Reader Beware!
There has been a number of recent email phishing attempts directed at the Pace community, which make use of .htm and/or .html attachments. The subjects vary, but can be related to payroll, direct deposit, pending file transfers, job opportunities, etc. As with most spam/phishing attempts, the email message claims there’s “important” information that you need to review, or conveys a sense of urgency to try to get you to act quickly. Clicking on the attachment could allow an attacker to gain access to passwords or other sensitive information found on your computer or device.
Protect Yourself!
Never click on any links or attachments in emails that you’re not expecting, or which may appear suspicious. If you know the alleged sender, you can reach out separately to confirm whether they actually sent the email to you.
Blocking HTM/HTML File Attachments
To help mitigate the risks posed by these spam/phishing emails, the Information Security Office (ISO) is working with Microsoft to block all .htm and .html attachments from incoming messages to the University’s email system. Any Pace faculty/staff who may receive legitimate .htm and/or .html file attachments as part of their job function should email ISO@pace.edu and provide the sender’s account and the business purpose (need) for receiving such attachments. ISO staff will review and follow up.
To report any suspicious emails, or if you have any questions, Please email the Information Security Office at ISO@pace.edu, or contact the ITS Help Desk at (914) 773-3333 (pacehelpdesk@pace.edu).