Office of IT Security and Compliance
Microsoft released a security advisory on 4/28/14 which impacts Internet Explorer versions 6 through 11. Microsoft is investigating the vulnerability and may issue an out-of-cycle security update to address the issue.
It is the recommendation of campus IT Security to use an alternate browser until Microsoft releases a patch against the vulnerability. Systems still running Windows XP should be upgraded as soon as possible since they are no longer supported with security upgrades and will remain unprotected.
UMB Responds to the (“Heartbleed”) Vulnerability
Security Awareness - Stay Updated with the Latest Cyber Threats and Technologies
IT Security Strategy
Computer security is a serious problem. It's a more vexing problem for campuses and complex organizations where semi-autonomous units have distinct missions, needs and IT systems. The University of Maryland is a case in point. [More]...
Notice Concerning Passwords and Password Protected Screensavers
Users of UMB network resources are required to have a user password at startup and must also “Lock Down" (or log out of) the computer each time the computer is left unattended. Individual user sessions must also initiate a password protected screensaver after a period of no more than thirty (30) minutes of inactivity.
Additional policies issued by schools and departments may be applicable to your use of UMB computing resources. View the latest UMB Computer Workstation Security Policy and other computing policies.
Information about the Campus Anti-SPAM Service
Anti-SPAM and Anti-Virus protection is provided at the campus network gateway for email messages entering the UMB campus. These tools greatly reduce the number of SPAM messages able to get through to campus users' mailboxes. [More]...
Recent Phishing Attempts
CITS has recently seen a noticeable increase in e-mail that looks very official and professional asking for user login credentials. Unfortunately some users fall victim to these attacks. Once the spammers have valid login information, they begin sending messages to the internet using University identity. Because of the high messaging volumes being sent to the internet from the compromised accounts, UMB servers become “blacklisted.” Once UMB servers are blacklisted, even valid messages sent by UMB users are denied!
Fighting spam and not falling victim to social engineering attacks is everyone’s job. Remember that the University will NEVER ask for your user login credentials in an email mail message. Simply delete these messages; DO NOT reply, EVER.
For more details,
If you have any questions please contact the IT Help Desk at 410-706-HELP(4357), or Email Help Desk.
National Cyber Alert System
Campus IT Security Listserver
If you'd like to be added to the UMB Security List to receive updates, please contact Fred Smith.