Ransomware and Phishing

A large coordinated global ransomware attack was launched in mid-May and impacted thousands of public and private sector organizations across 150 countries. Ransomware encrypts files and demands that users pay a ransom to receive a key that unlocks the files. Lehman uses a variety of tools to protect PCs connected to the campus network. However, no technology is foolproof, and members of the Lehman community are critical to preventing IT threats that could cause disruptions. Here are some recommended measures you can take:

  • * To ensure that your home computers and mobile devices are protected, keep operating systems and security software up-to-date. Windows users should regularly run the Windows Update service and anti-virus scans. Back-up your critical data on an encrypted external hard drive and then physically disconnect it from the PC, or use an encrypted back-up service.
  • * Never reply to emails that ask for personal information – these are likely to be fraudulent. Lehman will never ask you to submit personal information by email.
  • * Download software – especially free software – from sites you know and trust.
  • * Review email senders, links and attachments to assess their authenticity. If you receive a security warning, do not click the “enable macro” link.
  • * Choose complex but memorable passwords and keep them secure. Recommended methods to select passwords can be found on the Lehman Password Manager site.
  • * Take CUNY’s 30-minute online IT security awareness course at