Campus-wide malware attack impacting domain login issues and wireless access

Campus-wide malware attack impacting domain login issues and wireless access. - 2018-02-21

Starting Thursday, February 15, NJIT has been experiencing a campus-wide malware attack. Some faculty and staff have experienced intermittent problems connecting to the wireless network (NJITsecure) or logging into their computers (NJITDM domain).

These interruptions were caused by computers that became infected by malware (QAKBOT) after users clicked on links in phishing emails. QAKBOT targets organizations' active directory (AD) accounts, preventing uninfected users from logging in.

NJIT is in the process of pushing out the latest version of anti-virus updates, which will be installed transparently on your computer.

Please be suspicious of any links within emails and remember that attackers frequently impersonate NJIT employees to encourage victims to click links.

If you think your computer may be infected or if you have any questions, please contact the IST Service Desk at 973-596-2900 or visit help.njit.edu.

Suspicious emails can be reported to abuse@njit.edu. In your report, please include the email header of the suspicious email. Instructions for finding an email header can be found here.

Last Updated: November 9, 2018