Security News and Updates
Ransomeware AlertAs you may be aware, many organizations across the world have been impacted by the ransomware known as Petrwrap, Petya or similar names. The exploit is similar to the Wannacry outbreak from May 2017. At this time, none of the infections reported have been introduced within our internal US systems. Altice USA employs best practices for endpoint protection, vulnerability management, and perimeter defense; the following practices have been effective in preventing this malware on Altice USA's (Cablevision and Suddenlink) networks:
- Endpoint protection (e.g., antiviral software) assures software for detecting malware is deployed and up dated, including updates to specifically detect the reported ransomware.
- Vulnerability management ensures networks and systems are inspected for vulnerabilities and remediated through patching at regular intervals. Our systems have been updated with the Microsoft-recommended critical patch for protection against the reported ransomware.
- Perimeter defense restricts network traffic including a specific policy to block Windows Systems traffic from external sources therefore preventing the spread of the malicious ransomware.
Our security operations continue to monitor for indications of the malware and are staying connected with our security partners and federal agencies for situation updates. While we certainly have taken additional action to protect both our network and that of our customers, it remains incumbent on our customers to take similar action to protect their own networks.
Security Alert: Uninstall QuickTime for Windows
According to the U.S. Department of Homeland Security, it was recently discovered that, if a customer has QuickTime for Microsoft Windows installed on their PC, it could allow online attackers to easily infect their computer when browsing compromised or malicious websites. QuickTime for Windows is an Apple product, and Apple is no longer providing support or security fixes for it. Therefore, security software companies and the U.S. Department of Homeland Security recommend that customers uninstall QuickTime for Windows to protect themselves from potential online threats. Customers with QuickTime for Mac are not affected by this issue.
Many web browsers, including Internet Explorer, Mozilla Firefox, and Google Chrome, provide media player functionality similar to that of QuickTime and can serve as alternatives going forward.
For more information, or to learn how to uninstall QuickTime for Windows, please visit:
Be aware of seasonal IRS scams
As we head into a new calendar year and approach the common April 15th filing deadline for income taxes, Optimum customers should be aware that scammers have continued to evolve tax season-related schemes. The U.S. Government's Internal Revenue Service (IRS) does not solicit payments from people via email or websites. The IRS does not accept payments on pre-paid debit cards (such as GreenDot or similar).
If you have received a phone call or email claiming to be from the U.S. Government or the IRS that requests you to make a payment using a pre-paid debit card, please be aware that this request is fraudulent. Do not follow the links provided in these e-mails. Callers that ask you to visit websites or type commands into your computer could be attempting to infect your computer with malware that could allow the scammers to access your computer, render your files (documents, photos, etc.) inaccessible, detect the passwords you type, and commit other fraudulent activities.
As your security is very important to us, we encourage you to:
- Be wary of unsolicited calls and emails asking you for payments, especially using pre-paid debit cards.
- Be wary of telephone calls and emails requesting payment or personal information by individuals claiming to be from government agencies.
- Use a quality security suite that includes anti-malware, browser protection, and a password manager. Optimum offers internet protection powered by McAfee, at no cost to Optimum Online customers, that provides these features on up to 20 devices. Visit http://www.optimum.net/protect for more information and to download the software.
For more information about IRS-related and other phishing schemes, visit the following:https://malwaretips.com/blogs/green-dot-moneypak-virus/
Your Computer Is Infected Phone Scam
At Optimum, the security of your computer and personal information is our priority, so we're advising our customers to be aware of a phone scam that is targeting computer users. The scam usually begins with a phone call from someone claiming to be a tech support expert from Microsoft, Optimum or some other well-known technology company. The "expert" claims that your computer is infected with a virus or is sending error messages. In order to fix the "problem," the scammer asks for remote access to your computer to check for threats. Once the scammer is given access, they not only have access to all your information, they also seek a fee for the "service" provided.
Optimum never makes unsolicited phone calls to our customers. If you get a call from someone who claims to be tech support, hang up and call Optimum directly using the Customer Support number listed here. Please keep in mind that web search or directory service for the Optimum Customer Support phone number might yield fraudulent results, which could lead you contacting a scammer unwittingly. For your safety, please make this page your first stop to find all the correct, secure and verified contact information to reach us 24 hours a day.
Thanks for being an Optimum customer.
Protecting your email
Tips To Protect Your Information
Here are a few tips to help identify suspicious e-mails and protect your information:
- Generally, if you receive a suspicious e-mail from a financial institution or online retailer, do nothing. Do not reply to the e-mail, or click on any of the links. Do not give any personal details to the sender.
- Do not provide personal information via e-mail, unless you are certain of a person's authority to have the information.
