Category Archives: Safe Computing

Visit the SafeComputing site for more information. Report a security incident. Subscribe to the Safe Computing RSS feed.

Units moving forward on enhanced endpoint protection implementation

By D. Stephanie Dascola, Medical School Office of Research | December 9, 2020

0 Comment

padlock with skull image, wrapped in chaines

In October we reported that, along with other security tools like Virtru at U-M, CrowdStrike Falcon was being rolled out across the university on UM-owned machines. Falcon provides antivirus, anti-malware, and threat detection and mitigation capabilities, all of which offer stronger protection against ransomware and other malicious attacks than previous tools. Deployment update CrowdStrike Falcon has been deployed… Read More »

New IoT devices for the holidays? Mind your privacy & security!

By Matt Ranville, Information Assurance | December 8, 2020

0 Comment

Three turquoise circles with different internet-connected items such as a computer, home lights, and a washing machine are shown to be wirelessly connected to a rectangular mobile device.

Internet of things (IoT) devices can be great gifts, but those smart home speakers, thermostats, and cool wearables like watches and fitness trackers come with some security and privacy risks. To protect yourself and your personal data, follow these tips: Privacy Mute your smart speaker when not using it. Disable features you don’t use. Choose privacy settings for… Read More »

After five years, Let’s Encrypt, a non-profit based on tech developed at Michigan, has helped to secure the internet

By News Staff | December 4, 2020

0 Comment

screens of monitor & smarphone with lock graphic, circle arrows between them

Just five years ago, most websites relied on unencrypted HTTP, the aging and inherently insecure protocol that provides no protection to sites or visitors from threats that range from surveillance through phishing and identity theft. Today, the internet is a much more secure place, with over 80% of websites protected by HTTPS secure encryption. That dramatic transformation –… Read More »

Cybersecurity experts discuss election, research security

By News Staff | December 3, 2020

0 Comment

Almost a month after Election Day, experts discussed the threats to election security and cybersecurity and its role within the University of Michigan community in the second installment of the Trotter Distinguished Leadership Series. Javed Ali, former senior director for counterterrorism at the National Security Council, discussed the connections between technology and election security. Ali said the shift towards paper… Read More »

Major side-channel discovery wins NSA contest

By News Staff | December 2, 2020

0 Comment

Spectre ghost image over code in background

The National Security Agency recently recognized a major breakthrough in the field of side-channel attacks as the winner of the 2020 Best Scientific Cybersecurity Paper competition. Daniel Genkin, assistant professor of electrical engineering and computer science, worked on the paper with collaborators from around the world. The winning paper, describing an exploit called Spectre, broke open a new… Read More »

Shop online safely

By Matt Ranville, Information Assurance | December 1, 2020

0 Comment

hand holding credit card, hovering over laptop keyboard, shopping sites on the monitor

As the holidays approach and the pandemic continues, you are highly likely to be doing more online shopping. Protect yourself from scams and data theft with these tips from ITS Information Assurance. Shop with trustworthy sites and sellers. Stick to businesses you know and trust, and compare descriptions and prices from multiple sellers to help spot scams. Be… Read More »

Support for Sophos Antivirus on UM-owned machines to end December 2020

By D. Stephanie Dascola, Medical School Office of Research | November 30, 2020

0 Comment

A laptop with a magnifying glass and a shield hovering over it.

Support for Sophos Antivirus installed on U-M machines will end on December 31, 2020. Enhanced Endpoint Protection powered by CrowdStrike replaces Sophos. The Sophos product will continue to work, but will not be updated, and quickly will become deprecated. If you are responsible for managing university Macs, please ensure that you transition them to CrowdStrike Falcon for endpoint… Read More »

New tool automates popular system security technique

By News Staff | November 18, 2020

0 Comment

illustration of sandbox with shovel over computer code background

Working with researchers from the University of Texas at Austin, Xinyu Wang, assistant professor of electrical engineering and computer science, co-authored an award-winning paper that demonstrates how to automatically build sandboxing policies to keep a computer system safe. Sandboxing is a software management strategy that isolates applications from critical system resources and other programs. One common sandbox approach… Read More »

Password tip: Use a unique password for every site and service

By Julia Silverman, ITS Information Assurance | November 10, 2020

0 Comment

A computer monitor with multiple instances of the word "password"

Here is an important password tip: Do not reuse your UMICH (Level-1) password. Try to set a unique password for each site and online service you use (or use a password manager), and never use your UMICH password for non-university accounts or services. Reusing passwords puts you at risk. There have been a number of data breaches outside… Read More »

Cybersecurity Month wrap-up by the numbers

By Matt Martin, Information Assurance (IA) | November 3, 2020

0 Comment

An infographic depicting highlights of Cybersecurity month by the numbers. Actual numbers are included in the article.

