Info Sec news

MU Alert Test – Spring 2018

Marshall University will be conducting a test of the MU Alert emergency messaging system on Wednesday, January 24, 2018 at 10 a.m.. This is an opt-in service available to MU community members. Subscribers are asked to be sure they receive a message by noon on Wednesday, and if necessary update their contact information via the myMU interface. If the information is correct and no message was received, please email mualert@marshall.edu with details on which method (text, email, and/or voice) did not work and the details for each pertinent method. Please sign up or update your information prior to 5:00 p.m. on Tuesday, January 23rd to be included on the test.

Additional information is available on the MU Alert website.

macOS High Sierra – Critical Security Update

This is an important computer security bulletin from Marshall University Information Technology team directed at Marshall University students, faculty and staff who own or use an Apple Macintosh computer. Apple has released a critical security update which should be applied to all computers which are running macOS High Sierra 10.13. Marshall University IT staff are working to address this issue on University-owned devices; students, faculty and staff need to be aware of this issue needs addressed on personal-owned devices.

What computers are at risk?

If you have an Apple Macintosh computer which is running the current release of macOS High Sierra 10.13 or 10.13.1, you are at risk and need to apply this update ASAP. If you are still running macOS Sierra 10.12.6 or earlier, this update is not needed.

How do I check which version of macOS in on my computer?

Click on the ‘Apple’ icon menu (in the upper left corner of your computer), and select ‘About This Mac’. You should see a pop-up window which will list the operating system name and version (see below):


 

How do I check for and apply needed software updates?

If your computer shows ‘macOS High Sierra Version 10.13 or 10.13.1’, click on the ‘Software Update…’ button in the lower-right of the pop-up. This will launch the Apple ‘App Store’ utility. Click on the ‘Updates’ menu and apply any needed updates. If the App Store shows ‘No Updates Available’, be sure to confirm that these 2 critical updates ‘MacOS 10.13.1 Update’ and ‘Security Update 2017-001’ are listed as being installed:

Please review the links below for further information and assistance

  • Apple Security Update 2017-001

https://support.apple.com/en-us/HT208315

  • Apple releases macOS High Sierra Security Updates

https://9to5mac.com/2017/11/29/macos-root-fix/

  • Marshall University IT Service Desk

https://www.marshall.edu/it/departments/it-service-desk/

  • Marshall University IT Information Security Team

https://www.marshall.edu/infosec

Protecting Your Marshall MUNet/Email Account from Phishing Attacks

Recent Phishing Attacks

Over the past several months, the Office of Information Technology has seen an influx of fraudulent “phishing” messages, many which appear urgent, and are designed to trick account holders into clicking a link (or in some cases, replying to an email) and providing a username and password.

In most cases, these emails have been sent from other Marshall University account holders who have already been victims of these fraudulent messages and thus have had their accounts compromised. Once an account is compromised, it is then being used by a cyber-criminal to distribute more phishing messages to other MUNet/Office365 account holders.

Since the messages are coming from @marshall.edu or @live.marshall.edu addresses, the recipient is more likely to trust the sender and be tricked into clicking a link and logging in to what they think is a legitimate web page. Many of these web pages are designed to look like authentic Marshall University, Microsoft, or financial institution login pages, but are actually capturing credentials.

Prevention and Education

The IT department is doing their best to catch compromised accounts before more phishing messages can be distributed, however, the best way to protect yourself and others is to use caution when checking your email.

ALWAYS be suspicious of any unexpected email messages, regardless of the source, which include file attachments, web URLs, or are written with a sense of urgency and require you to provide credentials or other personal information.

Phishing Examples

Below are a few examples of recent phishing messages. Notice that each includes hyperlinked text which, when the mouse is hovered over, reveals a web address that is NOT a marshall.edu or microsoft.com address. Also, these messages have a sense of urgency and ask that the recipient verify information. Marshall University will never send you unsolicited email asking you to verify your password or personal information, nor will any other trusted organization.

If You Receive A Fraudulent Email

  1. (Optional) Report a suspicious email sent to your @marshall.edu or @live.marshall.edu email address by forwarding the message to phishing@marshall.edu. YOu will receive an auto-reply confirming receipt of the message as well as additional instructions.
  2. Delete the message from your inbox
  3. As long as you did not attempt to open the attachment, reply/click on the web link, or provide any personal information, no additional action is needed; however…
  4. If you attempted to open an attachment or visited a website where you submitted your username, password or other sensitive information, you should immediately contact the Marshall IT Service Desk at (304)-696-3200 / itservicedesk@marshall.edu.

Protecting Yourself From Email Fraud(AKA Phishing)

Phishing Scams


InfoSec Tips #7: Don’t Be Tricked

Tip 7: Don’t Be Tricked

 
 

This alert was also sent to the Marshall community via e-mail

National Cyber Security Awareness Month Info Table

Interested in how cyber security affects you?

On Tuesday, October 17th, and Thursday, October 19th, from 11a.m.-1p.m. each day, Marshall University’s Information Technology (IT) division will be hosting the Hackers for Charity student group for a National Cyber Security Awareness Month (NCSAM) table in the lobby of the first floor of the Drinko Library and Information Center.  These students will share practical tips on how to improve your personal information security and avoid online threats.

