2-25-26: Security Advisory - Increased Phishing and Scam Activity

TO: John Jay College Community
FROM: Joseph Laub, Chief Information Officer
DATE: February 25, 2026
RE:  Security Advisory - Increased Phishing and Scam Activity

We have observed an increase in phishing and scam email targeting our community. These fraudulent messages are designed to deceive you into clicking on links, opening attachments, or providing sensitive information such as usernames, passwords, or banking details. To help protect yourself, it is essential to recognize these threats and take precautionary steps. To assist in identifying suspicious email, all email received from off-campus sources include a warning banner. 

Additionally, the John Jay Department of Information Technology (DoIT) recommends you follow these security practices:

1. Take the CUNY Cybersecurity Training available on Brightspace under courses -> compliance to increase you awareness of these threats.
2. Avoid clicking on suspicious links in email or text as they may lead to fraudulent websites or install harmful software. If you receive such a message, please report it to helpdesk@jjay.cuny.edu so DoIT can take appropriate action.
3. Regularly update software on computers and mobile devices. Updates often include critical security improvements.
4. Restart Your Mobile Device on a weekly basis. This helps clear malicious software that may be running. 
5. Keep your anti-virus and malware protection programs up to date to safeguard against threats.
6. Enable your computer's firewall to help block unauthorized access.
7. Use strong, unique passwords and update them regularly to enhance your security.
8. Never share sensitive information like bank account or gift card numbers over the phone, in an email, or text DMs with unverified individuals.

For further assistance, please contact the DoIT Helpdesk at 212-237-8200 or email helpdesk@jjay.cuny.edu.