Adobe has released security updates to address vulnerabilities in Adobe Acrobat, Reader, and Flash Player. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.
The Enterprise Security team's mission is to improve the security awareness and profile of the university. This includes making you aware of important cybersecurity new items. A Joint Analysis Report has been released by US-CERT providing details on malicious activities undertaken by Russian Civilian and Military Intelligence Services (RIS).
Enterprise Security has taken a number of steps to cultivate the cybersecurity professionals of tomorrow. Most recently, the team helped host Cooltechgirls’ “Think Like a Hacker” event in early December.
After a short program explaining the security aspects of geocaching, participants worked through a cybersecurity activity that challenged them to use their newly-gained knowledge to tackle a problem similar to one that a security professional might need to solve in real life.
This week we’ve seen a surge of phishing attacks against the university. Most recently we spotted a malicious website posing as a login page for BuckeyeMail and wanted to bring it to your attention. Please avoid clicking on links in emails when possible and always verify you’re at the site you meant to be at before entering user name and password. If you receive an email phish please report it to firstname.lastname@example.org. By informing us, we can more easily target and block other emails and sites from the same source.
Cybersecurity offers fun and challenging careers, and shows like Homeland, CSI Cyber and Mr. Robot have made it cool.
But to really captivate the security geniuses of tomorrow, observing isn’t enough. They want to get involved and be challenged. That’s idea behind CoolTechGirls’ Think Like a Hacker event on Dec. 3.
This week we were pleased to present an iPad to randomly chosen winner, Patient Care Coordinator Jared Bader, of 5 Tower Cardiovascular Inpatient Unit at University Hospital East. It's not too late to sign up for BuckeyePass, a winning proposition for everyone, since it adds an extra layer of protection to your personal information in Employee Self Service (ESS)
We want to alert Ohio State students to a fraudulent scheme involving a third party offering to pay your Ohio State tuition charges in order to save you money. This information has also been shared with students by Ohio State Enrollment Services.
In this scam, a person asks for your Ohio State username and password to pay your tuition charges by credit card. Once you receive a confirmation of the credit card payment, you are instructed to send the person a wire transfer payment or a check for that amount less 5 percent.
Despite receiving a confirmation of the credit card payment, the payment is fraudulent and will eventually be rejected by the credit card company, leaving you with a balance still due to Ohio State.
Winter is coming! IT Security professionals at every organization know that at some point they could be under some kind of cybersecurity attack.
It’s the need for such preparedness that drives the information security industry and the demand for professionals to work in that field. At Ohio State, we have an Enterprise Security internship program to help us develop up-and-coming security professionals for our community and our institution, to aid in thwarting such attacks.
Rockhurst University in Kansas City was targeted with a phishing scam that resulted in the theft of W-2 information from nearly 1,200 university employees. Ohio State was targeted by a similar scheme, but the administrator involved recognized that the email was a phishing message and promptly reported it to email@example.com