 

As technology continues to become a large part of our professional and personal lives, it is important to be educated in how to keep private information secure.  We are eager to share with you the resources Marshall University has to not only provide information on the importance of cybersecurity but demonstrate the steps you can take to become more cyber secure in your everyday life.  Additional information regarding weekly topics and resources can be found at www.marshall.edu/it/ncscam/topics

For the month of October, MUIT’s Instagram and Twitter will be posting weekly tips on cybersecurity, follow the hashtag #CyberAware and follow us @MarshallU_IT.

For more information about NCSAM, visit www.staysafeonline.org/ncsam.

Marshall University Information Technology Contact: Crystal Stewart

-Kristin Salustro, MUIT Marketing Intern

 

Marshall CIO Edward Aractingi participates as a panelist at a workshop on cybersecurity

The “Cyber Research Acceleration Workshop” hosted by the Indiana University Center for Applied Cybersecurity Research took place on October 10 and 11. Marshall’s Chief Information Officer, Edward Aractingi, spoke as a panelist during the event. In addition to Dr. Aractingi, the panel included CIOs and industry speakers from the University of Illinois and Indiana University and discussed ways for university CIOs to drive and support research acceleration, especially in the Cybersecurity field.

MUIT participating in National Cyber Security Awareness Month (NCSAM)

The Marshall University Information Technology (IT) department is participating in National Cyber Security Awareness Month (NCSAM) to raise awareness of Cyber Security issues. Throughout the month of October, Marshall IT will be sharing information from the national campaign on Twitter, their website and through newsletter articles.

 

 

“This is the fifth year in which Marshall IT has participated in national cyber security awareness events,” said Jon Cutler, chief information security officer. “This is another opportunity for our team to share practical advice on information security with our campus community. We know many folks are concerned about online threats. So now we share information about how they can protect not only themselves but also the campus against cyber-criminal activity. We believe you will find each of the weekly topics to be helpful and welcome any feedback in how those messages can be improved.”

National Cyber Security Awareness Month began 14 years ago as a collaborative effort between government and industry to ensure every American has the resources they need to stay safe and secure online. NCSAM is celebrated across the country each October under the leadership of the U.S. Department of Homeland Security and the National Cyber Security Alliance.

Different cybersecurity issues will be addressed each week including basic online safety and security, workplace cybersecurity, recognizing and combating cybercrime, our continuously connected lives and what to do if you are a victim of cyber-crime.

“We know the Marshall campus community has a lot of questions about cyber security. Use of technology is a part of our everyday lives – both professionally and personally,” Cutler said. “Are you concerned when hearing reports in the news of yet another hacker security breach? Does the growing number of smart-devices in our lives put us and others at risk? Participation in National Cyber Security Month provides another opportunity to share a wide variety of resources which will help us gain a better understanding of online security issues and provides some simple steps you can take to protect yourself.”

For more information about NCSAM, visit www.staysafeonline.org/ncsam. You are also invited to follow and use the hashtag #CyberAware on Twitter throughout the month of October.

MUAlert Test

Marshall University will be conducting a test of the MU Alert emergency messaging system on Wednesday, September 6, 2017 at 10 a.m.. This is an opt-in service available to MU community members. Subscribers are asked to be sure they receive a message by noon on Wednesday, and if necessary update their contact information via the myMU interface. If the information is correct and no message was received, please email mualert@marshall.edu with details on which method (text, email, and/or voice) did not work and the details for each pertinent method. Please sign up or update your information prior to 5:00 p.m. on Tuesday, September 5th to be included on the test.

Additional information is available on the MU Alert website.

[TechInfo] Is this legit?

[TechInfo] Is this legit? ‘New Microsoft Office 2016 is Here for Only $9.95’

Informational Advisory – Microsoft Office Upgrade Offer

This advisory was sent via email to nearly 900 @Marshall recipients who have recently received an e-mail from ‘Microsoft Home Use Program MicrosoftHUPsupport@digitalriver.com . This is a legitimate message and you are receiving this because you have previously enrolled for or purchased media from the Microsoft ‘Home Use Program’ for Microsoft Office on your home computer. (See Frequently Asked Questions section below on how to unsubscribe from these mailings).

But before you pay $9.95 to upgrade, please read the rest of this message below…

 

 

If you are an Marshall faculty or staff member eligible for ‘Home Use Rights’ (see Microsoft’s definition of employee below in the frequently asked questions section) in most cases you will be better served by upgrading your home computer software using the no-cost Office 365 media.

If you are no longer a Marshall University employee, but you are still an active student, you can also use O365 media described below.

