Tech Alerts

Last week, OIRT (Office of Information Resources & Technology) conducted a phishing simulation as part of our ongoing cybersecurity awareness training. These simulated emails were designed to help employees recognize and respond to potential phishing threats. The test was comprised of five unique emails sent out in equal distribution to all Staff and Faculty.

Overall, results fell short of prior performance and expectations. While many employees eventually recognized the emails as phishing, few correctly reported them. If you sent an email to UTAC or contacted UTAC directly, that was incorrect. If you emailed another individual, that was incorrect. If you deleted the email but took no further action, that was also incorrect. If you clicked on the red shield Report icon in Outlook or Outlook on the web, or used the Report text option from the mobile dropdown on your cell phone—congratulations! You helped the university identify and stop a potential phishing scam.

All instances where a member of the community did not recognize the phishing email and entered the requested data came from one of two test emails that appeared to come from a trusted source whose name was spoofed. This is an extremely common tactic used by bad actors. Read the information below to improve your skills in identifying and reporting phishing and “quishing” (QR code-based phishing) emails. Our community is the first line of defense in protecting the university—and the first line of attack for cybercriminals.

How to Identify Phishing Emails

To protect yourself and university data, always be on the lookout for these common phishing red flags:

✅ Suspicious Sender – Check the email address carefully; cybercriminals often use addresses that look similar to legitimate ones.
✅ Urgent or Unusual Requests – Be cautious of emails pressuring you to act quickly, such as changing passwords, verifying accounts, or sending sensitive information.
✅ Unexpected Attachments, Links, or QR Codes – Hover over links before clicking to verify the destination. Be extremely cautious with emails containing QR codes—scanning a malicious QR code could lead you to a phishing site or trigger a malware download.
✅ Poor Grammar & Formatting – Many phishing emails contain spelling errors, odd formatting, or unprofessional language.
✅ Mismatched URLs – A hyperlink might display one address but direct you to another. Always double-check URLs before clicking.
✅ Unfamiliar Login Pages – Never enter your FDU network credentials (username and password) on any site not affiliated with the fdu.edu domain. Always ensure you’re logging into official FDU services. If you’re unsure, contact UTAC before proceeding.

What to Do If You Suspect a Phishing Email

• Do not click any links, scan QR codes, or download attachments.
• Do not reply to the sender or provide any personal or company information.
• Report it – Follow the reporting instructions provided on this IT webpage:

Ongoing Phishing Simulations – Stay Vigilant
Phishing tests are mandated by law at least twice yearly. OIRT conducts phishing simulation tests throughout the year to help ensure employees remain aware of potential cybersecurity threats. Phishing attacks can happen at any time, so always stay alert, especially when receiving emails that request sensitive information.

Additional Training for Phishing Simulation Participants
Any users who failed the phishing simulation by clicking on a malicious link, entering credentials, or otherwise engaging with the simulated phishing email will be invited to take additional cybersecurity training. This training is intended to build awareness and strengthen our overall security posture. If you receive an invitation, complete the training as soon as possible.

Cybersecurity is a shared responsibility, and your vigilance helps keep our organization safe.

As part of our previously announced Unified Communications backend platform update, OIRT will be performing a firmware upgrade of our Cisco phones on Friday morning, March 28 between 1:00 AM and 5:00 AM Eastern. At staggered times throughout this window, each phone will reboot and be unavailable for approximately 5 minutes. This work is scheduled outside of business hours to minimize impact to the community.

As part of our previously announced Unified Communications backend platform update, we will be upgrading the University’s softphone application from Cisco Jabber to Cisco’s newer softphone application, Webex Calling.

In the coming weeks, users with FDU-owned Windows and macOS computers will notice a new Webex icon on their desktops. Although this icon will eventually be used to access Webex Calling, softphone users should continue using Jabber for now. The new software is being installed well in advance to ensure a seamless transition. Once we are ready for the community to switch from Jabber to Webex Calling, we will send an additional communication with further instructions.

OIRT will migrate the Unified Communications system to a new backend platform at the end of May. Preparation for this deployment is underway, and additional information will be shared with the community once details are finalized.

Starting around May 1, 2025, there will be a temporary freeze on moves, additions, or changes to phone lines. Phone system requests submitted via samisupport.fdu.edu during this period will be delayed until the migration is complete.

