Center for Information Technology Services

Office of IT Security and Compliance

PUBLIC ADVISORY: Recent University Payroll Theft Schemes

Cyber Security Awareness Month Never Ends!

October, 2014 ended the 10th Annual Cyber Security Awareness Month.  The Center for Information Technology Services has provided the campus community with a lot of information about how to stay safe online.  The end of the month, however, should not be the end of awareness.  The number of malicious attacks, phishing attempts, identity thefts, and data breaches are increasing dramatically.  To give everyone a toolkit to help with Internet safety we offer the following links:

Would you know what to do if you were a cyber-crime victim? Here is a Victims of Cybercrime Tip Sheet. On Twitter, visit: #NCSAM.

Have you spotted or been a victim of an online scam?  The Federal Trade Commission’s Complaint Assistant is a good resource for reporting it.

Online scams are becoming more sophisticated and harder to detect every day.  Stay up to date about online scams and report suspicious activity you encounter.

If you would like to know how risky your normal online practices are? You can use the Online Identity Risk Calculator.

Remember: Stop. Think. Connect.

Security Awareness - Stay Updated with the Latest Cyber Threats and Technologies


IT Security Strategy
Computer security is a serious problem. It's a more vexing problem for campuses and complex organizations where semi-autonomous units have distinct missions, needs and IT systems. The University of Maryland is a case in point. [More]...

Notice Concerning Passwords and Password Protected Screensavers
Users of UMB network resources are required to have a user password at startup and must also “Lock Down" (or log out of) the computer each time the computer is left unattended.  Individual user sessions must also initiate a password protected screensaver after a period of no more than thirty (30) minutes of inactivity.

Additional policies issued by schools and departments may be applicable to your use of UMB computing resources.  View the latest UMB Computer Workstation Security Policy and other computing policies.

Information about the Campus Anti-SPAM Service
Anti-SPAM and Anti-Virus protection is provided at the campus network gateway for email messages entering the UMB campus.  These tools greatly reduce the number of SPAM messages able to get through to campus users' mailboxes.  [More]...

Recent Phishing Attempts
CITS has recently seen a noticeable increase in e-mail that looks very official and professional asking for user login credentials.  Unfortunately some users fall victim to these attacks.  Once the spammers have valid login information, they begin sending messages to the internet using University identity. Because of the high messaging volumes being sent to the internet from the compromised accounts, UMB servers become “blacklisted.”  Once UMB servers are blacklisted, even valid messages sent by UMB users are denied!

Fighting spam and not falling victim to social engineering attacks is everyone’s job.  Remember that the University will NEVER ask for your user login credentials in an email mail message.  Simply delete these messages; DO NOT reply, EVER.  

For more details,

If you have any questions please contact the IT Help Desk at 410-706-HELP(4357), or Email Help Desk.

National Cyber Alert System

Campus IT Security Listserver
If you'd like to be added to the UMB Security List to receive updates, please contact Fred Smith.