Security Alerts and Advisories

  • 8/12/2009 - Phishing Scam at Longwood University

    We have recently seen an increase in the number of phishing e-mails targeted at our users. These e-mails are made to look like they came from Information and Instructional Technology Services (IITS) and they ask you to reply with your password. These messages are a scam designed to steal your password to gain access to your account.

    Please be aware that IITS will never ask you for your password.

    If you receive a message asking you to reply with your password please delete it immediately.

    If you have responded to one of these messages or if you have questions please contact User Support Services at 4357 or e-mail helpdesk@longwood.edu.

  • 6/16/2009 - University Phishing Threat

    All users should be aware that phishing scams are again being targeted at Longwood users. Several users have reported receiving an e-mail message appearing to come from “Webmail Support” that requests you to reply with your user name and password. These messages are phishing scams and are not from Information and Instructional Technology Services (IITS).

    IITS will never ask you for your password and you should never provide your password to anyone.

    If you have responded to one of these messages or if you have questions please contact User Support Services at 4357 or email helpdesk@longwood.edu.

  • 3/30/2009 - Conficker Threat

    As you may have already heard, it is rumored that the computing world will experience major problems with the Conficker worm on April 1st. The Conficker worm exploits a bug in the Windows Server service used by all supported versions of Microsoft’s operating system including; Windows 2000, XP, Vista, Server 2003 and Server 2008.

    No one really knows to what extent (if any) the damage of this worm will be; however, as a precautionary measure, IITS has placed a tool on our Software Library that will identify and remove the Conficker worm. Please visit the Software Library at http://www.longwood.edu/helpdesk/software/software_library.htm. The tool is currently the first entry on the page (in red). You should run the file and select “Scan Now” when the Stinger window opens.

    McAfee 8.5 with the latest virus definitions will protect your computer from this worm. Please ensure that you are running up-to-date antivirus software. To confirm that your McAfee software is up-to-date you should right click on the V-Shield icon in the bottom right hand side of your screen (next to the time) and choose “About VirusScan Enterprise”. The “DAT Created On” date should be no more than a few days old.

    As always, if you have questions please contact User Support Services at 4357 or email helpdesk@longwood.edu.


  • 08/04/08 - University Phishing Threat

    It has come to our attention that several Longwood University students have fallen victim to the ongoing e-mail phishing threat.  These e-mails are being directed to Longwood University users and may appear as official Longwood University correspondence.  Characteristics of these e-mails may include requests for user name, password, and other personal information (such as name, date of birth, etc.).  Be aware that Longwood University will NEVER ask you for your password.

    If you received one of these messages, delete it immediately. Do not reply, click on any links, or open any attachments included in the message.

    For more information, please visit the Longwood University Information Security website at http://www.longwood.edu/infosec/index.htm 

    As always, if you have questions, feel free to contact User Support Services at 434-395-4357 or e-mail helpdesk@longwood.edu.



  • 06/24/08 - University Phishing Threat

    Several Longwood users have received an email which appears to have been sent by “The Longwood.edu Webmail TEAM”. Please be informed that this is a phishing scam and it is NOT from the IITS office.

    Tips to protect yourself from phishing:
    • Be aware that as a general rule legitimate organizations do not ask for account information in e-mail messages. Know the policies of the organizations with which you do business.
    • Never provide your password or other confidential account information in an e-mail.
    • Always type in the web address of your bank or any other institution where you have an account and never rely on the links provided in e-mails to access such pages.
    • All phishing messages should be deleted immediately and you should never click any links or open any attachments included in the messages because of the risk of malware.

    Learn more about phishing in the February 2008 edition of the Security Minute created by our Information Security Office and found at http://www.longwood.edu/infosec/newsletter.htm

    As always, if you have questions feel free to contact User Support Services at 4357 or email helpdesk@longwood.edu.