Tag: security

Cyber attacks on computer systems and networks to obtain personal information and other confidential data take place on a daily basis.

To maintain the integrity and security of our institution’s data, Michigan State University is taking steps to increase the level of protection in systems amassing sensitive and personal information by implementing two-factor authentication in spring 2015. Read Full Article →

The Security Summit offers a chance for MSU IT staff to discuss security topics including threat monitoring and reporting, vulnerability management, and incident response. Light refreshments will be served.

Space is limited for this no-cost event, so register via EBS.

The Security Summit is sponsored by the MSU Chief Information Security Officer and the MSU IT Council. Read Full Article →

MSU Information Security is warning computer users about a damaging new form of malware called CryptoWall, which has hit MSU’s campus.

Infections can take place in a variety of ways, but the two most common are malicious links and email attachments.

When infected with CryptoWall, all useful files are irrevocably encrypted unless the victim decides to pay a ransom to receive their files back. Read Full Article →

eARM, a new online alternative to the submittal of Access Request Memorandums (ARMs), launched August 11, 2014. eARM is the new application for requesting security access for faculty, staff, and students online.

It was designed to address delays in routing, improve efficiency in requesting access, and support appropriate data transparency and security. Read Full Article →

The 2014 MSU IT Conference will be held on June 10 from 8:00 a.m. to 4:30 p.m.

The conference kicks off at the MSU Union and various breakout sessions will be held throughout the day in nearby buildings on campus.

The MSU IT Conference was started in 2007 to build the information technology community at MSU and encourage collaboration. Read Full Article →

A major security vulnerability called the Heartbleed Bug was disclosed Monday night with serious implications for the entire web.

A security defect was found in a component that is the foundation of security for a large percentage of Internet websites.

The security defect, in a component called OpenSSL, allows attackers to acquire random data from “secure” web servers without logging in. Read Full Article →

Last week a serious Java-based vulnerability was identified by security experts. The vulnerability allows criminals to exploit the opportunity to silently install malware when a hacked site is visited while using the insecure browser plugin.

Users are advised to upgrade to the latest version of Java (currently, it is Version 7 Update 11) immediately, and to only allow Java code to run from known safe sources and that is properly digitally signed. Read Full Article →