{"id":4719,"date":"2025-12-05T15:00:32","date_gmt":"2025-12-05T20:00:32","guid":{"rendered":"https:\/\/it.rutgers.edu\/information-security\/?page_id=4719"},"modified":"2025-12-05T15:00:33","modified_gmt":"2025-12-05T20:00:33","slug":"cyber-threats-and-global-events","status":"publish","type":"page","link":"https:\/\/it.rutgers.edu\/information-security\/cyber-threats-and-global-events\/","title":{"rendered":"Cyber Threats and Global Events"},"content":{"rendered":"    <section class=\"cc--component-container cc--hero-basic  hero-basic color-light-gray\">\n\n<div class=\"c--component c--hero-basic\">\n        \n<div class=\"outer-wrapper\">\n    <div class=\"inner-wrapper\">\n        <div class=\"text-container\">\n            <div class=\"text-wrapper\">\n\t\t\t\t<div class=\"f--field f--page-title \"><h1>Cyber Threats and Global Events<\/h1>\n\n<\/div><!-- f--field f--page-title -->\n\t\t\t\t<div class=\"f--field f--text \"><\/div><!-- f--field f--text -->\n            <\/div>\n        <\/div>\n    <\/div>\n<\/div>\n\n\n<\/div><!-- c--component c--hero-basic -->\n\n    <\/section><!-- cc--component-container cc--section -->\n\n\n    <section class=\"cc--component-container cc--rich-text  rich-text\">\n\n<div class=\"c--component c--rich-text\">\n        \n    <div class=\"f--field f--rich-text \"><p>During periods of local, national, or global crises \u2014 global pandemic (i.e. COVID-19) or natural disaster (i.e. Hurricane Sandy), etc. \u2014 and other global events (like the Olympics), threat actors are hard at work taking advantage of vulnerable individuals, systems, and government resources for financial, political or other gain. Unfortunately, these national or global events provide opportunities for threat actors to employ various cyber threat strategies from\u00a0<a href=\"https:\/\/www.fbi.gov\/scams-and-safety\/common-scams-and-crimes\/ransomware\" target=\"_blank\" rel=\"noopener\">ransomware<\/a>\u00a0to\u00a0<a href=\"https:\/\/www.knowbe4.com\/what-is-social-engineering\/\" target=\"_blank\" rel=\"noopener\">social engineering<\/a>. These attack methods allow them to gain access to passwords, networks and other data or systems that lead to theft, fraud, or other undesirable outcomes like healthcare interruptions or power outages.<\/p>\n<p>With these issues in mind, the Office of Information Technology encourages all members of our community to exercise caution to avoid scams and report cyber threats that seek to exploit any global or national crises.<\/p>\n<p>The\u00a0<a href=\"https:\/\/www.consumer.ftc.gov\/features\/coronavirus-scams-what-ftc-doing\" target=\"_blank\" rel=\"noopener\">Federal Trade Commission<\/a>,\u00a0<a href=\"https:\/\/www.justice.gov\/usao-wdnc\/pr\/us-attorney-andrew-murray-issues-warning-covid-19-scams\" target=\"_blank\" rel=\"noopener\">FBI<\/a>, and\u00a0<a href=\"https:\/\/www.cisecurity.org\/\" target=\"_blank\" rel=\"noopener\">Center for Internet Security<\/a>\u00a0are a few of the trusted sources that regularly report various scams and cyber threats currently being exploited against the public and private sectors. Below you will find some examples of current scams to be aware of, and the ways in which you can report these scams at Rutgers.<\/p>\n<div id=\"footable_parent_3188\"\n         class=\" footable_parent ninja_table_wrapper loading_ninja_table wp_table_data_press_parent semantic_ui \">\n                <table data-ninja_table_instance=\"ninja_table_instance_0\" data-footable_id=\"3188\" data-filter-delay=\"1000\" aria-label=\"cyber-threats\"            id=\"footable_3188\"\n           data-unique_identifier=\"ninja_table_unique_id_1119369476_3188\"\n           class=\" foo-table ninja_footable foo_table_3188 ninja_table_unique_id_1119369476_3188 ui table  nt_type_legacy_table selectable striped  footable-paging-right ninja_table_search_disabled ninja_table_pro\">\n                <colgroup>\n                            <col class=\"ninja_column_0 \">\n                            <col class=\"ninja_column_1 \">\n                    <\/colgroup>\n        <thead>\n<tr class=\"footable-header\">\n                                        <th scope=\"col\"  class=\"ninja_column_0 ninja_clmn_nm_cyber_threat \">Cyber Threat<\/th><th scope=\"col\"  class=\"ninja_column_1 ninja_clmn_nm_tip \">Tip<\/th><\/tr>\n<\/thead>\n<tbody>\n\n        <tr data-row_id=\"155\" class=\"ninja_table_row_0 nt_row_id_155\">\n            <td><strong>Unemployment fraud: <\/strong>An unstable job economy due to Covid-19 and other global events has forced states to expedite unemployment claim reviews, and scammers are taking advantage. Fraudulent unemployment claims made with stolen social security numbers and other personal data have skyrocketed post-pandemic, both in New Jersey and across the country.