New phishing curriculum for your unit
To help you provide phishing awareness training in your unit ITS Information Assurance (IA) has published new phishing curriculum materials on Safe Computing!
Author Archives: Janet Eaton, ITS Information Assurance
Be proactive and prepared for ransomware
If you manage U-M or unit systems, computers, or data, you are responsible for taking steps to protect them from ransomware. If you use U-M computing services, you are responsible for learning not to respond to phishing emails, which often provide entry to ransomware.
Duo for U-M VPN coming this fall
Coming in fall 2021, it is anticipated that use of Duo two-factor will be required when logging in to the U-M Virtual Private Network (VPN). That will provide added security not just for you, but for U-M networks and systems, too.
Write emails that don’t look phishy
People are rightfully suspicious of unsolicited email, but that can sometimes cause them to ignore or delete your legitimate university communications. In order to not appear phishy, focus on helping recipients verify the legitimacy of your U-M emails so they know they are safe to open. Tips are available on the Safe Computing website.
Fending off cyberattacks at U-M together
Ransomware, phishing, and cyberattacks are on the rise and, increasingly, they target higher education. The most effective way to defend against them is to work together.
Use the new Safe Computing Curriculum in your unit
As U-M employees and community members, we all share in the responsibility to help protect U-M IT systems and data. But how do you do that? ITS Information Assurance has developed a Safe Computing Curriculum that offers IT security and privacy/confidentiality best practices to help safeguard the university’s digital assets.
AI – transformative and biased, say U-M panelists
A panel of U-M experts discussed the film “Coded Bias” at a Dissonance Event on April 15. “Coded Bias” follows the journey of Joy Buolamwini, a computer scientist and digital activist based at the MIT Media Lab, as she worked with others to push for the first legislation in the U.S. to govern against bias in artificial intelligence (AI) algorithms. The Dissonance organizing committee brought the panelists together for an online discussion of bias in AI, transformative opportunities for its use, and more.
Don’t share your COVID-19 vaccination card on social media
Many people are so excited when they get their COVID-19 vaccination that they want to share the good news with everyone. But, just as you shouldn’t share other highly personal information on social media, please don’t share a photo of your vaccination card.
“Coded Bias” watch event; Join experts for panel discussion afterwards
You are invited to a free, on-demand screening of the documentary film Coded Bias—available anytime from April 8 to 14 and a panel discussion of the film April 15. Coded Bias explores the fallout from an MIT Media Lab researcher’s discovery that facial recognition does not identify dark-skinned faces and women’s faces accurately. The film follows her journey to push for the first legislation in the U.S. to govern against bias in the algorithms.
Email forwarding addresses updated in MCommunity
A behind-the-scenes update is being made over several weeks during March to the U-M Google mail forwarding address.
Continual improvement of anti-phishing filters: Area 1
To continue to improve IT security at U-M, the university is adding Area 1 Security to its mix of anti-phishing defenses.
Igo reviewed history of the SSN at Privacy Day webinar
The public perception of the SSN has gone from a symbol of security to be seen as a symbol of privacy insecurity.
CrowdStrike Falcon deployment in the homestretch
Enhanced Endpoint Protection powered by CrowdStrike (Falcon) is a critical part of securing and protecting U-M systems and data, and we are relying on you all to complete deployment by the end of February.
History of privacy timeline on Safe Computing
Visit the new Safe Computing History of Privacy Timeline to learn more about privacy milestones.
Protect your U-M VPN connection with Duo
When working from home or elsewhere, you can use Duo two-factor protection for additional security with the U-M Virtual Private Network (VPN). It provides added security not just for you, but for U-M networks, too.
Renew extended support if you are still running Windows 7 or Server 2008
If you purchased extended support for university machines running Windows 7 or Server 2008 in January 2020, be aware that the support is about to expire. You will need to update the machines to a supported version of Windows or Windows Server, purchase another year of extended support, decommission the machines, or isolate them on a protected network.
Plan to explore privacy in January
Privacy is important year round, but in January it comes into extra sharp focus as we celebrate Data Privacy Day on January 28. Mark your calendar now and plan to partake in a variety of U-M-wide events.
October is Cybersecurity Awareness Month!
Each October, ITS Information Assurance (IA) celebrates Cybersecurity Awareness Month by reminding members of the university community about their shared responsibility to protect themselves and the U and by sharing IT security and privacy tips.
SSL certificates now have a one-year maximum length
You can no longer request two-year SSL server certificates from ITS. Web browsers and devices from Apple, Google, and Mozilla will not trust any two-year certificate issued after August 30, 2020.
New UMICH password strength requirements
Next time you change or reset your UMICH (Level-1) password, you will need to meet new password strength requirements. Existing passwords are not affected by the new requirements and can remain as is. The new requirements align with current best practices and National Institute of Standards and Technology (NIST) guidelines for passwords. Given the sophistication of attempted attacks… Read More »