Tag Archives: security

Participate in National Cybersecurity Awareness Month this October!

By Matt Ranville, ITS Privacy Office | September 25, 2019

Every October, ITS Information Assurance (IA) leads a U-M celebration of National Cybersecurity Awareness Month (NCSAM) by hosting events, sharing tips, and reminding everyone of our shared responsibility to protect and secure university and personal systems and the sensitive information they contain. NCSAM is spearheaded by the National Cyber Security Alliance and the U.S. Department of Homeland Security.… Read More »

Tips for using Duo when traveling

By Matt Martin, Information Assurance (IA) | September 24, 2019

0 Comment

Don’t let Duo two-factor become a distraction when you travel. Review your options before you leave to make sure you’re prepared. While your regular Duo option may work, you could choose to use an alternative method that better suits your travel plans. Duo offers multiple options that are suited for different circumstances. The recommended travel option is the… Read More »

Prepare to move away from Windows Server 2008, 2008 R2

By Janet Eaton, ITS Information Assurance | September 23, 2019

0 Comment

Microsoft will end support for Windows Server 2008 and 2008 R2 on January 14, 2020 That means it will no longer provide security updates or support. Don’t let your infrastructure and applications go unprotected. Begin planning now to upgrade as needed. This applies to physical servers that you manage as well as virtual servers. MiServer users are asked… Read More »

Reduce your Duo logins with “Remember me”

By Matt Martin, Information Assurance (IA) | September 17, 2019

0 Comment

You can reduce the number of times you have to use Duo two-factor authentication when logging in at U-M Weblogin by checking the Remember me for 7 days box. With this feature, you will not be prompted for a two-factor authentication method at Weblogin over the next seven days, as long as you use the same computer and… Read More »

Protecting your privacy in the wake of FaceApp

By News Staff | September 2, 2019

0 Comment

In an interview with “Kiplinger” magazine, Florian Schaub, assistant professor in the U-M School of Information, discusses how to protect your data given recent concerns about FaceApp, a Russia-based photo manipulation app whose privacy policy made broad claims about how they might reuse images. According to Schaub, unbundling specific aspects of opt-in privacy policies would provide users more… Read More »

New tech for the new school year? Safely dispose of old

By Matt Ranville, ITS Privacy Office | August 28, 2019

0 Comment

hand holding pencil with eraser over a hard drive

A new school year often means getting new technology, and that means needing to safely dispose of old devices. Keep that data from falling into the wrong hands by securely deleting the data before disposing of the device.

IA coordinates response to all IT security incidents

By Matt Ranville, ITS Privacy Office | August 26, 2019

0 Comment

IA has primary responsibility for coordinating the response to serious IT security incidents. Report all serious or potentially serious IT security incidents to security@umich.edu. Once you’ve reported an incident, you can expect IA to keep you involved while coordinating.

Plan now to attend SUMIT on October 29

By News Staff | August 26, 2019

0 Comment

The annual Security at University of Michigan IT (SUMIT) symposium will be held on Tuesday, October 29, at Rackham Auditorium on the UM-Ann Arbor campus.

Protecting U-M data and systems: Shared values and a community effort

By Mona Beydoun, ITS Communications | August 22, 2019

0 Comment

Two men discuss something over a laptop in a lecture hall.

In 2019, ITS Information Assurance led six working sessions focused on assisting unit IT staff in planning for the implementation of a number of IT security standards that supplement and support SPG 601.27.

Video: Interview with Sol Bermann, U-M CISO

By News Staff | July 24, 2019

0 Comment

Sol Bermann, executive director of information assurance and chief information security officer (CISO) for U-M, was recently interviewed by “EDUCAUSE Review” about the growing need for privacy management, the policies and laws in place to protect our privacy, and how big data has changed the game. In a wide-ranging interview, Bermann discusses: The difference between a chief privacy… Read More »

Bermann named Chief Information Security Officer

By News Staff | July 18, 2019

0 Comment

Sol Bermann, J.D. was named executive director of Information Assurance and chief information security officer (CISO) for the University of Michigan in June 2019. He served as U-M’s interim chief information security officer during the 2014/15 and 2017/19 academic years. Since joining the university in 2011, Bermann has served as the university’s interim CISO, university privacy officer, and… Read More »

