Tag Archives: security

IA Chrome extension protecting LSA

About 2,100 managed systems in the College of Literature, Science, and the Arts (LSA) now have extra protection from malicious websites thanks to the Safe Computing Website Checker developed by Information Assurance (IA). The extension protects people from some types of malicious websites when browsing the web with Chrome. “Utilizing Group Policy Management (GPO) we have deployed this… Read More »

Only store sensitive data in approved services—check the guide!

Do you work with sensitive data? Any time you are thinking about using a storage or collaboration service for sensitive university data—whether in the cloud or at U-M: Check the Sensitive Data Guide first to see which services are approved for your data type. If the service you want to use is not listed in the guide, ask… Read More »

Students show security know-how and win prizes

For the past 14 years, Information Assurance (IA) has engaged UM-Ann Arbor students, including medical students, with an online quiz designed to raise awareness about IT security issues and promote good IT security practices. This year’s quiz resulted in the second highest completion rate yet! From October 29 through November 2 a total of 7281 students participated. This… Read More »

HITS staff-volunteers pitch in to help customers prepare for mandatory Duo two-factor authentication

During a recent Duo “go-live,”nearly a dozen HITS staff-volunteers supplemented regular Service Desk staff – answering customers’ questions and providing support during the set-up and activation process. Beginning October 10, Michigan Medicine began requiring all Michigan Medicine employees to use Duo two-factor authentication to access U-M resources that require Weblogin. This move was intended to provide an additional layer of protection… Read More »

U-M Information Security policy: Revised and approved

The revised University of Michigan Information Security policy (SPG 601.27) recently was approved, along with a number of new information technology standards. The policy and accompanying standards represent the most comprehensive revision of the institution’s information security program since its inception over a decade ago. SPG 601.27 and the standards are based on a cybersecurity risk management framework that… Read More »

Keep your personal software up-to-date

We all should be in the habit of keeping our software up-to-date. This is necessary because vendors and others regularly identify security vulnerabilities in software and apps, and then release updates and patches to fix them. Additionally, keeping your software current enables you to take advantage of other improvements, such as better performance or new functionality. Personal computers… Read More »

Turn on two-factor for your personal accounts

Many popular services and websites offer two-factor authentication. Information Assurance (IA) encourages you to turn it on whenever it’s available to protect your personal accounts. Duo may be an option If you already use the Duo Mobile app for two-factor at U-M, you might be able to use it with your personal, non-university accounts. If a service’s instructions… Read More »

Use antivirus software to protect U-M and personal computers

Antivirus software should be installed and kept up-to-date on all of your computers—both your own and those owned by the university. MiWorkspace computers already have antivirus software installed, and it is updated automatically. For U-M computers Information Assurance (IA) recommends these antivirus products that are licensed for use on UM-owned computers: Windows 8 and 10. Use Windows Defender,… Read More »

Register today to attend SUMIT October 25

Mark your calendars for SUMIT_2018, U-M’s 14th annual cyber security conference on Thursday, October 25. Learn more and register today! Security at University of Michigan IT (SUMIT) is the university’s flagship event for National Cybersecurity Awareness Month. Held at Rackham Auditorium, SUMIT is an exciting opportunity to hear recognized experts discuss the latest issues, trends, and threats in… Read More »

Intel processor vulnerability could put millions of PCs at risk

By | August 17, 2018

 Researchers at U-M were part of a group that discovered a new processor vulnerability that could potentially put secure information at risk in any Intel-based PC manufactured since 2008. It could affect users who rely on a digital lockbox feature known as Intel Software Guard Extensions, or SGX, as well as those who utilize common cloud-based services,… Read More »

Chrome extension warns you of malicious websites

You know you need to check the URL before logging in, but wouldn’t it be great if your web browser did some of that checking for you? If you use Chrome and an extension from Information Assurance (IA), it can. The U-M Safe Computing Website Checker extension for Chrome warns you while you are using Chrome: When you… Read More »

Duo mandatory at Michigan Medicine beginning October 10

Phishing attacks, data breaches, and identity theft have become common issues plaguing organizations the world over, including health systems and universities. The most significant step the Michigan Medicine community can take to protect their data, as well as that of our patients and research participants, is to use Duo with all web-based services that require U-M login. While 26,000… Read More »

HITS implements 30-day network policy

The institutionally owned devices we use to do our work are kept secure by connecting regularly to the internal U-M network. Connecting ensures that our devices receive the patches and anti-virus protection that are typically installed automatically and daily whenever we are logged in. Effective August 16, 2018, Health Information Technology & Services (HITS) will implement a policy… Read More »

Shared threat intelligence saves the day

A Distributed Denial of Service (DDoS) attack took down a residence hall network switch at the University of Maryland (UMD) over spring break 2018, but it could have been a lot worse without the collaborative threat information sharing partnership of U-M and other universities. 90% of attack traffic blocked “If we hadn’t been using our shared threat intelligence,… Read More »