As shown above, highlights of Cybersecurity month include: 9 virtual training sessions covering topics like privacy and data use, using Duo two-factor authentication, data classification, and more 4 virtual drop-in Q&A sessions with security analysts 1000+ people sent and received email with Virtru enhanced email security 22K+ MiWorkspace and MiServer managed systems have CrowdStrike Falcon installed for enhanced… Read More »

Duo Restore function enabled for iOS and Android

By Matt Martin, Information Assurance (IA) | November 2, 2020

0 Comment

A new Duo option makes it easier to reactivate the Duo Mobile app when you get a new device. Prior to October 23, 2020, if you got a new smartphone or tablet and wanted to reactivate the Duo Mobile app on it, you needed to use an alternate method of Duo two-factor (such as a phone call) or… Read More »

Collaboration on new HIPAA course for the Shared Services Center

By Matt Martin, Information Assurance (IA) | October 29, 2020

0 Comment

Staff in the Shared Services Center (SSC) play an important role in properly handling sensitive institutional data, including data regulated by the Health Insurance Portability and Accountability Act (HIPAA). This past summer, the SSC decided it was time to update their HIPAA training, which they require annually of their staff. The SSC noticed that Information and Technology Services… Read More »

How to protect your online calls from ‘Zoom-bombing’

By News Staff | October 19, 2020

0 Comment

The Michigan Daily recently spoke to experts on campus — including Ravi Pendse, vice president for information technology and chief information officer, and Kyle Lindsey and Hanah Stiverson, two doctoral students who are working on a book with Professor Lisa Nakamura about Zoom-bombing — to compile a list of tips to ensure calls for classes or clubs remain… Read More »

SUMIT Reimagined goes online

By Annaliese Gottschalk, ITS | October 15, 2020

0 Comment

Security at University of Michigan IT (SUMIT) 2020, ITS’s free annual event hosted during National Cybersecurity Awareness Month, goes online for SUMIT Reimagined. This series of informational events where members of the U‑M community can get help from IT experts on a variety of topics is entirely virtual this year. Check out a few of the events below and see… Read More »

October is Cybersecurity Awareness Month!

By Janet Eaton, ITS Information Assurance | September 30, 2020

0 Comment

Ocotober is Cybersecurity Awareness Month. Do your Part. #BECYBERSMART. STAYSFEONLINE.OR/CYBERSECTURITY-AWARENESS-MONTH

Each October, ITS Information Assurance (IA) celebrates Cybersecurity Awareness Month by reminding members of the university community about their shared responsibility to protect themselves and the U and by sharing IT security and privacy tips.

Recording classes: (Some) rules of the road

By News Staff | September 14, 2020

0 Comment

U-M classes are overwhelming being taught remotely this semester. This means that some instructors may, for a variety of reasons, wish to record their classes. The Safe Computing website has guidelines for instructors who plan to record class activities. Recordings where students can be identified—from in-person sessions or remote instruction via Zoom, BlueJeans, or any other videoconferencing application—are:… Read More »

Course aims to train future leader against cyber crime

By News Staff | September 11, 2020

0 Comment

skull and crossbones over a voting booth

In the course “Cybersecurity for Future Leaders” (EECS 498 / PUBPOL 475), students will gain a better understanding of the science, technology, public policy, and national security considerations behind cybersecurity in order to protect the very tenets of democracy. Election security will be one of the course’s six focus areas this fall 2020. The course is taught from… Read More »

A new email security tool — Virtru!

By Patty Giorgio, ITS Communications | September 4, 2020

0 Comment

Make your U-M Gmail even more secure Information and Technology Services (ITS) is happy to announce that effective immediately, students, staff, and faculty have access to a new email security tool — Virtru. (Note: Michigan Medicine provides a similar capability for their email service). With Virtru, you can send end-to-end encrypted email to any address, prevent a forwarded email… Read More »

Do your part to deflect ransomware

By Matt Martin, Information Assurance (IA) | August 21, 2020

0 Comment

Ransomware is on the rise and you have an important role to play in protecting U-M!!! Cybercriminals and other threat actors continue to ratchet up ransomware attacks on universities, healthcare providers, and other organizations. This summer Michigan State University and the University of California San Francisco, among others, have reported recent attacks. Ransomware attempts often begin with a… Read More »

SSL certificates now have a one-year maximum length

By Janet Eaton, ITS Information Assurance | August 19, 2020

0 Comment

You can no longer request two-year SSL server certificates from ITS. Web browsers and devices from Apple, Google, and Mozilla will not trust any two-year certificate issued after August 30, 2020.