The FDU email domain is currently receiving a massive influx of new and very convincing phishing scams. While all the outward signs of phishing are present, these emails are fooling many members of our community. With this in mind, everyone should slow down and review each email message with caution.

Here are six important tips to help you stay a step ahead of scammers:

1. If someone is claiming to be a member of the University and you see “[External]” in the subject line, assume that the message is a scam.
2. Do not allow a conversation to move from your FDU email address to a personal email or phone. There is no legitimate reason for a member of the FDU community to conduct FDU business outside of our environment.
3. Be extremely cautious of any employment offers. FDU staff and faculty jobs are posted on jobs.fdu.edu, and student jobs are posted on Handshake.
4. Never scan a QR code from an email, and only click a link once you are absolutely certain that the email is legitimate.
5. FDU will never ask for your multi-factor authentication passcode or require you to update it.
6. FDU will never ask anyone to cash a check via email or any web-based form.

Stay vigilant—phishing scams are becoming more sophisticated and harder to detect.

Dear Faculty and Staff,

I’m excited to share that our migration from Elevate to Instant Enrollment has been successfully completed, creating a seamless and user-friendly enrollment and payment process for the Early College High School program and for Lifelong Learning students completing a Continuing Education Course or Certificate program.

This feature is available to any academic unit that wants to enable students to pay by credit card at the time of registration. If your academic offering would benefit from using Instant Enrollment, contact the Lifelong Learning office.

You can reach them at X6500 or LifelongLearning@fdu.edu.

Dear Faculty/Staff,

Our migration from Perceptive Content to SoftDocs has been successfully completed, laying a strong foundation for streamlined document and workflow management across the institution. This is a major milestone in enhancing how we handle and access important information—offering improved efficiency, reliability, and user experience.

While this transition marks a significant step, there’s more to come as we continue migrating existing workflows, beginning with our DocuSign processes. This phase is scheduled for completion by the end of August.

Stay tuned for updates on upcoming workflow transitions and opportunities for feedback.

As a Creative Cloud user, be advised that Adobe has discontinued Creative Cloud Synced Files. Files and folders previously shared within Creative Cloud Synced Files will no longer be accessible. Adobe will begin deleting the stored data in this directory soon, so we recommend taking action at your earliest convenience.

While files will remain in your local Creative Cloud Files folder, it is strongly advised that you download a copy of your synced files from the Creative Cloud Desktop app and do one of the following:

• Back up the files to a local location outside of the Creative Cloud sync directory.
• Back up the files to OneDrive (or your department’s cloud storage solution, if applicable).
• Back up the files to a Creative Cloud library.

You can download a copy of the synced data from the Creative Cloud website using the following steps:

1. Log in to the Creative Cloud Website and navigate to the Synced files tab.

2. Select Package files. If you do not see this button, you do not have any synced content.
   
3. Select Download. This process may take a while.

We are all aware of the increasing threat posed by cybercriminals and how they continue to become more sophisticated in their attempts to harm individuals and businesses. As they adapt to our defenses and shift their strategies, we must also enhance our security measures.

Effective February 1, 2025, the following options will be the only methods faculty and staff can use to authenticate their accounts and access systems through DUO MFA:

• DUO Push – If you have the DUO Mobile App installed on your smartphone or tablet, you can receive a push notification. From the app, you can approve or deny the login attempt.
• Passcodes via DUO Mobile App – By tapping the FDU logo in the DUO Mobile app, you can generate a single-use passcode. This code must be used immediately.
• Passcodes via SMS – Users can receive a one-time code via text message. To obtain the code, click Enter Passcode and then click the blue “Text me new codes” button. These codes do not expire until used. This option does not require a smartphone.
• Passcodes via Token (Departmental Approval Only) – Departments can request a physical token that generates passcodes for an employee’s MFA authentication. Departments will be charged for the token and are responsible for its return if the employee leaves the University. Tokens can be requested through a SAMI Support ticket.
• Security Key – Employees can purchase and use physical WebAuthn/FIDO2 security keys. After purchasing a key, employees can enroll their devices online. Once enrolled, the device validates the employee’s identity whenever the key is connected.

Approved Security Keys

Yubico offers both USB-C and USB-A versions to suit your device’s port compatibility.

Yubikey (USB-C)

Yubikey (USB-A)

On Friday, December 20th, between 11:00 AM and 5:00 PM EDT, FDU will perform maintenance on network authentication services.

During this maintenance window, users may experience brief authentication delays when connecting to the wireless network or the FDU VPN.