Can machine learning make your day easier? Check out this article from Google about some of the features they’ve added to G Suite (Denison Apps).

The below email was sent to faculty/staff on Friday 5/12. The ITS Help Desk has since received a number of reports of failed updates and is working to investigate these as quickly as possible. ITS will be directly contacting those who our records show have computers missing the Windows patch that protects against the current ransomware attack and will address those as the top priority.

EMAIL SENT FRIDAY PM 5/12/17
Subject: [DUFacStaff] ALERT – PLEASE TAKE ACTION – Global Ransomware Attack on Windows PCs

To all campus Windows PC users:

Summary
We have been alerted to a worldwide ransomware attack on Windows pcs going on right now. Windows computer users need to immediately apply patches and reboot their computer if their system updates are out of date.

Detail
This attack began around 3:00PM today. It exploits a vulnerability in what appears to be all Windows operating systems. Windows systems (PCs and servers) that do not have current security patches are vulnerable to this cyber attack which could lock down and encrypt your computer hard drive until a ransom is paid. Once a single person clicks on the phishing message, the virus could spread throughout the entire network.

ITS has scanned all computers on campus (with the exception of personally managed systems) and have found 81 computers across campus that have downloaded the Windows updates, but have not taken the time to apply the updates.

It is CRITICAL that you verify that your PC has applied the most recent Windows operating system security update in order to secure your system and university data.

If you are running Windows 7 – Click start, type “windows update” in the search box, then click “Windows update” in the search results. In the left pane click “Check for updates”.

If you are running Windows 10 – Click the “Search Windows” icon next to the start button, type “check for updates” and click the result of the same name. On the window that appears, click “check for updates”.

For questions, please contact the ITS Help Desk 740.587.6395 or helpdesk@denison.edu. Staff will be available Monday morning to assist.

PS: Check your home computers also!

Update: The Banner maintenance has been completed.

ITS will be performing Banner (INB) and Self-Service Banner (SSB) maintenance and upgrades, Sunday, 5/21 – 6:00 AM to 3:00 PM. Banner and all related systems will be unavailable during this maintenance window.

If you have any Banner related problems, please contact the Helpdesk @ helpdedesk.denison.edu or 740-587-6395.

May edition:

Securing Today’s Online Kids

(https://securingthehuman.sans.org/newsletters/ouch/issues/OUCH-201705_en.pdf)

OUCH! is the world’s leading, free security awareness newsletter designed for the common computer user. Published every month and in multiple languages, each edition is carefully researched and developed by the SANS Securing The Human team, SANS instructor subject matter experts and team members of the community. Each issue focuses on and explains a specific topic and actionable steps people can take to protect themselves, their family and their organization.

UPDATE: 5.3.17 6:30PM  As of 5:30PM EST Google has fixed the issue that caused a worldwide sophisticated phishing attack today.

Google spokesperson reports, “We have taken action to protect users against an email impersonating Google Docs, and have disabled offending accounts. We’ve removed the fake pages, pushed updates through Safe Browsing, and our abuse team is working to prevent this kind of spoofing from happening again.”

This Google docs phishing email worked like this: You get an email saying someone added you to a Google Doc; click this link to view it. That takes you to a legitimate account screen, listing all the Google accounts you’re logged into. From there, you choose the one you want to use to view the document (or log in, if you weren’t already authenticated in your browser). There, a malicious service called “Google Docs” awaits, asking for privileges to access your account, your contacts, your password rests, your emails, everything.

Both Google and Denison ITS are working on cleaning up any account who has “Google Docs” showing as an app connected to your Denison account.  However, ITS recommends that you also take the following action to verify your account.

If you already clicked this type of link today (or any day), go to the Permissions page of your Google account and revoke access to the service called “Google Docs.”  Then, we recommend that you change your password.

source: google, www.wired.com, www.theverge.com

5.3.17 3:30PM ITS has received a flood of reports of scam email messages from Denison accounts titled “(Denison Account) has shared a document on Google Docs with you”. Please DO NOT click the “Open in Docs” link in this message. ITS is working to block these scam messages. If you did click on this link, please follow the steps in this FAQ including changing your BigRedID password immediately: http://apps.denison.edu/helpdesk/faq3422.

If you are being prompted to update Java, ITS recommends that you do NOT update Java at this time. Choose the “Later” or “Run” option when prompted.

If you have already updated Java to the new update (update 131):

• If you copy/paste into Banner, you will want to roll back to the prior Java update. Please contact the ITS Help Desk to request assistance doing so.
• If you do NOT copy paste into Banner, you can use update 131 but will need to need to adjust your Java security settings. Please see this ITS Help Desk Online FAQ for instructions: http://apps.denison.edu/helpdesk/faq4552.

If you have any questions or problems, please contact the ITS Help Desk at 740-587-6395 or helpdesk@denison.edu.

April edition:

Passphrases

(https://securingthehuman.sans.org/newsletters/ouch/issues/OUCH-201704_en.pdf)

OUCH! is the world’s leading, free security awareness newsletter designed for the common computer user. Published every month and in multiple languages, each edition is carefully researched and developed by the SANS Securing The Human team, SANS instructor subject matter experts and team members of the community. Each issue focuses on and explains a specific topic and actionable steps people can take to protect themselves, their family and their organization.