Monthly Archives: January 2017

Russian Hacking Panel

The University of Pittsburgh will be hosting a panel on Russian Hacking on Thursday, February 2nd, from 1:30pm to 4:30pm. At this event, several panelists will discuss a variety of topics, including: Russian activities in cyberspace, U.S. and Russian views on cyber tool usage, U.S. response to Russian activities, and Russia’s possible effect on the U.S. presidential election.

There will four panelists at this event:

  • Andrei Soldatov, a Russian investigative journalist and security services expert
  • Ellen Nakashima, a national security reporter for The Washington Post
  • Luke Dembosky, a former Deputy District Attorney General for National Security and former U.S. Department of Justice representative at the U.S. Embassy in Moscow
  • Keith Mularski, a Supervisory Special Agent for the FBI in Pittsburgh

The event will be streamed live at law.pitt.edu/cybertalk. Students can only attend the event at the University of Pittsburgh if they have already registered for it. Registration for the event closed yesterday, January 30th. However, everyone is welcome to watch the event live through the link above.

For more information, there is a flyer posted below.

Russian Hacking Panel Flyer

Alert: Employment Scams Targeting College Students

The Internet Crime Complaint Center (IC3) has issued an alert on employment scams that target college students.  The scam involves phony job opportunities that may be advertised via college employment websites or sent via email (targeting bank accounts).  For additional information and examples of phony emails, please see here.

Graduate Assistant position for Facilities Management

The Facilities Department at RMU is looking for two Data Analyst Graduate Assistants to work starting this semester. The Graduate Assistant would assist with measuring the effectiveness of strategic initiatives within Maintenance and Operations. This is a twelve month position for twenty hours a week. The position includes a monthly stipend and a tuition fee waiver.

The Graduate Assistant’s responsibilities will include: collaborating with facility professionals to develop good assessment and planning practices, managing multiple data-sets and projects simultaneously; assisting with design of assessment projects, assisting with implementation of data collection processes; cleaning/managing data files and conducting statistical analyses; proofreading and editing reports for statistical errors and inconsistencies.

Qualifications:

  • Graduate Student currently enrolled in the semester they are working as a Graduate Assistant
  • Minimum GPA of 3.5
  • Technical skills: Software applications and Database management
  • Strong interpersonal skills
  • Excellent communication skills both written and verbal
  • Ability to work independently and collaboratively

To apply for this position, contact Michael Yuhas at yuhas@rmu.edu and send him a letter of interest and resume. Accepted applicants can begin work as early as this semester.

Don’t fall for this ‘highly effective’ Gmail scam

For several months, a phishing scam has been tricking Gmail users into sharing their passwords. Recently, the security company WordFence released an alert about this scam.

The attack starts when the attacker sends an email to the victim’s Gmail account. The email address of the “sender” usually belongs to someone that the victim knows; however, the sender’s account has already been compromised by the attacker. The email contains what appears to be an image for the victim to click on.

When the victim clicks on the “image”, they are taken to a new tab which prompts for their Gmail account information. Once the victim signs in on this page, their account is compromised. The attacker then has access to the victim’s emails and personal documents. Once the attacker has access to the victim’s account, they will use this account to send the scam to more victims.

What makes this scam “highly effective” is that it is uses email addresses of people that the victim knows. Also, the fake Gmail sign-in page appears to be legitimate, containing the Google logo and normal entry fields for username and password.

In order to prevent yourself from becoming a victim of this scam, it is important to note the following:

  • Although the false attachment contains “accounts.google.com” in its URL, it also has “data:text/htm” at the beginning, which is not found on a normal Gmail URL.
  • When signing into any service, you should check the browser bar to verify the protocol and hostname. The URL should begin with “https:” and there should be a green lock icon next to the URL.
  • Gmail users can also enable two-factor authentication or “2-step verification” to make their account more secure.

For more information: Don’t fall for this ‘highly effective’ Gmail scam and WordFence Article

Software Developer Internship at Management Science Associates

Management Science Associates, Inc. (MSA) is a diversified information management company that for over half a century has given market leaders the competitive edge in data management, analytics and technology. We are seeking a Software Developer I (Intern) to join the MSA Media division which has been offering client-focused technology and analytic solutions to the media/cable television industry since the early 1980s.