<\/td><td><p>A few things to be on alert for include the following:<\/p>\n<ul>\n<li>emailed \u201cemployment termination notices\u201d that come <strong>without<\/strong> any prior communication from UHR or your managers and request personal or confidential information<\/li>\n<li>phone calls from people who claim to be from the New Jersey Department of Labor and Workforce Development and want personal information to verify an unemployment claim you have <strong>not<\/strong> filed<\/li>\n<li>actual mail from the Department of Labor and Workforce Development regarding an unemployment claim you have <strong>not<\/strong> filed<\/li>\n<\/ul>\nIf you believe that a fraudulent unemployment claim has been filed on your behalf, please take these steps:\n<ol>\n<li>Contact your manager.<\/li>\n<li>Contact UHR via the OneSource Rutgers Faculty and Staff Service Center at (732) 745-7378.<\/li>\n<li>Contact the New Jersey Department of Labor and Workforce Development at (609) 777-4304.<\/li>\n<\/ol><\/td>        <\/tr>\n            <tr data-row_id=\"151\" class=\"ninja_table_row_1 nt_row_id_151\">\n            <td><strong>Phishing exploits \u2013 Email and other scams:<\/strong> Cyber threat actors will utilize emails, texts and even phone calls to spread fear as a social engineering tactic. Their goal is to get individuals to click on links that may contain malware or redirect users to bogus websites, send money or cryptocurrency, or divulge sensitive Rutgers information. Misinformation can also be used to influence behavior, such as to mislead the public about national or global events. <br \/><br \/>These phishing scams may also request individuals to provide personal, healthcare, or financial data. <br \/><br \/><strong>Note:<\/strong> Other threat opportunities may involve scams that exploit proposed government assistance efforts \u2014 i.e. location of testing sites; government stimulus funds and associated programs; etc.<\/td><td>Never respond to, click on links, or open attachments in emails or texts from unknown sources, and always verify a caller is who they say they are before providing any information. <br \/><br \/>It is always important to know the different ways in which the university, your physician, and other professionals typically interact with you. For example, Rutgers IT will never ask for your password to be sent via email. No matter the scenario, certain behaviors or processes will not change, so any deviation of the norm can be suspicious! <br \/><br \/><strong>Individuals: DO NOT<\/strong> <em>provide personal, healthcare or financial data via email, text, a website, or over the phone unless the source has been verified. <br \/><br \/><\/em> <strong>Faculty &amp; Staff: VERIFY<\/strong> <em>changes to or requests for payments. Ensure that third-party vendors know the protocol for submitting payments to the university (to avoid wire fraud or purchase order scams). Ensure that faculty know that deans and department chairs will never send them an email request to purchase gift cards (BEC scams). <br \/><br \/><\/em> Always <strong>verify<\/strong> the source of any email, text or phone call request for personal, financial or other restricted data (see <a href=\"https:\/\/policies.rutgers.edu\/PublicPageViewHome.aspx\">Information Classification Policy 70.1.2<\/a> for each data classification definition).<\/td>        <\/tr>\n            <tr data-row_id=\"152\" class=\"ninja_table_row_2 nt_row_id_152\">\n            <td><strong>Bogus websites:<\/strong>\u00a0 Cyber threat actors are notorious for \u201cspoofing\u201d websites, i.e. creating false copies of legitimate websites to mislead the public. Common approaches involve copying the login screen of popular services (banks, Microsoft Office, Dropbox, social media, e-commerce sites, or even the University) to steal login or financial information, as well as spread misinformation on national or global events with false news articles or ads.<\/td><td>To avoid falling victim to these scams, always use trusted resources for information and VERIFY the service you are trying to log into before entering your password. One way to verify a website is legitimate is to double-check the URL (in the address bar at the top of your web browser). If the URL doesn\u2019t start with \u2018https\u2019 or doesn\u2019t match what you would expect (for example, \u2018www.rutgers.com\u2019 instead of \u2018www.rutgers.edu\u2019), DON\u2019T log in!<\/td>        <\/tr>\n            <tr data-row_id=\"153\" class=\"ninja_table_row_3 nt_row_id_153\">\n            <td><strong>Social media exploits:<\/strong> Social media provides threat actors with a lot of information they can use for social engineering attacks and spreading misinformation. These attempts can include fake news articles, ads, or other messages to influence victims into providing their personal information to purchase products or sign up for services. Threat actors will also utilize social media for bogus crowd funding requests, \u2018romance scams,\u2019 marketplace fraud, and more.