During our regular maintenance window this Sunday, Oct 25th from 6 am – 10 am we have the following activities scheduled:
One of our two Internet circuits will be down for maintenance and upgrades from 7am to 10am. We have sufficient redundancy between providers that there will be no Internet outage during this maintenance. Some sensitive systems will alert as routing paths change during failovers.
The ability to setup new VDI sessions will be down for about 10 minutes during server maintenance
We appreciate your patience as we continuously strive to keep our systems functioning optimally.
October is Cybersecurity Awareness Month. Join your colleagues from both the Middlebury and Monterey campuses for a presentation and discussion on critical cybersecurity issues including phishing and cracking.
On October 29th at 12:30 Eastern time, Information Security will host a Cybersecurity Roadshow.
You can join the discussion in Lib105A on the Middlebury Campus or on PolyCom 710205
Central Monterey meeting location McCone Boardroom
Please join us for this discussion. It is open to students, faculty, staff and the community. Computer security is the responsibility of us all.
For more information call Information Security at 802-349-5805
At 3:07pm (ET) Google made us aware they they were investigating issues with Google Drive and related services like Docs, Sheets, and Slides. These issues affected all Google Apps customers, not just Middlebury. As of 5:37pm (ET), Google Apps services appear to be back up.
Please note that there was an unexpected disruption to Middlebury’s incoming email services this morning. The issue has since been resolved. Please see below for more details.
Between 8:30 AM and 10:00 AM (ET), Middlebury’s email system was unable to receive incoming email sent from external addresses. Email messages sent to @middlebury.edu and @miis.edu email addresses from external addresses were rejected by Middlebury’s email servers. External senders would have received a “Non-Deliverable Notice” notifying them of the problem. Internal email messages, i.e. messages sent from @middlebury.edu or @miis.edu addresses, were not impacted.
The problem was corrected at approximately 10:00 AM (ET). External senders should be advised to resend messages that were rejected before the problem was resolved.
Middlebury ITS Information Security is currently investigating indications that members of the Middlebury community are using iOS apps infected with the recently discovered XCodeGhost malware.
XCodeGhost-infected apps can potentially steal private information and even launch phony authentication dialogues that can be used to attempt to steal usernames and passwords. Despite this capability, no information has yet come to light indicating that the infected apps were used for malicious purposes, such as harvesting personally identifiable information or stealing passwords
The majority of the XCodeGhost-infected apps were authored by Chinese developers who were tricked into downloading fake Apple development libraries. Therefore, the greatest impact of the XCodeGhost appears to be in China. Some apps have been identified, however, that have world-wide use, including WeChat, Baidu, and others.
If you have an iOS device, our recommendation is that you remove from the device any apps known to be compromised with XCodeGhost. Download and reinstall the app from the Apple App Store once a fixed version has been made available.
ITS has begun enabling new, proactive anti-spam and anti-phishing email filters intended to improve the filtering of unsolicited and unwanted messages, by leveraging external reputation-based lists of email servers that have been flagged for sending spam and/or malicious email.
We’ve had the new filters in “Tag” mode since October 2014, so we’re confident that they are accurate and we’ll be closely monitoring incoming mail queues during the days after the change. Still, there is a possibility that someone trying to sending you email will have their message blocked, if their email servers have been flagged for sending spam and/or malicious email. The sender, in such cases, will receive an email advising them that their message could not be delivered.
If you encounter such as scenario, (i.e. a legitimate sender is trying to email you, but the message is being blocked by Middlebury’s email servers), or you have noticed legitimate messages recently having been incorrectly tagged as [SPAM?], please contact the ITS Help Desk at firstname.lastname@example.org and we will help you identify and resolve the issue.