Responsibilities:
* Developing new and existing applications which are integrated with database technologies
* Work under the direct supervision of Senior Software Developers and Software Engineers to perform maintenance on existing software products
* Independently work on all SDLC phases
* Work with Software Engineering staff to understand and learn to resolve software problems
* Research third-party ingredient technologies to determine upgrade/migration paths and impacts to current frameworks
* Participate in user interface design

Required Skills:
* Pursuing a four-year degree or MS degree in Computer Science/Information Technology, Computer/Electrical Engineering or equivalent
* Knowledge of relational databases, Structured Query Language (SQL)
* Strong communication and technical skills
* Ability to work on a team towards a common goal
* Previous exposure to, or development experience with, C# or Java will be a plus
* Knowledge of Data Warehousing, big data strategies, and Hadoop Ecosystem will be a plus
* Unix and Linux scripting, shells, and tools will be a plus

Application Instructions:
Click here or see :
http://www.msa.com/inside/careers/index.htm

National Cyber Forensics & Training Alliance (NCFTA) Summer Internship Program

Who we are:

The National Cyber-Forensics & Training Alliance (NCFTA) is a Pittsburgh based globally focused non-profit corporation committed to identifying, mitigating and neutralizing cyber crime threats. The NCFTA operates by conducting real time information sharing by analysis and subject matter experts in the public, private and academic sectors. Through these partnerships, the NCFTA proactively identifies cyber threats in order to help its partners take preventive measures to mitigate and neutralize those threats. For more information see http://www.ncfta.net.

About the Program:

The NCFTA offers talented students an innovative work experience in a growing sector that will help them enhance their professional development and academic goals. Our program offers paid internships for undergraduate and graduate degree students. It is an intensive 12-week program that gives rising college seniors or graduate level students the opportunity to work in areas such as intellectual property fraud, financial fraud, and malware and cyber threats in order to build knowledge and skills in the intelligence analysis field. The student will receive training and be part of the team from day one. They will be assigned to a manager and mentor to enable them to quickly learn and acclimate. During their first few weeks on the team, they will participate in the internship orientation to become familiar with the NCFTA’s various resources, policies and procedures.

Role of the Intern:

Selected candidates will work on various organizational program initiatives. Duties will focus on conducting research and data collection using various tools and applications as well as proactive research in open sources to produce a finished product for dissemination. The intern will engage in collaboration with NCFTA partners and peers and be expected to participate in program meetings.

Internships with our Malware & Cyber Threats Program are more technical in nature and, as such, applicants with a sound technical background are desired. These duties may include writing scripts to automate processes (e.g. Python & shell/bash scripts), reviewing and analyzing malicious code (e.g. C, C++, VB.NET, Assembly, Java), and creating databases (MySQL, MS SQLServer, Postgress). Students with working knowledge of Mac OSX may have an opportunity to work on special projects.

Qualifications:

Required Qualifications
• Must be legally authorized to work in the United States and be eligible for a U.S. Government security clearance
• Major studies in areas of consideration: International Affairs/Politics/Relations; Intelligence/Security Studies; Computer Science; Information Security; Business Intelligence or related fields. Other majors are considered on a case by case basis.
• Minimum GPA of 3.0
• Excellent writing skills and strong analytical thinking
• Proficiency in Microsoft Office required
• Arabic, Turkish, Russian, Chinese and Eastern European language skills desirable but not required
• Extensive experience with computers and networking highly preferred but not required

Candidate Skills:

While applicants come from a range of academic backgrounds, the most competitive applicants also should possess the following:
• Flexibility and adaptability
• Take initiative and be self-motivated
• Work well with others and have strong interpersonal abilities
• Good judgment and decision-making skills

Location/Date of Internship:

Internships are available in Pittsburgh, PA; Summer internship program will start approximately June 1, 2017

Application Instructions:
Resumes should be directed to: HumanResources@ncfta.net.

Please include:
• Your resume
• A cover letter in which you specify your qualifications for the position and address why you want to intern as an analyst
• Unofficial transcript

Database Administration Intern – Federated Investors

MAJOR DUTIES:
• May work with both SQL and / or Oracle DBA teams.
• Assist with maintaining department documentation on SharePoint
• Write OEM monitoring scripts
• Fulfill access requests as identified in ESS
• Perform audit related tasks as assigned
• Complete support work in SSRS reporting environment
• Manage simple turnovers for system changes
• Involvement in basic project work.

HOURS/LOCATION:
• Summer Internship
• Warrendale Location – Warrendale, PA 15086

EXPLANATORY COMMENTS:
• Good analytical skills with an emphasis on attention to detail
• Strong written and oral communication skills
• Ability to work effectively in a team environment

Federated Investors, Inc. offers a competitive salary and benefits package along with a professional environment.
Qualifications:

POSITION SPECIFICATIONS:
• In pursuit of a two or four year degree related to Computer Science, Information Technology or comparable degree required.
• 3.0 QPA preferred
• Experience with Microsoft Windows and Office 2010 products required
• Course work or hands-on experience in database management preferred

For more information, see Colonial Trak.