Center for Information Technology Services

Office of IT Security and Compliance

Microsoft released a security advisory on 4/28/14 which impacts Internet Explorer versions 6 through 11.  Microsoft is investigating the vulnerability and may issue an out-of-cycle security update to address the issue.

It is the recommendation of campus IT Security to use an alternate browser until Microsoft releases a patch against the vulnerability.  Systems still running Windows XP should be upgraded as soon as possible since they are no longer supported with security upgrades and will remain unprotected.

Heartbleed Image UMB Responds to the (“Heartbleed”) Vulnerability

Security Awareness - Stay Updated with the Latest Cyber Threats and Technologies

SANS

IT Security Strategy
Computer security is a serious problem. It's a more vexing problem for campuses and complex organizations where semi-autonomous units have distinct missions, needs and IT systems. The University of Maryland is a case in point. [More]...

Notice Concerning Passwords and Password Protected Screensavers
Users of UMB network resources are required to have a user password at startup and must also “Lock Down" (or log out of) the computer each time the computer is left unattended.  Individual user sessions must also initiate a password protected screensaver after a period of no more than thirty (30) minutes of inactivity.

Additional policies issued by schools and departments may be applicable to your use of UMB computing resources.  View the latest UMB Computer Workstation Security Policy and other computing policies.

Information about the Campus Anti-SPAM Service
Anti-SPAM and Anti-Virus protection is provided at the campus network gateway for email messages entering the UMB campus.  These tools greatly reduce the number of SPAM messages able to get through to campus users' mailboxes.  [More]...

Recent Phishing Attempts
CITS has recently seen a noticeable increase in e-mail that looks very official and professional asking for user login credentials.  Unfortunately some users fall victim to these attacks.  Once the spammers have valid login information, they begin sending messages to the internet using University identity. Because of the high messaging volumes being sent to the internet from the compromised accounts, UMB servers become “blacklisted.”  Once UMB servers are blacklisted, even valid messages sent by UMB users are denied!

Fighting spam and not falling victim to social engineering attacks is everyone’s job.  Remember that the University will NEVER ask for your user login credentials in an email mail message.  Simply delete these messages; DO NOT reply, EVER.  

For more details,
See: http://www.umaryland.edu/helpdesk/general/phishing.html

If you have any questions please contact the IT Help Desk at 410-706-HELP(4357), or Email Help Desk.

National Cyber Alert System

Campus IT Security Listserver
If you'd like to be added to the UMB Security List to receive updates, please contact Fred Smith.

Quality Assurance, Policy, and Planning Support

The Quality Assurance, Policy, and Planning Support area is responsible for formulating organizational policies and practices as well as focusing on process improvement and ensuring quality products and services. Some of the activities include:

  • Performing product reviews, walkthroughs, audits, and testing
  • Developing CITS organizational policies and practices and maintaining the CITS on-line Policies and Practices manual
  • Supporting development of campus-wide UMB policies and practices
  • Supporting Legistlative, UM System and external audit activities

Staff:

Carol Nelson, Manager
410-706-4159