TO: All Employees, All Seawolves
FR: Evan Ferguson, Chief Technology Officer and Information Security Officer
There has recently been an increase in phishing scams targeting our campus. These scams include fraudulent job offers and requests for personal or financial data. They typically ask for the user's SSU credentials in hopes the user will accept Multi-Factor Authentication (MFA) prompts, allowing the hacker access to the account and user’s sensitive information.
The Sonoma State IT team would like to take this opportunity to remind the campus to stay vigilant and report any suspicious activity to iso@sonoma.edu.
Recent Job Scam
Recent emails titled “CURRENT JOB OPENING” or from “Daisy Szabo” that reference job opportunities are scams from bad actors accessing a trusted SSU email account. Victims have been asked to:
- Share personal info, including bank details
- Purchase gift cards or cryptocurrency
What to Do:
- Do not reply or engage with these emails
- Report the email as spam and/or phishing
- Never provide sensitive information or make purchases for unknown senders
MFA Security Tips
- Deny unrequested Duo pushes and change your SSU password immediately, MFA prompts are indicative of someone using your username and password to log in
- Keep passcodes private, only use Duo passcodes for SSU’s official services
How to Stay Safe:
Users should always verify all requests for personal or financial information. Legitimate SSU representatives will never ask you for sensitive information over email. Scrutinize any unexpected communications and be wary of emails with vague promises, unusual requests, or urgent demands. For more information on how to identify phishing and other scams, visit the IT Security FAQ page.
We take the security of our systems and your trust seriously. Thank you for your vigilance and cooperation in helping us maintain a safe digital environment at SSU.
If you have any concerns or need assistance, please contact the ISO Support Team at iso@sonoma.edu or the IT Help Desk at helpdesk@sonoma.edu.