- If you get an e-mail that warns you, with little or no notice, that your account will be shut down unless you reconfirm your billing information, do not reply or click on any link in the e-mail. Instead, contact the company cited in the e-mail using a telephone number or web site address known to be genuine.
- Avoid e-mailing personal and financial information. Before submitting financial information through a web site, look for the "lock" icon on the browser's status bar. It signals that your information is secure during transmission.
- Review credit card and bank account statements as soon as you receive them to determine whether there are any unauthorized charges. If your statement is late by more than a couple of days, call your credit card company or bank to confirm your billing address and account balances.
- Be suspicious of unsolicited phone calls, visits, or e-mail messages from individuals asking about employees or other internal information. If an unknown individual claims to be from a legitimate organization, attempt to verify his or her identity directly with the company.
- Pay attention to the URL of a web site. Malicious web sites may look identical to a legitimate site, but the URL may use a variation in spelling or a different domain (e.g., .com vs. .net). Be aware that the true URL of a link is often masked in the e-mail text, so never click on hyperlinks within e-mails. Instead, copy and paste them into the browser.
- If you're unsure whether an e-mail request is legitimate, attempt to verify it by contacting the company directly. Do not use contact information provided on a web site connected to the request; instead, check previous statements for contact information.
Notice About Phishing Scams
It has come to our attention that some of our customers may have recently received an e-mail falsely representing that it was from Optimum Online, requesting customers to reply with their Optimum Online password. E-mails such as this, referred to as "phishing" e-mails, typically attempt to fraudulently acquire sensitive information, such as usernames, passwords, credit card details or other personal information, by claiming such information is required for account verification, to prevent account termination or some other course of action in connection with your account.
As a policy, Optimum Online will never contact customers via e-mail requesting personal information or passwords.
If you have already responded to an e-mail of this nature and released your Optimum Online password or other personal information, you should consider the information compromised. You may change your e-mail password online using the Reset password page. You may also call your local Customer Support Center.
Latest Phishing Scams
Sent: September 20, 2019 at 1:37 PM EDT
From: Optimum (firstname.lastname@example.org)
Subject: Warning: Your Optimum account will be disabled.
Dear Valued Customer
Your Optimum account have been temporarily locked because we noticed multiple invalid login attempts of you Optimum account from an unknown device.
Kindly sign in here to verify your identity and get your account umlocked.
We look forward to hearing from you,
EVP, Customer Experience & Regional Market Strategy
Sent: September 19, 2019 at 5:11 PM EDT
From: Admin (email@example.com)
Subject: Your 5 (Five) incoming Email is Pending
Dear Email User,
Due to recent Maintenance on our servers Your 5 (Five) incoming Emails are on hold.
Please validate your account below to retrieve your e-mails
Click Here and Log In To Retrieve Your Email.
We are sorry for the inconvenient.
Sent: September 19, 2019 at 10:22 PM EDT
From: Optimum Online (firstname.lastname@example.org)
Subject: following activities on your account ******,
Dear Value Customer, ******,
We have made some changes to our privacy page.
We regularly review our operations and we've created to protect confidential information.
Kindly update all the necessary information to avoid temporarily suspended.
Please click "Account Verification" and follow the steps.
Sent: September 19, 2019 at 1:36 PM EDT
From: Optimum (email@example.com)
Subject: Urgent Security Update
Dear Optimum Customer,
In our continuing effort to keep your Optimum email account safe, we habe implemented a new system security upgrade that will affect all Optimum customers. These changes will offer new features and increase account security. To enable the new systerms security upgrade on your Optimum profile, you are required to sign into your account with the provided secure link below and the upgrade take effect as you do so.
CLICK HERE TO ENABLE THE UPGRADE
We apologize for any inconvenience this might cause you.
Thank you for being an Optimum customer.
Sent: September 19, 2019 at 8:10 AM EDT
From: OPTONLINE.NET Notifications (firstname.lastname@example.org)
Subject: Pending Messages
You have 12 delayed messages from Wednesday, 18th September 2019
Your action is required to release E-mails,
Release Emails Here
Mail System Administrator
Sent: September 18, 2019 at 8:13 AM EDT
From: OPTIIMUM (email@example.com)
Subject: Please Verify Your OPTIMUM Account
There was multiple attempt to login into your Optimum account from an unknown location. In order to make your account secure, we blocked all outgoing email from your Optimum account. To reinstate your account please login below and verify your account.
LOGIN TO OPTIMUM ACCOUNT
Sent: September 18, 2019 at 3:41 PM EDT
From: Optimum Online (mailto:firstname.lastname@example.org)
Dear Valued Customer:
Your Optimum account have been temporarirly locked because we noticed multiple invalid login attempts of your Optimum account from an unkoown device.