<\/td><td>Even if someone on social media appears legitimate, exercise caution when choosing who to interact with online. Cyber threat actors are very savvy and can spoof or compromise legitimate social media accounts for financial exploits. <\/td>        <\/tr>\n            <tr data-row_id=\"172\" class=\"ninja_table_row_4 nt_row_id_172\">\n            <td><strong>Mobile device exploits via texts or apps: <\/strong>Cyber threat actors can utilize links within texts, downloadable files\/images, or legitimate-looking mobile apps to download malware to your device and steal personal and\/or financial information, activate your microphone or camera without permission, or lock your device and demand payment (ransomware).<\/td><td>Clicking on links, saving files\/images, or downloading apps on our mobile devices should never happen without first verifying the source is legitimate. Always double-check the permissions an app requests access to; if a mobile app asks for something unnecessary (like access to your camera or location), reconsider clicking \u2018Allow\u2019! Avoid falling victim to these scams and get updates via trusted sources as outlined in this article. <br \/><br \/><strong>DO NOT<\/strong> click on links sent via text from unsolicited sources.<\/td>        <\/tr>\n            <tr data-row_id=\"154\" class=\"ninja_table_row_5 nt_row_id_154\">\n            <td><strong>Internet of Things (IoT) and \u201cSmart\u201d Devices:<\/strong> When designing and manufacturing \u201csmart\u201d devices, frequently a company\u2019s focus is more on features, less on security. Devices that rely on Bluetooth or your home\u2019s WiFi connection may have security loopholes or vulnerabilities that cyber threat actors can use to launch an attack on your network, either to steal information or conduct reconnaissance for a future social engineering scam.<\/td><td>Always change the default password that come built into a device with a strong, unique password, and enable multi-factor authentication if available. Keep a running inventory of smart devices in your home so you know what is connected to your network at any given time. Regularly update devices with security patches when available, and if you haven\u2019t used a device in a while, consider disconnecting it from your network. Always factory-reset smart devices (if possible) before throwing them away or giving them to others to avoid potential data loss.<\/td>        <\/tr>\n    <\/tbody><!--ninja_tobody_rendering_done-->\n    <\/table>\n    \n    \n    \n<\/div>\n\n<h2><strong>How to report cyber threats<\/strong><\/h2>\n<p>Whether you are working at the University or working\/learning remotely, it is important to report any suspected scams, breaches, or theft to the appropriate parties as soon as possible to avoid additional impact. Learn\u00a0<a href=\"\/incident-detection-and-response\/reporting-suspected-scams-breaches-or-theft\/\">how to report and what actions you should take<\/a>.<\/p>\n<h2><strong>Additional resources<\/strong><\/h2>\n<p>Always utilize approved university IT resources and\/or equipment when conducting university business.<\/p>\n<p>Below is a listing of the various technology resources from Rutgers that should be utilized by faculty, staff and students.<\/p>\n<ul>\n<li><a href=\"\/remote-instruction\/\">Technology Tools for Faculty<\/a><\/li>\n<li><a href=\"\/remote-student-resources\/\">Technology Resources for Students<\/a><\/li>\n<li><a href=\"\/remote-work\/\">Technology Resources for Working Remotely<\/a><\/li>\n<li><a href=\"\/policies\/\">IT Policies<\/a><\/li>\n<li><a href=\"\/incident-detection-and-response\/reporting-suspected-scams-breaches-or-theft\/\">Reporting Suspected Scams, Breaches, or Theft<\/a><\/li>\n<li><a href=\"\/information-security\/\">Information Security Office website<\/a><\/li>\n<li><a href=\"\/information-security\/information-security-compliance-program\/digital-resources\/\">Digital Resources for Information Security Compliance and Awareness<\/a><\/li>\n<\/ul>\n<p><em>*The information on this page was developed by the Office of Information Technology information security team.<\/em><\/p>\n<\/div><!-- f--field f--rich-text -->\n\n    <\/div><!-- c--component c--rich-text -->\n\n    <\/section><!-- cc--component-container cc--section -->\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":257,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"page-category":[],"class_list":["post-4719","page","type-page","status-publish","hentry"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v28.