Dissonance events explore tech-based policy and legal subjects

By Mona Beydoun, ITS Communications | July 15, 2019

0 Comment

Kayte Spector-Bagdady speaks at Dissonance: Genetics & Medical Apps—Ethics, Privacy, Law, and Policy

Technology changes at an ever-increasing rate, almost always outstripping policy, privacy, security, and legal considerations. ITS Information Assurance (IA) collaborates with faculty, researchers, students, and external industry experts to create a forum, Dissonance, for public discourse on the tensions surrounding technology, policy, privacy, security, and law.

Better protection for U-M networks

By Janet Eaton, ITS Information Assurance | July 10, 2019

0 Comment

ITS began implementing components of a greatly enhanced network security threat detection and mitigation system in late June. This approach combines cutting edge technologies, open source tools, and U-M’s MITN threat intelligence framework to provide a security solution that scales across U-M networks. It will allow ITS to: Detect and mitigate network threats across more U-M networks. Extend… Read More »

U-M prof studies GitHub’s security issue disclosure process

By Mona Beydoun, ITS Communications | July 8, 2019

0 Comment

Atul Prakash sits at a desk, working on his computer.

Atul Prakash, an electrical engineering and computer science professor, is part of a research team studying the process GitHub has in place for disclosing security issues. The team’s research culminated in a list of recommendations to help GitHub develop a standardized method to report security vulnerabilities.

U-M IT security posture information published

By Janet Eaton, ITS Information Assurance | July 3, 2019

0 Comment

Have external collaborators, granting agencies, or vendor partners ever asked you for information about the university’s IT security posture? ITS Information Assurance has pulled together an overview of how we secure U-M into one document to help you answer those questions: U-M IT Security Posture (U-M login required)Note: IT security and compliance is a shared responsibility. This document… Read More »

Review your MCommunity privacy settings

By Matt Ranville, ITS Privacy Office | May 28, 2019

0 Comment

Your profile Your MCommunity profile shows only information related to your U-M affiliation. For U-M staff members, publicly viewable information includes: name, uniqname, email address, U-M affiliation, title, and U-M work phone number and address. You can choose privacy settings for additional information about yourself, such as your notice or description. You can choose whether the additional information… Read More »

Don’t reuse your UMICH password

By Matt Martin, Information Assurance (IA) | May 24, 2019

0 Comment

You put U-M systems and data at risk if you use your UMICH (Level-1) password for non-university services. If you use your UMICH email address and password to establish a personal account (for example, at LinkedIn), and that information is exposed in a data breach, your UMICH account is now at risk. If you have used your UMICH… Read More »

Blue unicorns: The U-M alums who founded Duo Security

By News Staff | May 14, 2019

0 Comment

Co-founded by U-M alums Dug Song and Jon Oberheide, Ann Arbor-based Duo Security sold late last year for $2.35 billion. As one of fewer than 150 privately held companies in the U.S. worth more than $1 billion (known as “unicorns”), Duo became incredibly successful in part by adhering to values besides the bottom line, such as inclusion and community. … Read More »

Unhackable: New chip stops attacks before they start

By News Staff | May 6, 2019

0 Comment

A new computer processor architecture developed at U-M could usher in a future where computers proactively defend against threats, rendering the current electronic security model of bugs and patches obsolete. Called MORPHEUS, the chip blocks potential attacks by encrypting and randomly reshuffling key bits of its own code and data 20 times per second—infinitely faster than a human… Read More »

Your role in implementing new info security standards

By Janet Eaton, ITS Information Assurance | April 23, 2019

0 Comment

illustration of two people holding giant to do list and pencil

No matter what your job at U-M, you have a role to play in implementing the new information security standards and the revised Information Security (SPG 601.27) policy. Your responsibilities could include: Participating in data protection training Reporting suspected or actual IT security incidents Learning and using secure coding best practices Configuring systems to meet minimum security requirements… Read More »