Page 29 - NYS_ESS_11-2023
P. 29
IV. John Abruzzo – Long Island has been discussing an exchange,
where members may take a map out, but have to put one back in. We have recently been made aware of email scams
V. Don Stedge – Delaware Hudson – July 15th they held their outing targeting our association. We wanted to inform you of a
at a Renegades minor league game. Close to 50 people attended. common cyber-attack that everyone should be aware of
Trying to resurrect a pamphlet on “how to read a survey”. called “phishing”.
VI. Jason Peterson – Eastern also viewed the 2nd Showing webinar. “Phishing” is the most common type of cyber-attack that
Enjoyed a good turnout. affects organizations like ours. Phishing attacks can take
VII. Saeid Jalilvand – City – looking for new members. many forms, but they all share a common goal – getting
VIII. Tim Coyer – Central – met last night. Their guest speaker was a you to share sensitive information such as login credentials,
credit card information, or bank account details.
financial consultant. Had a great turnout.
IX. Bill Eggers – Discussed pamphlets previously discussed by Don Although we maintain controls to help protect our
networks and computers from cyber threats, it’s important
Stedge. Amber showed some pamphlets that are available on the everyone is on the look for suspicious emails.
NYSAPLS website. Bill mentioned that the Education Committee is
meeting with the Shaw Fund Course Reviewers and Eric Greppo of We’ve outlined a few different types of phishing attacks to
SBELSG to discuss course review protocols. We’d like SBELSG to watch out for:
allow approval of business courses. Will also discuss the new regs • Phishing: In this type of attack, hackers impersonate
adopted by State Ed regarding CEU’s. a real company to obtain your login credentials. For
X. Glenn Watson – discussed an analogy – that the principals of example, they could send an e-mail asking you to
verify your account details with a link that takes you to
accounting audit are similar to conducting a survey. an imposter login screen that delivers your information
XI. Nicole Kalicicki – Mid-Hudson – also attended last week’s 2nd directly to the attackers.
Showing webinar. Planning a fall social event at the end of • Spear Phishing: Spear phishing is a more
September. sophisticated phishing attack that includes customized
XII. Amber’s daughter is starting kindergarten! information that makes the attacker seem like a
legitimate source. They may use a familiar name and
XIII. Scott Gillis – Nassau Suffolk – summer social was held. Their refer to NYSAPLS or your local Regional in the e-mail
general membership meeting is next month. The NYSAPLS to trick you into thinking they have a connection
Conference committee will be attending to review the 2024 to you, making you more likely to click a link or
conference duties. Updating their bylaws. attachment that they provide.
XIV. Jeremy Thompson – reminded directors to forward their constitution • Whaling: Whaling is a popular ploy aimed at getting
and bylaws to Amber. 13 students are enrolled in the surveying tech you to transfer money or send sensitive information
to an attacker via email by impersonating a real
program at the Ranger School. If you want to interview a student for NYSAPLS or Regional officer or board member. Using
hiring, email Jeremy at jthomp24@esf.edu . a fake domain that appears similar to ours or the
XV. Upcoming Board Meetings regional’s, they look like normal emails from people
• Executive Board, Thursday October 19, 9:00am – Video Conference Call you know and ask you for sensitive information
(including usernames and passwords).
• Board of Directors, Friday, November 17, 2:00pm – Video Conference Call
Best Practices to Avoid Phishing Schemes
• Executive Board, Thursday December 14, 9:00am – Video Conference Call
Do not click on links or attachments from senders that you
• Executive Board, Thursday January 11, 9:00am – Video Conference Call do not recognize.
• Board of Directors, Tuesday January 16, 6:00pm – Turning Stone • Do not provide sensitive personal information (like
Without objection the meeting was adjourned at 10:04 p.m. usernames and passwords) over email.
• Watch for email senders that use suspicious or
Respectfully submitted: misleading domain names.
Scott B. Allen, LS – Secretary How to Report a Phishing Scheme
Forward any phishing attempts to the following
two organizations:
1. The Anti-Phishing Working Group at
reportphishing@apwg.org
2. The Federal Trade Commission (FTC) at
ReportFraud.ftc.gov.
Note: If you ever receive a phishing text message you
should forward it to SPAM (7726).
Thanks for helping to keep our members safe
from these cyber threats!
EMPIRE STATE SURVEYOR / VOL. 59 • NO 6 2023 • NOVEMBER/DECEMBER 27