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Cyber Threats and Global Events - Information Security<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/it.rutgers.edu\/information-security\/cyber-threats-and-global-events\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Cyber Threats and Global Events - Information Security\" \/>\n<meta property=\"og:url\" content=\"https:\/\/it.rutgers.edu\/information-security\/cyber-threats-and-global-events\/\" \/>\n<meta property=\"og:site_name\" content=\"Information Security\" \/>\n<meta property=\"article:modified_time\" content=\"2025-12-05T20:00:33+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/it.rutgers.edu\\\/information-security\\\/cyber-threats-and-global-events\\\/\",\"url\":\"https:\\\/\\\/it.rutgers.edu\\\/information-security\\\/cyber-threats-and-global-events\\\/\",\"name\":\"Cyber Threats and Global Events - Information Security\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/it.rutgers.edu\\\/information-security\\\/#website\"},\"datePublished\":\"2025-12-05T20:00:32+00:00\",\"dateModified\":\"2025-12-05T20:00:33+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/it.rutgers.edu\\\/information-security\\\/cyber-threats-and-global-events\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/it.rutgers.edu\\\/information-security\\\/cyber-threats-and-global-events\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/it.rutgers.edu\\\/information-security\\\/cyber-threats-and-global-events\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Information Security\",\"item\":\"https:\\\/\\\/it.rutgers.edu\\\/information-security\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Cyber Threats and Global Events\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/it.rutgers.edu\\\/information-security\\\/#website\",\"url\":\"https:\\\/\\\/it.rutgers.edu\\\/information-security\\\/\",\"name\":\"Information Security\",\"description\":\"A Rutgers IT Service\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/it.rutgers.edu\\\/information-security\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Cyber Threats and Global Events - Information Security","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/it.rutgers.edu\/information-security\/cyber-threats-and-global-events\/","og_locale":"en_US","og_type":"article","og_title":"Cyber Threats and Global Events - Information Security","og_url":"https:\/\/it.rutgers.edu\/information-security\/cyber-threats-and-global-events\/","og_site_name":"Information Security","article_modified_time":"2025-12-05T20:00:33+00:00","twitter_card":"summary_large_image","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/it.rutgers.edu\/information-security\/cyber-threats-and-global-events\/","url":"https:\/\/it.rutgers.edu\/information-security\/cyber-threats-and-global-events\/","name":"Cyber Threats and Global Events - Information Security","isPartOf":{"@id":"https:\/\/it.rutgers.edu\/information-security\/#website"},"datePublished":"2025-12-05T20:00:32+00:00","dateModified":"2025-12-05T20:00:33+00:00","breadcrumb":{"@id":"https:\/\/it.rutgers.edu\/information-security\/cyber-threats-and-global-events\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/it.rutgers.edu\/information-security\/cyber-threats-and-global-events\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/it.rutgers.edu\/information-security\/cyber-threats-and-global-events\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Information Security","item":"https:\/\/it.rutgers.edu\/information-security\/"},{"@type":"ListItem","position":2,"name":"Cyber Threats and Global Events"}]},{"@type":"WebSite","@id":"https:\/\/it.rutgers.edu\/information-security\/#website","url":"https:\/\/it.rutgers.edu\/information-security\/","name":"Information Security","description":"A Rutgers IT Service","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/it.rutgers.edu\/information-security\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/it.rutgers.edu\/information-security\/wp-json\/wp\/v2\/pages\/4719","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/it.rutgers.edu\/information-security\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/it.rutgers.edu\/information-security\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/it.rutgers.edu\/information-security\/wp-json\/wp\/v2\/users\/257"}],"replies":[{"embeddable":true,"href":"https:\/\/it.rutgers.edu\/information-security\/wp-json\/wp\/v2\/comments?post=4719"}],"version-history":[{"count":2,"href":"https:\/\/it.rutgers.edu\/information-security\/wp-json\/wp\/v2\/pages\/4719\/revisions"}],"predecessor-version":[{"id":4721,"href":"https:\/\/it.rutgers.edu\/information-security\/wp-json\/wp\/v2\/pages\/4719\/revisions\/4721"}],"wp:attachment":[{"href":"https:\/\/it.rutgers.edu\/information-security\/wp-json\/wp\/v2\/media?parent=4719"}],"wp:term":[{"taxonomy":"page-category","embeddable":true,"href":"https:\/\/it.rutgers.edu\/information-security\/wp-json\/wp\/v2\/page-category?post=4719"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}