To: All Users

• What is Spear Phishing Attack?

Spear Phishing is a specific type of Phishing Attack that targets individuals or organizations with the intention of deceiving them and gaining unauthorized access to sensitive information. Unlike regular phishing attacks, spear phishing is more personalized and involves tactics such as impersonation, enticing bait, and finding ways to bypass security measures like email filters and antivirus software.

Although general Phishing and Spear Phishing employ similar techniques, there are distinctions between them. General Phishing attacks are typically straightforward, aiming to acquire the victim’s information, such as online banking credentials, to fulfill their objectives. In contrast, spear phishing attacks go beyond simply obtaining login details or personal data. They serve as a gateway for attackers to gain initial entry into the targeted network and act as a stepping stone for subsequent Targeted Attacks

• How does Spear Phishing Work?

Spear phishing attacks specifically aim at targeting individuals within an organization or institution, including their social media accounts like the organization’s website, Twitter, Facebook, and LinkedIn. The attackers invest time in creating persuasive email content and may include harmful attachments or links in the emails. When the recipient opens such attachments or clicks on the links, it can trigger the execution of malicious code or redirect the user to a compromised website. This provides an opportunity for the attacker to establish a hidden communication network and advance to the next stage of the attack.

• How to Prevent Spear Phishing?

To thwart spear phishing attacks, UM employs several layers of protection, empowering system administrators with enhanced visibility and control over the network. This approach minimizes the risk of targeted attacks and mitigates various attack vectors.

Nonetheless, the most pivotal factor in defense lies in the information security awareness of employees and students. By diligently observing spelling mistakes, peculiar language, and other suspicious indicators in emails, individuals can partially shield themselves against spear phishing attacks.

Reference

• Important Notice: Beware of phishing emails sent by UM members
• Don’t Let a Phishing Scam Reel You In
• How can I identify a phishing, fake email and websites?
• Beware of Phishing Trap

Should you have any enquiries, please feel free to contact ICTO Help Desk.

ICTO Help Desk
Location : Room 2085, 2/F, Central Teaching Building (E5), eMap
Telephone : 8822 8600
email : icto.helpdesk@um.edu.mo

Information and Communication Technology Office

To: All Users

There has been a recent emergence of phishing emails impersonating university staff members. Hackers are using fraudulent email addresses to send urgent emails to colleagues or students, pretending to need immediate assistance. Their intention is to deceive recipients into responding and then carry out subsequent fraudulent activities, such as money scams or attempts to obtain account passwords.

Figure 1: Desktop Version

Figure 2: Mobile Version

If you have suspicions, try to contact the sender through other reliable means for further verification, such as phone calls or text message.

Please DO NOT RESPOND to this kind of emails or provide any information to the impersonating sender. If you have any further queries, please feel free to contact our Help Desk.

Reference

• Don’t Let a Phishing Scam Reel You In
• How can I identify a phishing, fake email and websites?
• Beware of Phishing Trap

ICTO Help Desk
Location : Room 2085, 2/F, Central Teaching Building (E5), eMap
Telephone : 8822 8600
email : icto.helpdesk@um.edu.mo

Information and Communication Technology Office

To: All Users

As informed by the Cybersecurity Incident Alert and Response Centre (CARIC), Google have recently issued security vulnerability about Chrome browser.  This vulnerability may trigger remote execution of arbitrary code and is widely exploited.

• Please update to Google Chrome version 116.0.5845.187 (Linux) or later, 116.0.5845.187 (Mac) or later, 116.0.5845.187/.188 (Windows) or later.

For more details, please refer to: https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html

Steps to update Google Chrome browser

• Open your Google Chrome browser on your desktop.
• Click the three vertical dots in the upper right corner to open the dropdown menu.
• Select “Settings“.
• Click “About Chrome” on the left-hand sidebar.
• Chrome will automatically check for updates or you can click the button “Update Google Chrome”.
• Restart the Chrome.

Reference

• How to download and install software in a secure manner?
• Basic Knowledge of Online Safety and Security
• Other Information Security Tips

Should you have any enquiries, please feel free to contact ICTO Help Desk.

ICTO Help Desk
Location : Room 2085, 2/F, Central Teaching Building (E5), eMap
Telephone : 8822 8600
email : icto.helpdesk@um.edu.mo

Information and Communication Technology Office

To: All Users

As informed by the Cybersecurity Incident Alert and Response Centre (CARIC), multiple security vulnerabilities has been issued about the code editing software Notepad++.  Attackers can use this vulnerability to induce users to open malicious documents to execute the arbitrary code and the related exploited code has been exploded.

• Please update to Notepad++ V8.5.7 or later.

For more details, please refer to: https://notepad-plus-plus.org/downloads/v8.5.7/

Reference

• How to download and install software in a secure manner?
• Basic Knowledge of Online Safety and Security
• Other Information Security Tips

Should you have any enquiries, please feel free to contact ICTO Help Desk.

