The public release of credentials (email addresses and associated passwords) related to the 2018 Chegg breach unfortunately affected the U-M community. Thank you to those of you who assisted students and others whose UMICH passwords were reset in late September as a result of reuse at U-M of passwords exposed in a data breach at Chegg, a commercial… Read More »
If you’ve been logging in with Duo the same way for awhile, now is a good time to review your options and consider whether there are other methods that might work better for you. Duo Mobile app Advantages: Offers multiple login-approval methods (passcode, push notification; phone call and text message when installed on a smartphone). Works with or… Read More »
Mark your calendars for SUMIT_2019, U-M’s 15th annual cyber security conference on Tuesday, October 29 at Rackham Auditorium. Learn more and register today! This free, one-day conference is an exciting opportunity to hear recognized experts discuss the latest issues, trends, and threats in cybersecurity and privacy. SUMIT_2019 focuses on explorations in privacy and security research. SUMIT_2019 speakers Denise… Read More »
Every October, ITS Information Assurance (IA) leads a U-M celebration of National Cybersecurity Awareness Month (NCSAM) by hosting events, sharing tips, and reminding everyone of our shared responsibility to protect and secure university and personal systems and the sensitive information they contain. NCSAM is spearheaded by the National Cyber Security Alliance and the U.S. Department of Homeland Security.… Read More »
Don’t let Duo two-factor become a distraction when you travel. Review your options before you leave to make sure you’re prepared. While your regular Duo option may work, you could choose to use an alternative method that better suits your travel plans. Duo offers multiple options that are suited for different circumstances. The recommended travel option is the… Read More »
Microsoft will end support for Windows Server 2008 and 2008 R2 on January 14, 2020 That means it will no longer provide security updates or support. Don’t let your infrastructure and applications go unprotected. Begin planning now to upgrade as needed. This applies to physical servers that you manage as well as virtual servers. MiServer users are asked… Read More »
You can reduce the number of times you have to use Duo two-factor authentication when logging in at U-M Weblogin by checking the Remember me for 7 days box. With this feature, you will not be prompted for a two-factor authentication method at Weblogin over the next seven days, as long as you use the same computer and… Read More »
Beginning this fall, all students on the Ann Arbor, Dearborn, and Flint campuses are being encouraged to turn on Duo two-factor authentication by January 29. Faculty, staff, student employees, and sponsored affiliates across U-M voluntarily turned on two-factor authentication by this past January with the support of ITS and the overall Michigan IT community. Over 50% of the… Read More »
A new school year often means getting new technology, and that means needing to safely dispose of old devices. Keep that data from falling into the wrong hands by securely deleting the data before disposing of the device.
Microsoft will end support for Windows 7 on January 14, 2020. That means it will no longer provide security updates or support for Windows 7. To avoid security-related risks and support issues, we ask that you upgrade to Windows 10. Begin planning now to upgrade as needed. If you have not already done so, plan to stop using… Read More »
IA has primary responsibility for coordinating the response to serious IT security incidents. Report all serious or potentially serious IT security incidents to security@umich.edu. Once you’ve reported an incident, you can expect IA to keep you involved while coordinating.
The annual Security at University of Michigan IT (SUMIT) symposium will be held on Tuesday, October 29, at Rackham Auditorium on the UM-Ann Arbor campus.
In 2019, ITS Information Assurance led six working sessions focused on assisting unit IT staff in planning for the implementation of a number of IT security standards that supplement and support SPG 601.27.
You know about hovering over links in email with your mouse to see the destination URL before clicking. But what do you do on your smartphone or tablet where you don’t have a mouse or trackpad? Press the link and hold down till a dialog box appears.
Sol Bermann, U-M’s chief information security officer, is quoted in a recent article in “Science” magazine about legislation moving through Congress that aims to prevent foreign entities from taking unfair advantage of the traditionally open U.S. research system. Both House and Senate bills focus heavily on enhancing cybersecurity, seen as an essential tool in protecting intellectual property and… Read More »
Sol Bermann, executive director of information assurance and chief information security officer (CISO) for U-M, was recently interviewed by “EDUCAUSE Review” about the growing need for privacy management, the policies and laws in place to protect our privacy, and how big data has changed the game. In a wide-ranging interview, Bermann discusses: The difference between a chief privacy… Read More »
ITS began implementing components of a greatly enhanced network security threat detection and mitigation system in late June. This approach combines cutting edge technologies, open source tools, and U-M’s MITN threat intelligence framework to provide a security solution that scales across U-M networks. It will allow ITS to: Detect and mitigate network threats across more U-M networks. Extend… Read More »
If you plan to use an internet connection to access U-M systems while off campus, you should secure your connection with a Virtual Private Network (VPN). When you use a U-M VPN, you are securely connected using a U-M network, regardless of where you are. This allows you to access U-M resources that require you to be on… Read More »
Have external collaborators, granting agencies, or vendor partners ever asked you for information about the university’s IT security posture? ITS Information Assurance has pulled together an overview of how we secure U-M into one document to help you answer those questions: U-M IT Security Posture (U-M login required)Note: IT security and compliance is a shared responsibility. This document… Read More »
Shortened URLs, such as those from bit.ly and goo.gl, make it easy to type in a web address quickly but hard to tell where your web browser will actually take you. Before clicking a shortened URL, check for the full URL. Most URL shorteners—including those used at U-M—include a preview feature. In addition, there are several URL checkers… Read More »