 

 

 

Frequently Asked Questions

  • Can I use Office 365 Media on a Personally Owned PC/Windows or Apple Macintosh OS?
    Yes. the Microsoft Office 365 download is intended for PERSONALLY-OWNED machines. There are separate versions for Microsoft Windows PC’s and Apple Macintosh OS X computers.
  • Is there a difference in the O365 software and Microsoft Office software installed on my University-owned computer?
    In some cases yes. Functionally, both products are Microsoft Office – Word, Excel, Outlook, etc. – and you have a choice of ‘new’ (Office 2016) or ‘previous’ (2013) releases. However, with the O365 release, Microsoft will make future updates available to you. These updates may appear on a different release schedule than your University-owned computer. You will still have the option to ‘accept’ or ‘defer’ these major updates. You may wish to maintain the same major version (e.g. Office 2013 vs. Office 2016) running on both your personally- and University-owned computers.
  • Where can I get more information on accessing the Office 365 software?
    Please visit our website for more details.
  • What is an eligible employee for purposes of the ‘Home Use Program’?
    Microsoft defines ‘eligible employee’ as follows… “those individuals who use the covered licenses at work are eligible to purchase these Office applications for use on a personal device during the term of their employment. This temporary license expires with the employer’s Software Assurance coverage, or upon termination of employment with the covered organization.”
  • How can I request Microsoft/DigitalRiver to stop sending me these upgrade offers?
    Locate the e-mail message in your inbox (Subject:  The New Microsoft Office 2016 is Here for Only $9.95!). At the very bottom of the message, locate the ‘Click here to unsubscribe’ web link. This will take you to a webpage which will already contain your e-mail address. Click the [Unsubscribe] button. That’s it.

Please direct any additional questions to IT Service Desk itservicedesk@marshall.edu so that we can upgrade our existing question & answer section on the IT website.

 

MUNet End of Support for Windows Vista

Windows Vista End of Life 11 April 2017 Microsoft

Important Computer Security Reminder for All Marshall University Faculty, Staff and Students:

Marshall University Campus network support will no longer be provided for computers with Microsoft Windows Vista operating system  after June 30, 2017.*

This notice is intended Marshall University campus clients who are still using the Windows Vista operating system. Your response is needed because most security experts agree that Windows Vista clients will become sought-after targets for malicious users as a result of Microsoft’s end of support.

 

Microsoft announced in 2012 that on April 11, 2017 they would no longer provide extended support services for the Windows Vista operating system. According to the Microsoft website, this means that they will no longer provide automatic fixes, updates or online technical assistance:

Windows Vista Support is Ending https://support.microsoft.com/en-us/help/22882/windows-vista-end-of-support

Marshall University Information Technology announced our end of support of Windows Vista on July 2012. While most campus computer systems have long since been upgraded from Windows Vista, some systems continue to operate on the MUNet without direct support from IT.  These include a limited number of systems which are managed at the department level or are student-owned.

Marshall IT is committed to working with campus departments in our shared responsibility to ensure a safe and reliable campus network. Periodically upgrading the operating system and/or replacement of unsupported computer hardware is a necessary part of system ownership; it is also crucial to protecting the security and reliability of the system, the data they contain and the networks to which they are connected. Failure to regularly update puts at risk both that system as well as other systems which share the same network.

Windows Vista Upgrade Resources

  • Software – As a reminder, operating system upgrades for all University-owned computers are covered thru client workstation budgeting process. So these computers are eligible to upgrade to Windows 10 or a currently supported OS (Windows 8.1 or Windows 7 SP1). at no additional charge.
  • Reimaging – Additionally the IT Service Desk team provides no-charge desktop/laptop reimaging services (using the currently supported operating system and application software) for University-owned computers.
  • Hardware – If replacement of a University-owned computer device is preventing your upgrade, please contact the Marshall IT Service desk to confirm when your system is scheduled for lifecycle replacement or if other replacement options need to be considered.

Requesting An Exception for Windows Vista End-of-Life

*Note: The Marshall Office of Information Technology will be working with IT Service Providers and their departments on a case-by-case basis to evaluate requests for Windows Vista clients which are providing business-critical functions for the University. Marshall departments and business units should submit their exception requests in writing/e-mail to the MU Office of Information Security (infosec@marshall.edu ).

Requests must include the following details:

  • The reason(s) for requesting the exception. Multiple machines may be listed on a single request.
  • The machine host name(s) in question, including the IP address and MAC address of each device.
  • Point of contact information (telephone and e-mail) for the department head.
  • Point of contact information (telephone and e-mail) for the department IT service provider or individual most familiar with the support of the computer or application requesting an exception.
  • The length of time for the requested exception, with a maximum of one year
  • The plan for upgrading or retiring the device at the end of the exception period
  • The data classification level of each device (see section 3 of “ITG-4 Guidelines for Data Classification“)
  • Which of the three device categories does the Windows Vista machine belong:
    • Individual Use – no sensitive data accessed or stored
    • Privileged use – administrative access to information systems
    • Institutional use – stores significant quantities of sensitive data
  • Proposed set of compensating controls which has (or can be) implemented for each device (i.e. client can function without any network access; client campus and/or Internet access can be restricted to a specific IP or range of IP addresses)

As always, if you need additional technical assistance please contact
the IT Service Desk, located on the first floor in the Drinko Library, e-mail itservicedesk@marshall.edu or call 304-696-3200.