Apply     Visit     Give     |     Alumni     Parents     TCNJ Today

tcnj wordmark

Mozilla Releases Security Updates for Firefox

Mozilla released an update for Firefox to fixed a serious flaw allowing remote access to local files. Visiting a malicious website could allow an attacker to access files on the victim’s local file system. The vulnerability is being actively exploited on Windows, Mac, and Linux systems. The vulnerability has been fixed in Firefox 39.0.3 and Firefox… Continue Reading

Andorid Remote Code Execution Exploit

An exploit has been discovered in a media library that affects all Android phones from version 2.2 to the present version 5.1.1.  A specially crafted Multimedia Messaging Service (MMS) message could run code on the victims smartphone without any user interaction.  Google has issued a patch, but no patches have been pushed to any devices.… Continue Reading

Least vulnerable operating system of 2014 was…

  According to GFI Blog – A tie between Windows 8 and Windows 8.1 with 36 total vulnerabilities (24 high, 12 medium, 0 low) However, the author, Cristian Florian from GFI Blog, has grouped the operating systems together in a dubious manner and has left out major/monolithic components that cannot be removed from the OS. … Continue Reading

Cyber Security Outlook 2015

From The Center for Internet Security, below are some highlights for 2015. To read more from CIS experts about this year’s trends and threats, visit the CIS blog. Distributed Denial of Service (DDoS) Attacks A Denial of Service (DoS) attack is an attempt to make a system (such as a website) unavailable to its users.… Continue Reading

College student “Work-from-home” scam

January 12, 2015 – College students across the United States have been targeted to participate in work-from-home scams. Students have been receiving e-mails to their school accounts recruiting them for payroll and/or human resource positions with fictitious companies. The “position” simply requires the student to provide his/her bank account number to receive a deposit and… Continue Reading

College Employee Scam

January 12, 2015 – College and University employees are receiving fraudulent e-mails indicating a change in their human resource status. The e-mail contains a link directing the employee to login to their human resources website to identify this change. The website provided appears very similar to the legitimate site in an effort to steal the… Continue Reading

University Direct Deposit Account Credentials Targeted by Phishing Emails

In at least three separate incidents in 2014, malicious actors sent phishing emails with malicious links to University employees; employees who clicked on the link were taken to fraudulent websites that collected single sign-on credentials, which were used to modify the employee’s direct deposit account information. By changing this information, the malicious actors rerouted the… Continue Reading

Tech Support Call Scam Leads to Malware & Financial Loss

Tech Support Call Scam Leads to Malware & Financial Loss The Risk:  Malicious actors use call centers to cold call victims in an attempt to gain access to the victim’s computer, install malware, steal personally identifiable information (PII), and receive monetary gain. The Threat: A malicious actor, claiming to work for a well-known software, technology,… Continue Reading

Security breach at EDUCAUSE

Many of you received a message this afternoon from EDUCAUSE detailing a server breach that may have exposed your EDUCAUSE website profile password.  This message originally triggered many phishing email scam filters but, unfortunately, this message is accurate and the incident occurred as described. Please follow the instructions provided in that email to reclaim access… Continue Reading