ICTO Help Desk
Location : Room 2085, 2/F, Central Teaching Building (E5), eMap
Telephone : 8822 8600
email : icto.helpdesk@um.edu.mo

Information and Communication Technology Office

To: All Users

Recently, there have been reports of scammers using artificial intelligence (AI) deep fake technique for fraudulent activities, including creating fake news to promote investment schemes or manipulating videos to impersonate celebrities and deceive victims into participation of false investment activities. It is also possible that scammers may use similar techniques to impersonate your friends or family members during video conferences or voice calls for phishing scams.

There are few steps to protect yourself from phishing scams:

1. Stay vigilant and calm:
   • Keep composure when dealing with urgent requests, especially those involving financial transactions or investment request. Be particularly cautious if someone claiming to be a “friend” requesting money transfer in the video or audio recording.
2. Verify identities:
   • When it comes to financial transactions or personal information, always verify the identity of the other party. Confirm the identities of the friends, family, or relevant institutions through independent channels and the authenticity of their requests.
3. Watch for inconsistencies:
   • Attempt to verify the other party’s identity through casual conversation, as scammers may reveal inconsistencies.
4. Protect personal information:
   •  Besides personal data, do not provide biometric data such as facial recognition, fingerprints, or voice samples.
5. Don’t blindly trust online information:
   • This includes messages labeled as “Fact Checked” or “Confirmed.” If you suspect it to be false information, avoid sharing it and consult the relevant authorities for verification.

Although criminals may change their fraudulent methods from time to time, their goal remains the same: to deceive users into revealing their account credentials, personal information, or money. By staying vigilant and remembering to “Stop and Think! Do Fact Check!”, you can protect yourself from phishing scams.

Should you have any enquiries, please feel free to contact ICTO Help Desk.

ICTO Help Desk
Location : Room 2085, 2/F, Central Teaching Building (E5), eMap
Telephone : 8822 8600
email : icto.helpdesk@um.edu.mo

Information and Communication Technology Office

To: All Users

As informed by the Cybersecurity Incident Alert and Response Centre (CARIC), some public departments have received counterfeit phishing emails related to “Notice of the Ministry of Finance’s 2023 Individual Labor Application”, which contain links to phishing website attempting to defraud bank card numbers and other information.

• The title of the email is “Please Check!”, which contains a QR code (Figure 1) linking to phishing website. After scanning the QR code, it will direct you to the phishing website (Figure 2).

  Figure 1: Phishing email content

Figure 2: Phishing website

Suggestions

• If you received similar email, do not visit the relevant phishing website and delete the email immediately.
• Do not open suspicious email attachments or links and provides confidential information such as account passwords in suspicious website.
• If you have received similar emails, please contact ICTO Help Desk.

ICTO Help Desk
Location : Room 2085, 2/F, Central Teaching Building (E5), eMap
Telephone : 8822 8600
email : icto.helpdesk@um.edu.mo

Information and Communication Technology Office

To: All Users

When you are no longer using personal IT devices, such as a computer, smartphone, tablet or external storage device, it is important on how you dispose of it properly. This helps to protect your privacy and security, as well as the environment.

There are few steps you can dispose of your personal IT equipment securely:

1. Back up your data:
   • Before disposing of your device, make sure to back up all your important data and files. You can use an external hard drive or cloud storage to store your data.
2. Unsubscribe or unbundle accounts:
   • If there are any subscription services or bundled accounts, you should first unsubscribe or log out of all bundled accounts.
3. Wipe content from your device:
   • Make sure to wipe your device clean before disposing of it. This means deleting all your personal data and files from the device.
4. Remove SIM cards and memory cards:
   • If your device has a SIM card or memory card, make sure to remove them before disposing of the device.
5. Destroy the device (if necessary):
   • If you have sensitive data on your device that you don’t want anyone else to access, you can destroy the device physically.
6. Recycle the device:
   • Once you confirm your device is wiped, you can recycle it through your local recycling company or organization, such as Direcção dos Serviços de Protecção Ambiental (DSPA) in Macau, which is promoting Electronic and Electrical Equipment Recycling Programme.
7. Don’t forget those household appliances:
   • Such as TV boxes, TVs or portable game consoles, etc., which may contain credit card and personal information,  make sure to handle them carefully.

No matter how you choose to dispose of your personal IT equipment, make sure to do so in a responsible way.

Reference:
Electronic and Electrical Equipment Recycling Programme (DSPA)
How to Properly Prepare Your PC for Disposal
How to factory reset your iPhone, iPad, or iPod touch
Reset your Android device to factory settings

Should you have any enquiries, please feel free to contact ICTO Help Desk.

ICTO Help Desk
Location : Room 2085, 2/F, Central Teaching Building (E5), eMap
Telephone : 8822 8600
email : icto.helpdesk@um.edu.mo

Information and Communication Technology Office

To: All Users

As informed by the Cybersecurity Incident Alert and Response Centre (CARIC), Apple recently issued security update notifications for multiple vulnerabilities, three zero-day vulnerabilities CVE-2023-32434, CVE-2023-32435 and CVE-2023-32439 are widely exploited. These vulnerabilities are related to the Kernel and WebKit components, which could lead to arbitrary code execution.

