The “Password expires in 0 days.” notification bug has been fixed. If you are still experiencing this bug when connecting to VPN please contact the helpdesk. Continue Reading
News
Mozilla Releases Security Updates for Firefox
Mozilla released an update for Firefox to fixed a serious flaw allowing remote access to local files. Visiting a malicious website could allow an attacker to access files on the victim’s local file system. The vulnerability is being actively exploited on Windows, Mac, and Linux systems. The vulnerability has been fixed in Firefox 39.0.3 and Firefox… Continue Reading
Andorid Remote Code Execution Exploit
An exploit has been discovered in a media library that affects all Android phones from version 2.2 to the present version 5.1.1. A specially crafted Multimedia Messaging Service (MMS) message could run code on the victims smartphone without any user interaction. Google has issued a patch, but no patches have been pushed to any devices.… Continue Reading
Least vulnerable operating system of 2014 was…
According to GFI Blog – A tie between Windows 8 and Windows 8.1 with 36 total vulnerabilities (24 high, 12 medium, 0 low) However, the author, Cristian Florian from GFI Blog, has grouped the operating systems together in a dubious manner and has left out major/monolithic components that cannot be removed from the OS. … Continue Reading
Cyber Security Outlook 2015
From The Center for Internet Security, below are some highlights for 2015. To read more from CIS experts about this year’s trends and threats, visit the CIS blog. Distributed Denial of Service (DDoS) Attacks A Denial of Service (DoS) attack is an attempt to make a system (such as a website) unavailable to its users.… Continue Reading
College student “Work-from-home” scam
January 12, 2015 – College students across the United States have been targeted to participate in work-from-home scams. Students have been receiving e-mails to their school accounts recruiting them for payroll and/or human resource positions with fictitious companies. The “position” simply requires the student to provide his/her bank account number to receive a deposit and… Continue Reading
College Employee Scam
January 12, 2015 – College and University employees are receiving fraudulent e-mails indicating a change in their human resource status. The e-mail contains a link directing the employee to login to their human resources website to identify this change. The website provided appears very similar to the legitimate site in an effort to steal the… Continue Reading
University Direct Deposit Account Credentials Targeted by Phishing Emails
In at least three separate incidents in 2014, malicious actors sent phishing emails with malicious links to University employees; employees who clicked on the link were taken to fraudulent websites that collected single sign-on credentials, which were used to modify the employee’s direct deposit account information. By changing this information, the malicious actors rerouted the… Continue Reading
Keep your new tablet secure
From SANS Securing the Human series – Securing your new tablet Continue Reading
Tech Support Call Scam Leads to Malware & Financial Loss
Tech Support Call Scam Leads to Malware & Financial Loss The Risk: Malicious actors use call centers to cold call victims in an attempt to gain access to the victim’s computer, install malware, steal personally identifiable information (PII), and receive monetary gain. The Threat: A malicious actor, claiming to work for a well-known software, technology,… Continue Reading