow on and off ­campus blocking of malicious phishing links and malware;
  • minimize system damage and reputation issues caused by compromised accounts.

Please be aware that after the upgrade on January 25th, you will notice a change in the spam digest reports that you will receive (see below for example). For the first 48 hours, you may receive a quarantined email summary (also known as spam digest reports) from two different senders: BWSadmin@cofc.edu and SpamDigest@cofc.edu. These senders are valid and should not be treated as a phishing attempt. Please carefully check the emails in your quarantined email summary and click Not Spam if any valid emails were accidentally quarantined. Unlike our old system, your actions will improve the new system’s accuracy over time. Since the new quarantined email summary will differ from your current report, please view the documentation at https://blogs.cofc.edu/it/files/2014/01/SpamDigest.pdf.

Additionally after the upgrade, you will notice a change in how links appear in your email messages received from outside our network.

Tooltip Example

Tooltip Example

All incoming links (URLs) will display a tooltip that shows the link as “URLdefense.Proofpoint.com”.  If it is a legitimate link, it will be resolved properly when clicked.  If it is a bad link (such as a phishing website), you will be redirected to an informational campus webpage to protect your identity and your computer from hackers. In the example below – by hovering over a link – a tooltip appears.  Normally this tool tip from Yahoo would show as http://yahoo.com.  With the link protection, the URL will look like the example to the right.

Quarantined Email Summary Example: The old system’s quarantined email summary that you receive is from BWSadmin@cofc.edu. After the upgrade, you will receive quarantined email summaries from SpamDigest@cofc.edu. You will only receive a quarantined email summary only if you receive spam. The system will automatically send you the summary at 6am daily. Using the quarantined email summary, you can view and release any valid emails. Users can also click Safelist and the system will automatically add the sender to your safe senders list.

New System's Quarantined Email Summary

You can also view your quarantined email summary at http://quarantine.cofc.edu from on and off campus. You will be prompted to login with your CofC username and password. Visit https://blogs.cofc.edu/it/files/2014/01/SpamDigest.pdf for further documentation.

If you have any questions, please contact the Helpdesk at 843-953-3375 or Helpdesk@cofc.edu.

Subscribe to the IT Blog!

By Monica Lavin
Posted on 23 September 2013 | 10:10 am

IT has added the Subscribe to Blog via Email widget to our blog site. Now IT’s blog posts will be sent directly to your email. Subscribe to our blog so that you can immediately receive the latest news and updates from IT.

How to subscribe to the IT blog:

  • Enter your CofC email address into the Subscribe to Blog via Email widget located on the right sidebarSubscribe
  • Click Subscribe
  • You will receive an email with the Subject Line ‘Follow Information Technology’Confirm Subscription
  • Open the email and click on the Confirm Follow button (you must confirm the subscription in order to complete the process)

You will then receive a ‘Subscribe Confirmed’ email. That’s it! Thanks for following!

Information Technology is beginning implementation of a new Microsoft Exchange 2010 server that will modernize our communication capabilities on campus!  This project has been in the planning phase for several months and we are proud to announce that we are about to begin the implementation phase of the project.  Our new Exchange 2010 server offers many new features and solves many problems we have been experiencing over the past year with our 10 year old email servers.  Macintosh users will be excited to know that they will be able to utilize the Mac Outlook 2011 client with support for contacts, calendars and many other features not currently available to Entourage.  System stability will be greatly improved.  Other great new tools and features will be rolled out after the initial migration.

 

We will begin making system changes tomorrow – Wednesday 3/14/2012.  We do not anticipate any interruption of service.  These changes enable a 30 day testing period.  After the new system is deemed stable — the transition of mailboxes from the old Exchange 2003 servers to the new Exchange 2010 servers will take 75 days.  During the transition period (April-June), you will be notified of changes or outages affecting your email account.  The planned completion of all email accounts to the new system  is June 30, 2012.

Phishing Attack- email delayed

By Monica Lavin
Posted on 2 November 2011 | 10:44 am

You may receive non-delivery email messages from a number of email providers, including Hotmail, AOL and Comcast.  This is the result of a compromised email account that sent out thousands of spam messages.  Because of this we have been blocked by some mail systems as spammers.  Most of these blocks will be removed within the next 24-48 hours—some may take longer.  Each email provider has their own set of rules and delays to protect their users from spam.  We use this same method to protect the College of Charleston Exchange users.

This compromised email account appears to be the result of a College employee responding to a phishing scam, providing their username and password to a criminal.  The phishing message most likely asked the person to click on a link that led to a web-form or replied to an email asking for their login information.    The IT Department at the College of Charleston will never ask you for your login and password by email.  Any e-mail message you receive asking for this information is a Phishing attempt, and should simply be deleted.

We will continue to monitor this issue and provide updates to the College community as they become available. We apologize for the inconvenience and thank you for your patience as we work to resolve this issue.  If you have any questions or concerns please contact the helpdesk at helpdesk@cofc.edu or 953-3375 opt #3.

Google Apps for Students Launched

By Hannah Swanson
Posted on 28 March 2011 | 12:24 pm

CmailWe are excited to announce the launch of Google Apps for our students, including “CMail”. This is the replacement system for Edisto email. A group of SGA members have been pilot testing this system since January.

Google Apps offers significantly improved mail service for our students, with storage limits exceeding 7.5 gigabytes, messages up to 20 megabytes, and integrated spam protection. It also includes a full suite of Apps, including Calendar, Contacts, Docs, Groups.

Accounts have been created for all current students, including all new students who have paid their deposits through last week. A request process for anyone else who has taken a class (alumni) who desires an account will come during the Summer. We plan to have all active Edisto accounts migrated by the beginning of the Fall semester, and expect to decommission Edisto by 9/30.

Faculty and Staff will be able to get Google Apps accounts later this year, but are not permitted to use CMail.

Student Google accounts are username@g.cofc.edu. The username is the same one used for MyCharleston and WebMail.

The username@edisto.cofc.edu address will continue to work, and will be set to forward to the CMail account. These addresses will still work after Edisto is decommissioned.

Students must agree to Terms of Service before using their new account. A “Google Apps Account Request” channel is on the MyCharleston Academic Services tab for students to sign-up.

The student College email address in Banner will automatically be set to their username@g.cofc.edu address during the sign-up process.

Mail will be copied from the student’s Edisto mailbox to CMail automatically, but the processing time will vary depending on mailbox size and sign-up volume.

The Edisto mailbox will expire 15 days after Google account sign-up. Once the mailbox expires, the student will not be able to login to Webmail, but the address will continue to forward to CMail. Students should avoid sending messages from their Edisto account after they sign-up, as mail will only be migrated once.

The Google account password is separate from the user’s Active Directory password (used for MyCharleston). We expect to implement a single-sign-on and/or password synchronization process in the next few months. We encourage the students to use the same password for Google that they use for MyCharleston.

Problem reports and questions should be directed to the Helpdesk at helpdesk@cofc.edu or 843.953.3375 for tracking and resolution.

Further information is available on the IT webpage at:
http://it.cofc.edu/accounts-email/cmail/index.php
http://it.cofc.edu/accounts-email/cmail/cmail-faqs/index.php
http://it.cofc.edu/accounts-email/cmail/using-cmail/index.php

Skip to toolbar