Alerts

Service Degradation
15 Jan, '14—11:58 am

Due to scheduled maintenance on CIS firewalls, there will be an outage of Brown's wireless services between 6AM and 4PM on Sunday, January 12. We will strive to complete the work in a shorter timeframe, but wireless services may be unavailable or unstable over much of campus for the day. We apologize for any inconvenience this may cause.

Service Degradation
9 Jan, '14—11:32 am

The ArcGIS License Manager, located on CIS' CFARM server, will undergo maintenance on Monday, December 23 from 7am to 8am. Users of ArcGIS should save their work frequently since there is the potential for data loss.

Security Alert
19 Dec, '13—10:38 am

Two phishing scams were reported today, one from a supposed Brown address (service@brown.edu) and another from compromised Brown accounts.  Both contained a link that recipients were told to click. As with others, do NOT click on the link. If you have not already deleted it, mark the email as phishing and then delete it.  Examples follow of these latest phishing attempts.

---------- Forwarded message ----------
From: <different Brown addresses>
Date: Thu, Dec 12, 2013 at 5:00 PM
Subject: <Name> Sent You a Google Doc
To:

Google Drive. Keep everything. Share anything
Please check the document i uploaded for you using Google docs. CLICK HERE to sign in securely with your email to view the document its very important.
Thank You. 

---------- Forwarded message ----------
From: Brown University <service@brown.edu>
Date: Thu, Dec 12, 2013 at 7:22 AM
Subject: Message From Brown University
To:

We received a notification fro m our date base system stating your email has been hacked by someone.

You are require to Click Here and log-in to your email in other to validate and secure your email profile.

Sincerely,
Brown University 

Service Degradation
17 Dec, '13—10:49 am

We are aware of a problem with Miscellaneous Accounts Receivable and are working to identify and resolve the issue.  Functionality that may be impacted by this problem includes: ability to record and bill receivables for miscellaneous charges incurred by individuals or external entities.

If you experience problems other than the ones mentioned above, or problems with another service, please report them to the Help Desk at (401) 863-4357.  We apologize for any inconvenience this may cause.

Service Outage
13 Dec, '13—10:54 am

We are aware of a problem with Brown IT Ticketing System (Remedy) and are working to identify and resolve the issue.  Functionality that may be impacted by this problem includes: use of Remedy for making requests and reporting incidents and problems for information technology applications and services.

If you experience problems other than the ones mentioned above, or problems with another service, please report them to the Help Desk at (401) 863-4357.  We apologize for any inconvenience this may cause.

Service Degradation
13 Dec, '13—10:53 am

Software Affected: ArcGIS, Mathematica, Matlab, SPSS, Maple, or SPlus
Save your work often if you plan on using any of the above software on Thursday, 12/5 between 6am and 8am.

Security Alert
12 Dec, '13—12:48 pm

ISG has received reports of emails from "Brown IT Alert" warning recipients that their brown.edu account was "accessed from a blacklisted IP located in Arizona", listing the details, then requesting they click on a link to "allow the new IP monitoring alert system (to) automatically block the suspicious IP from further future compromise."  This is not a legitimate request but a phishing attempt and should be treated as such.  Do NOT click on the link. If you have not already deleted it, mark the email as phishing and then delete it.

Note: The address oitalert@brown.edu has been blocked from being able to send to Brown Gmail addresses.

An example follows:

---------- Forwarded message ----------
From: Brown IT Alert
Date: Wed, Nov 20, 2013 at 11:16 AM
Subject: URGENT: BROWN incident where your NET ID was compromised
To: <redacted>@brown.edu

Hello,

Our new IP monitoring alert system that checkmates the increased incidents of phishing attacks and database compromise detected that your "brown.edu" account was accessed from a blacklisted IP located in Arizona. The suspicious login details are shown hereunder:

Access Location: Phoenix, Arizona
IP Address: 23.19.88.141
ISP: Nobis Technology Group, LLC
Host Name: 23.19.88.141.rdns.ubiquity.io
Time of compromise : 10:27 AM, Eastern Standard Time (EST) -0500 UTC
Date of compromise: Wednesday, November 20, 2013

Did you access your account from this location? If this wasn't you, your computer might have been infected by a malicious malware code unnoticed. To protect your account from any further compromise, kindly follow these two steps immediately:

1. Follow this ITS secure link below to reconfirm your login details and allow the new IP monitoring alert system automatically block the suspicious IP (23.19.88.141) from further future compromise

<redacted>

2. Scan your PC immediately to remove all malware codes and any other malignant viruses With these two steps taken, your account will be secured.

Serving you better,
ITS and Database Security
Brown University

Security Alert
12 Dec, '13—12:48 pm

The following is a phishing attempt. Please do not click the link and delete the email.

From: "Brown University" <sech@brown.edu>
Date: December 6, 2013 5:12:24 AM EST
To: Recipients <sech@brown.edu>
Subject: Brown University Email Alert [Code: 5841]

Dear User,

The following alert has been posted to your webmail account regarding an unauthorised access to your account:

*Brown University Alert*

Your account has been compromised and used to send unsolicited commercial email (spam).

We implore you to follow our secure https://www.brown.edu to confirm your details to avoid account suspended from our system.

Thank you .

Brown University Technical Service

Service Outage
11 Dec, '13—9:32 am

Canvas will be performing a brief (15-minute) urgent preventative maintenance on Wednesday morning, December 11th, between 2am and 3am. During this maintenance, you will not be able to log in to or use Canvas.

Security Alert
4 Dec, '13—2:26 pm

Beware of an email from updatea67@gmail.com with the subject "Update Your brown University edu Account. " This is a phishing email, attempting to get you to click on the link and/or open the attachment. Do not do either. If you have not already deleted it, mark the email as phishing and then delete it.

Clues that the email is bogus include:

  • It was sent from a non-Brown address.
  • The TO field is blank. 
  • Use of the generic "Dear User!!!" 
  • Grammatical and spelling errors (such as "upgraded and maintain.") 
  • It contains a threat that you will lose services if you do not respond quickly.

An example follows:

---------- Forwarded message ----------

From: Account update <updatea67@gmail.com>
Date: Sat, Nov 16, 2013 at 11:02 AM
Subject: Update Your brown University edu Account::
To: 

Dear User!!!

Information Technology Services (ITS) are currently upgrading and
maintaining all e-mail accounts.This will provide you the ability to
store a greatly increased amount of

e-mail correspondence in your e-mail account. Your account has been
identified as one of the accounts which are to be upgraded and
maintain.

Please click the link below and follow the instruction. If you are
unable to click the link copy and paste in on your browser:

Sign in to brown.edu !

webmail brown.edu !User  ID ..............
Password............................................

The new minimum quota level for e-mail accounts will be set to 1000mb.
Warning!!!  Account owner that refuses to upgrade and maintain his or
her account before 24 hours of receiving this warning may lose his or
her account permanently.

Computing Services Help Desk
more information about the service.
Sign.
Helpdesk