Kindly sign in here to verify your identity and get your account unlocked.
We look forward to hearing from you,
EVP, Customer Experience & Regional Market Strategy
Sent: September 17, 2019 at 3:02 AM EDT
From: "Email Helpdesk" (email@example.com)
Subject: Account Information
At Optonline, we look for the safety of your account.
Recently, we have observed unusual activities in your Email, your account will be suspended in 24 hours of receipt of this notification.
Recent Activity: Your account is being accessed from an unkown location. Your personal details are at risk.
Browser: Mozilla Firefox
IP Adress: 126.96.36.199
If you were unaware of tbhis activity and want to contimnue using this account, you can contact us on our helpline numbers 1-844-780-0255
Reference Number: N17SPT19711
Please ignore this email if you no longer wish to use this account.
Please note that you will lose all of your contacts, emails and attachments if the account is suspended.
Account Support Team
Sent: September 11, 2019 at 12:41 PM EDT
From: Optimum.net (firstname.lastname@example.org)
Subject: ACCOUNT ERROR DETECTED (FIX NOW)
Due to some errors in your e-mail *****@optimum.net in response to a complaint received by your e-mail administrator, optimum.net server is holding (8) undelivered incoming contact messages.
Your action is required to release E-mails,
Kindly FIX THE PROBLEM HERE with your e-mail administrator to avoid missing important mails.
Email Support Team
Sent: July 2, 2019 at 3:08 AM EDT
Subject: MAIL MALFUNCTION NOTICE
optonline.net I.T DEPARTMENT
Please confirm your email account (******)@optonline.net To avoid email termination. Kindly click the link below to confirm your email address
Confirm Your Email
***DO NOT IGNORE THIS PROCESS TO AVOID LOSS OF EMAIL***
Sent: July 1, 2019 at 7:28 PM EDT
Subject: Billing Error
This is a final reminder that the balance on your account is now due and we are currently unable to charge your primary payment method, login your billing center and update your billing information now to avoid interruption of your email account services.
Login & Pay Now
Sent: June 30, 2019 at 12:05 PM EDT
From: Admin Optimum Service
Subject: optimum.net Requires Urgent Mail Update Now!
Mail Update Service
Reconfirm Your optimum.net Mail
Dear - (******)
You have some pending mails on (******)@optonline.net.
You have 24hours to perform this action from below portal.
Reconfirm Account Now
Optimum Mail System
Sent: June 30, 2019 at 5:03 PM EDT
From: Optimum Online
The current pre-authorized payment information we have on file did not allow for payment of your balance. Therefore, the transaction was declined.
To make changes to your payment information or update new banking or credit card details, please visit our Self Serve site -
We appreciate your business and ask that you update your payment details or arrange payment of the outstanding balance as soon as possible.
Thanks very much
Sent: June 29, 2019 at 4:00 PM EDT
Subject: [Reminder] Account Email (******)@optonline.net System Update Today
We received request from you to shutdown this email account (******)@optonline.net. This request will be processed shortly. If you did not authorize this action kindly cancel now if not disregard this message.
Thanks for taking additional steps to keep your account safe.
Sent: June 28, 2019 at 11:55 AM EDT
From: Optonline Support
Subject: Email Quarantine: You have. 9 new emails
Optonline has prevented the delivery of 9 new emails to your inbox as of 06/28/2019 03:55:27 pm. because it identified these messages as spam. You can review these here and choose what happens to them. You can also get more information about quarantined messages by going to the Quarantine page in the Security and Compliance Center. You'll need to provide your work or school account to log in.
Emails will be deleted automatically after 14 days. You can change the frequency of these notifications within your email quarantine portal.
Sent: June 26, 2019 at 1:59 PM EDT
Subject: Warning: Your Email account Will Be Deactivared in Next 48 Hours
Account Shutdown Notification
This is to notify you that we received an SSL Server Instruction from our System Administrator instructing us to shutdown your account as it has been listed as Outdated Email and has not been properly verified.
If you want to retain your Email Account with our Email Server, then we strongly advice that you cancel this command now else your email will be shutdown.
Click here to keep your account safe!
If you fail to verify your account with 48hrs, your email will be shutdown.
Hello , As you may have noticed , I sent this email from your email account
(if you didn 't see , check the from email id) . In other words , I have fullccess to your email account . I infected you with a malware a few months back when you visited an adult site, and since then, I have been observing your actions.
The malware gave me full access and control over your system, meaning , I can see everything on your creen, turn on your camera or microphon and you won' t even notice about it .
I also have access to all your contacts.
