[CCoE Notice] Important Security Notice for Cullen College

babales babales at egr.uh.edu
Fri Sep 2 12:38:19 CDT 2011 

Engineering Computing support personnel have identified a significant threat to users of dynamic IP
address within the University wired ethernet network.

The threat consists of compromised systems on the campus network that are directing computers to a
Malware distribution site that will display the below text asking you to update your browser.  If
the user clicks the "Browser update" button, a trojan executable will be downloaded and run,
compromising the system.  Engineering Computing has not yet identified the Trojan.  If you see a
screen similar to the one below, DO NOT CLICK to update.

Firefox screendump

University computers that are not at their assigned address or have been moved to a new location may
default to dynamic addressing via DHCP.  Non-University (i.e. Personally Owned) computers are not
authorized to be connected to the wired network and should only access the wireless network.  Until
this Trojan is identified, we will not know if our current anti-virus software is effective against
its installation.

Please report to Engineering Computing if you have seen this screen and downloaded the Trojan
software.  We do want to examine your computer in this case.

-- 

Bryan Bales
Systems Analyst II
Engineering Computing Center
Cullen College of Engineering
University of Houston
713-743-0766

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://Bug.EGR.UH.EDU/pipermail/engi-dist/attachments/20110902/88d3e1da/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: firefox.jpg
Type: image/jpeg
Size: 41413 bytes
Desc: not available
Url : http://Bug.EGR.UH.EDU/pipermail/engi-dist/attachments/20110902/88d3e1da/attachment-0001.jpg 
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: firefox.screendump
Url: http://Bug.EGR.UH.EDU/pipermail/engi-dist/attachments/20110902/88d3e1da/attachment-0001.pl 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0x9365375E.asc
Type: application/pgp-keys
Size: 1727 bytes
Desc: not available
Url : http://Bug.EGR.UH.EDU/pipermail/engi-dist/attachments/20110902/88d3e1da/attachment-0001.bin

More information about the Engi-Dist mailing list