Commonwealth Office of Technology

• Security Home
  • Security Main Page
• Alerts
  • Security Alerts
• Policies
  • Security Policies
• Anti-Virus Info
  • Anti-Virus Info
• Newsletters & Info
  • Cyber Security
  • Cyber Security Awareness
  • Security FAQ
  • Video: Public Folders
• Additional Resources
  • Security Forms
  • Security Links
  • COT Responsibilities

COT Security Alert - October 25, 2006

From: Ritchey, Gail (COT)
Sent: Wednesday, October 25, 2006 2:38 PM
To: COT Constitutional CIO Security Contacts; COT Cabinet CIO Security Contacts; COT Commonwealth Technology Council

Cc: COT Exchange Administrators; COT Security Alert Contacts; COT Security Contact COT-Support; COT Security Contact Pass; COT Security Contact Self-Support; COT Technical Contacts; SecurityContacts Group

Subject: COT Security Alert: Phishing Attempt Emails

Attachments: Picture (Metafile)

COT Security Alert

---

COT has seen evidence of phishing emails being received in the Commonwealth’s network. These emails appear to be from legitimate sources and may have the subject line “Account Alert”. Be advised that this is a phishing attempt. As with any unsolicited or unknown emails, do not open or respond to the emails. For an example of the email, see below:

Dear Valued Member,

According to our terms of services, you will have to confirm your e-mail by the following link, or your account will be suspended for security reasons.

http://www,ky.gov/confirm.php?account=epsbhelp@ky.gov

After following the instructions in the sheet, your account will not be interrupted and will continue as normal.

Thanks for your attention to this request. We apologize for any inconvenience.

Sincerely, Ky Abuse Department

COT asks that you do not open these emails or click on any links contained in them. If you must open unknown or unsolicited emails as part of your job, be cautious in clicking any links or providing any confidential or personal information unless you can confirm the authenticity of the email and the link. If you feel you have been infected or have compromised information, contact your agency’s technical staff. For any questions or further information, contact COT Security Services ISS, COTSecurityServicesISS@ky.gov.

NOTICE: COT is providing this information so that you are aware of the latest security threats, vulnerabilities, software patches, etc. You should consult with your network administrator or other technical resources to ensure that the appropriate actions for these alerts are followed. If you are a network administrator and need additional information, please call the Help Desk at 502.564.7576.

Commonwealth Office of Technology
Office of Infrastructure Services
Division of Security Services
101 Cold Harbor Drive
Frankfort, KY 40601
COTSecurityServices@ky.gov
http://technology.ky.gov/security/