2013-Computing Services ISO - Carnegie Mellon University

2013

Thursday, November 14, 2013

Security Advisory: CryptoLocker Malware Restricts Access to Computer Files

Malware known as CryptoLocker is affecting Windows computers across the Internet and here on campus. Cryptolocker encrypts the infected computer’s documents so that they are no longer usable and then displays a webpage demanding payment to restore them. It can encrypt files located on shared network drives, USBs, external hard drives and even cloud storage drives.

For information on the security advisory and on What You Need to Do, please read the entire security advisory message on CryptoLocker Malware Restricts Access to Computer Files.

 MORE
Friday, October 4, 2013

Focusing on Mobile Device Security during 2013 NCSAM

In observance of 2013 National Cybersecurity Awareness Month, the Information Security Office (ISO) held a Mobile Device Security event onOctober 3rd, 2013 at the UC Rangos from 11:00 a.m. to 5:00 p.m. At the event, mobile carriers, vendors, researchers, the ISO and other University entities exhibited their mobile devices and demonstrated security and privacy configurations, answered questions, provided training material, discussed research reports, and shared security solutions.

Information on the event, participating entities, prizes and more is available at Focusing on Mobile Device Security during 2013 National Cybersecurity Awareness Month (NCSAM) .

 MORE
Wednesday, April 24, 2013

Security Alert: Critical Vulnerabilities in Java 6 and 7

Multiple new security vulnerabilities have been discovered in Java and are being actively exploited to compromise computers. Oracle has released new versions of Java 6 and 7 to correct these vulnerabilities. All Java users should update to new versions as soon as possible. The Information Security Office will continue to monitor for and block known malicious websites and will also notify users of vulnerable computers on the campus network. MORE
Monday, February 4, 2013

Security Alert: Critical Vulnerabilities in Java 6 and 7

Multiple new security vulnerabilities have been discovered in Java, one of which is being actively exploited to compromise computers. Oracle has released new versions of Java 6 and 7 to correct these vulnerabilities.  All Java users should upgrade as soon as possible.  The Information Security Office will continue to monitor for and block known malicious websites and will also be monitoring for and notifying users of vulnerable computers on the campus network. MORE
Tuesday, January 15, 2013

Security Alert: Critical Vulnerability in Internet Explorer 6, 7 & 8

A critical vulnerability has been discovered in Internet Explorer that could be exploited to compromise computers. Microsoft has released a security update to correct this vulnerability. All Microsoft Windows users should run Windows Update to ensure this latest security update is installed. The Information Security Office will continue to monitor for and block known malicious websites that are exploiting this vulnerability. MORE
Tuesday, January 15, 2013

Security Alert: Critical Vulnerability in Java 7 (or 1.7)

A new critical vulnerability in Java is being actively exploited to compromise computers. Oracle has recently released Java 7 Update 11 to correct the issue. All users of Java 7 should upgrade to Java 7 Update 11 as soon as possible. The Information Security Office will continue to monitor for and block known malicious websites as well as monitoring for and notifying users of vulnerable computers on the campus network.

 MORE