Vulnerability Details

1. Apple Kernel privilege escalation vulnerability (CVE-2023-32434)
   Apple Kernel has an integer overflow vulnerability that could be exploited by local application to execute arbitrary code with kernel privileges.
2. Apple WebKit arbitrary code execution vulnerability (CVE-2023-32435 and CVE-2023-32439)
   Apple WebKit has the vulnerability that could cause memory corruption and type confusion, when the WebKit component runs maliciously crafted web content, the hacker could execute arbitrary code on the target device.

Affected Product Versions:

Safari version lower than 16.5.1
iOS 16.5.1 and iPadOS version lower than 16.5.1
iOS 15.7.7 and iPadOS version lower than 15.7.7
macOS Ventura version lower than 13.4.1
macOS Monterey version lower than 12.6.7
macOS Big Sur version lower than 11.7.8
watchOS version lower than 9.5.2
watchOS version lower than 8.8.1

Related references:

https://support.apple.com/kb/HT213816
https://support.apple.com/kb/HT213814
https://support.apple.com/kb/HT213811
https://support.apple.com/kb/HT213813
https://support.apple.com/kb/HT213810
https://support.apple.com/kb/HT213809
https://support.apple.com/kb/HT213812
https://support.apple.com/kb/HT213808

Recommendations

If the above affected products are being used, it is recommended to:

• schedule testing and install security updates released by Apple as soon as possible;
• backup and test your work before update.

Reference

• How to download and install software in a secure manner?
• Basic Knowledge of Online Safety and Security
• Other Information Security Tips

Should you have any enquiries, please feel free to contact ICTO Help Desk.

ICTO Help Desk
Location : Room 2085, 2/F, Central Teaching Building (E5), eMap
Telephone : 8822 8600
email : icto.helpdesk@um.edu.mo

Information and Communication Technology Office

To: All Users

Artificial intelligence (AI) refers to a system or device that can simulate human intelligence, and realize automation, optimization and innovation functions through big data analysis, machine learning and other technologies. In recent years, the development and application of AI tools have become increasingly widespread, bringing convenience and efficiency to our life. It can chat with you, generate articles, draw portraits, write computer programs and more. When choosing and using AI tools, below are some precautions:

1. Always use official and legal channels to obtain AI tools:
   • Hackers have created fake AI apps and websites to trick people into downloading and using them. However, these AI apps could be a piece of malware that steals data from your device, or they could steal your credit card and personal information by charging you for the service.
2. Be careful when sharing personal or confidential information with AI tools:
   • Even using a reputable AI tool, don’t provide any personal or confidential information before understanding and accepting its privacy policy. The information you provide may be used to train the AI model and may be included in the responses to other people’s queries. And, it could lead to a data breach.
3. Don’t open files and links in emails unsuspectedly:
   • Hackers can use AI tools to generate highly realistic phishing emails that are difficult to be identified by spam filters and even humans. If you have doubts about the email content or sender, don’t open the attached files and links, and don’t trust the contact methods. Confirm the authenticity of the email through a credible channel, such as, by calling the sender directly before taking the next step or replying.
4. Don’t fully trust the content generated by AI tools:
   • An AI tool is only as good as the data it uses. If the data it learns from is outdated, incomplete, or incorrect, it may generate inaccurate, untrue, illegal, or unethical content. Therefore, whatever you get from an AI tool, verify it carefully before using and trusting it.
5. Pay attention to the copyright of the content generated by AI tools:
   • The content generated by AI tools may have been used by others, or may contain copyrighted content of others.

Reference:
How to download and install software in a secure manner?
Don’t Let a Phishing Scam Reel You In
Scammers keep changing the way of fraud. Are you always ready to protect yourself?
Data Privacy in an Era of Compliance
Other Information Security Tips

Should you have any enquiries, please feel free to contact ICTO Help Desk.

ICTO Help Desk
Location : Room 2085, 2/F, Central Teaching Building (E5), eMap
Telephone : 8822 8600
email : icto.helpdesk@um.edu.mo

Information and Communication Technology Office

To: All Users

As informed by the Cybersecurity Incident Alert and Response Centre (CARIC), Google have recently issued multiple security vulnerabilities about Chrome browser.  Attackers can use this vulnerability to induce users to open malicious HTML pages to destroy the heap and execute the remote code.

• Please update to Google Chrome version (Window) 114.0.5735.110 or later and (Mac/Lunix) 114.0.5735.106 or later.

For more details, please refer to: https://chromereleases.googleblog.com/2023/06/stable-channel-update-for-desktop.html

Steps to update Google Chrome browser

• Open your Google Chrome browser on your desktop.
• Click the three vertical dots in the upper right corner to open the dropdown menu.
• Select “Settings“.
• Click “About Chrome” on the left-hand sidebar.
• Chrome will automatically check for updates or you can click the button “Update Google Chrome”.
• Restart the Chrome.

Reference

• How to download and install software in a secure manner?
• Basic Knowledge of Online Safety and Security
• Other Information Security Tips

Should you have any enquiries, please feel free to contact ICTO Help Desk.

ICTO Help Desk
Location : Room 2085, 2/F, Central Teaching Building (E5), eMap
Telephone : 8822 8600
email : icto.helpdesk@um.edu.mo

Information and Communication Technology Office