Why your antivirus did not detect malware It' s simple. My malware updates its signature every 10 minutes, and there is nothing your antivirus can do about it .
I made a video showing both you (through your webcam ) and the video you were watching (on the screen ) while satisfying yourself.
With one click, I can send this video to all your contacts (email, social network, and messengers you use ).
You can prevent me from doing this .
To stop me , transfer $996 to my bitcoin address .
If you do not know how to do this, Google - "Buy Bitcoin ".
My bitcoin address ( BT C Wallet ) is 1LBsLobwX1CnSxBeYaRUKVJgRa9XGEmkTT
After receiving the payment, I will delete the video , and you will never hear from me again.
You have 48 hours to pay. Since I already have access to your system I now know that you have read this email, so your countdown has beg un .
Filing a complaint will not do any good because this email cannot be tracked .
I have not made any mistakes .
If I find that you have shared this message with someone else , I will immediately send the video to all of your contacts.
03/12: Mail Quota Limit
Sent: March 12, 2019 1:29 AM
Subject: Mail Quota Limit
Notify about your mail quota limit.
This is notify that your mail-storage is close to exceeding its storage limit provided by the admin.
You may experience some difficulty any moment by not able to send or receiving new mails.
Please sign-in to re-active your mail quota limit now by the admin.
Thank you from Optimum
Sent: March 5, 2019 10:54:29 PM EST
Your Optimum account subscription has expired and your email is about to be suspended, confirm your account billing to keep active. Click the secured link below to confirm
© 2019 CSC Holdings, LLC. All rights reserved.
02/21: Payment Information
Sent: February 21, 2019 6:55 PM
Subject: Payment Information
Dear Optimum Customer (******)@optonline.net,
The current pre-authorized information we have on file did not allow or payment of your balance. Therefore, the transaction was declined.
To make changes to your payment information or to update new banking or credit card details, please visit our Self Serve site-
We appreciate your business and ask that you update your paymemnt details or arrange payment of the outstanding balance as soon as possible.
Thanks very much,
© 2019 CSC Holdings, LLC.
02/14: Closing Account
Sent: February 14, 2019 11:34:27 AM
Subject: Closing Account
We received a request from you to shutdown this account (******)@optonline.net. This request will be processed shortly.
If you did not authorize this action kindly cancel now if not disregard this message.
Thanks for taking additional steps to keep your account safe.
01/29: Optimum Account
Sent: January 29, 2019 12:02:52 PM EST
Subject: Optimum Account
This is a final reminder that the balance on you account is now due and we are currently unable to charge your primary payment method, login your billing center and update your billing information now to avoid interruption of your email account services.
Login & Pay Now
01/17: Email Account Update
Sent: January 17, 2019 11:12:53 AM EST
Subject: Email Account Update
Optimum. email account update
We want to let you know that our email policy changed on January 13, 2019.
Your Optimum Online email account will be affected by the change unless you confirm your email account until January 19, 2019. Email accounts that have not been confirm will be deleted and the contents cannot be recovered. To keep your Optimum Online email account(s) from becoming inactive, simply click here to log in to each Optimum Online email account or the email client you use to check Optimum Online email. Any Optimum Online email account that has not been accessed will be permanently deleted.
Confirm your Optimum email account click here.
Frequently asked questions
Q: Why is the policy changing?
A: we are in the process of moving our customers to a new upgraded email platform later this year. In order to best serve our Optimum Online subscribers, we feel that implementing this change will optimize performance. It's important to note that an Optimum Online subscriber will always have the ability to create a new mailbox at any time.
Q: When does this email policy change take effect?
A: The policy change regarding Optimum Online email accounts goes into effect on January 19, 2019, but only applies to Optimum Online email accounts that have not been confirmed.
01/16: Deactivate Email
Sent: January 16, 2019 7:28 AM
Subject: Deactivate Email
Our record inidcates that you recently made a request to deactivate email (******)@optonline.net, and this request will be processed shortly.
If this request was made accidently and you have no knowledge of it, you are advised to cancel request now
However, if you do not cancel this request, then your account will be de-activated shortly, and all your email data will be lost permanently.
optonline.net provider © 2019 All rights reserved
This message is auto-generated from e-mail security server, and replies sent to this email cannot be delivered.
This email is meant for: (******)@optonline.net
01/08: Mailbox Quota Storage
Sent: January 8, 2019 9:37:05 AM EST
From: System Administrator
Subject: Mailbox Quota Storage
Running low on mail quota storage.
Don't loose important messages due to low mailbox storage, upgrade your optonline.net mailbox quota storage now.
Click here to upgrade
Note: Failure to upgrade will result in you loosing important messages and data.
Thanks for our cooperation.
Source: optonline.net IT Security Support Team.