Dear Members of the Carnegie Mellon Community,
We are writing to announce the launch of a new service to better protect CMU user accounts and reduce the risk for security breaches.
By now, we have all seen the warnings about the surge in cybercrimes, particularly phishing attacks. Phishing is a tactic used to acquire sensitive information through deceptive emails, texts and other messages that appear to be authentic. As we heighten our awareness to protect our personal identities and data, we also must be aware of the affects phishing has on the university. Phishing campaigns aimed at university accounts have nearly doubled between 2015 and 2016. It is our collective responsibility to protect university resources and the confidential information of our colleagues and fellow students.
The Information Security Office and Computing Services recently announced a Two-Factor Authentication (2fa) service that provides a second layer of protection to increase security of passwords and password protected data, systems and services. The staff in those units have spent several weeks briefing and training various groups, including the University Leadership Council, the Academic Leadership Council, Faculty Senate, Staff Council and academic department heads. We extend our personal thanks to the hundreds of early adopters who have already enrolled.
After careful consideration and discussion with university leadership, we are requiring all faculty and staff members, including all student employees, to add the 2fa protection to their university password by April 20. This security measure is in your best interest, the interest of the university and the individuals we serve. The launch of this new service also brings us in line with most of our peer institutions in terms of information security and privacy.
Please visit www.cmu.edu/computing/2fa/ to register your Andrew account for 2fa. This page also provides details to help you understand the service and how it will affect your login experience. Direct questions about the registration process or 2fa service to the Computing Services Help Center at it-help@cmu.edu or 412-268-4357 (HELP). Thank you for your cooperation in taking this proactive step to increase our digital security and for your continued awareness and diligence in responding to cybersecurity threats.
Sincerely,
Farnam Jahanian
Provost and Chief Academic Officer
Rodney McClendon
Vice President for Operations