Tags » ITS

 
 
 

Security Notification: Ransomware Delivered Through Phishing Attacks

Categories: Midd Blogosphere

A year ago the Internet saw a rash of malware known as ransomware. This malicious form of cyber attack is known for infecting a computer and encrypting a drive. The victim is then unable to recover their data until paying a ransom to the attacker. Middlebury, like many other institutions was not immune to this form of attack.

A week ago the FBI announced a new variant on a common form of these attacks known as CryptoWall. This form of ransomware is known to have four methods of infecting a computer.

  • Phishing: the attacker may lure a victim into downloading an infected attachment through a phishing campaign and thereby compromising the drive on their system.
  • Phishing: the attacker lures the victim into clicking on a link to a malicious web site where the victim unknowingly downloads the malicious software onto their system and compromises their drive.
  • Infected ad: the attacker posts and infected ad on a website which a user might click thereby causing the download of malicious software.
  • Compromised website: the attacker compromises a website so when a user visits the website they unknowingly download malicious software and compromise their system.

According to the FBI, by far the most common method of attack is phishing, particularly with attachments in the message.

What you can do to protect yourself:

  • Never open attachments or click links in emails that you do not recognize or trust.
  • Know what a phishing attack is and how to spot one. visit http://go.middlebury.edu/phish or http://phishing.org
  • If you think you have fallen for a phish change your password. then call x2200
  • If you believe you system is compromised, unplug it from the power and the network. Shut it down immediately. Do not worry about saving your work. then call x2200.
  • Backup your data routinely. If you save your data to Middfiles or your home directory it will be backed up automatically.
  • Never disable your antivirus software.
  • Send any suspect emails to phishing@middlebury.edu
  • Only download software from known vendor sites.
  • Don’t click on ads in web sites. Visit vendor websites directly.

Sources:

Systems Maintenance this Sunday, June 28th

Categories: Midd Blogosphere

During our regular maintenance window this Sunday, June 28th from 6 am – 10 am we have the following activities scheduled:

 

  • We will be moving telephone equipment starting at 6am. There will be an outage of telephone services lasting up to one hour while the equipment is being moved. The outage has the potential to include access to voicemail as well as incoming and outgoing calls across the Middlebury VT campus, Bread Loaf, and Snowbowl locations.

 

We appreciate your patience as we continuously strive to keep our systems functioning optimally.

 

Regards,

Billy

 

 

Billy Sneed

ITS – Central Systems & Network Services

Middlebury College

Systems Maintenance this Sunday, June 14th

Categories: Midd Blogosphere

During our regular maintenance window this Sunday, June 14th from 6 am – 10 am we have the following activities scheduled:

 

  • We will be upgrading the physical links for Internet path from the Middlebury LAN to the Internet. This maintenance will see up to a dozen brief (1-2 minutes) Internet outages over the course of the maintenance window.

 

We appreciate your patience as we continuously strive to keep our systems functioning optimally.

 

Regards,

Billy

 

 

Billy Sneed

ITS – Central Systems & Network Services

Middlebury College

Systems Maintenance this Sunday, May 31st

Categories: Midd Blogosphere

During our regular maintenance window this Sunday, May 31st we have the following activities scheduled:

 

  • We will be upgrading the border firewalls at the Vermont campus. This has the potential to impact all Internet connectivity as well as the VPN connection to the Monterey campus. The firewall is setup in a highly-available configuration which should help keep service outage to a minimum.

 

We appreciate your patience as we continuously strive to keep our systems functioning optimally.

 

Regards,

Billy

 

 

Billy Sneed

ITS – Central Systems & Network Services

Middlebury College

Retirement of Bombay Print Server

Categories: Midd Blogosphere

Middlebury College is retiring the Bombay print server in July 2015 as it is incompatible with our current 64-bit operating systems. Bombay has been replaced by a new print server named Walnut that has all of the same print queues on it. ITS is reviewing Bombay usage and will be contacting individuals who need to transition to the new print server.

If you’re currently using the Bombay Print Server you must perform the following steps before July 1, 2015 so you do not experience an interruption in printing services:

Steps for Windows 7 computers to move from Bombay to Walnut:

  1. look for printers “on Bombay” print server name listed below queue name. Go to Start>Devices and Printers and look for entries that have “on Bombay” in the name, e.g. “LIB125F on Bombay”
  2. record printer queue names
  3. remove old print queues
  4. add printers from Walnut

Instructions for these steps can be found in our printing documentation: http://mediawiki.middlebury.edu/wiki/LIS/Connect_To_Network_Printers_-_Windows

Steps for Macintosh OS X computers to move from Bombay to Walnut:

  1. record printer queue names(the names are posted on the printers)
  2. remove old print queues
  3. add printer from Walnut via Casper’s Self Service(or manually)

Instructions for these steps can be found in our printing documentation: http://mediawiki.middlebury.edu/wiki/LIS/Connect_To_Network_Printers_-_Mac_OS_X

If you have any questions or need further assistance, please contact the Helpdesk at 802. 443.2200 or via email to helpdesk@middlebury.edu.

Key Survey / WorldApp Services Restored

Categories: Midd Blogosphere

KeySurvey Logo

As of 8:15 pm today (Fri, 5/15/15), Key Survey functionality has been restored.  WorldApp is conducting a thorough investigation and will be sharing full details with us as soon as they are available.

 

 

 

Key Survey / WorldAPP Service Interruption – Update

Categories: Midd Blogosphere

KeySurvey Logo

The login and survey access issues with Key Survey have not yet been resolved.  Here is the latest information received from their support team:

From: WorldAPP Support [mailto:support@worldapp.com]
Sent: Friday, May 15, 2015 1:30 PM
Subject: WorldAPP System Interruptions

Today, WorldAPP services, including Key Survey, Form.com and associated applications, have been subject to a service disruption. Below is a brief overview of what caused the issue and the actions we’re taking to restore services as quickly as possible.

Recently, a CPU on one of the servers that our applications use to access our database started failing. Whilst the failure of one CPU doesn’t cause disruption to our services, it does require maintenance so that should the others fail, our applications aren’t impacted. Yesterday evening, our team migrated services to our disaster recovery environment to enable the required maintenance to take place. This is common practice during periods of maintenance to enable continuation of service and has been regularly implemented without effect.

After a few hours of operating on the disaster recovery environment, for reasons yet unknown, the disaster recovery environment failed. Our team took immediate steps to bring the environment back online and are working very hard on restoring services in order of priority, with the most critical services being the first to be restored. As this process continues, we’ll provide further updates on our community pages here.

As we continue to experience service disruption, our applications will remain unavailable and respondents attempting to complete a survey or form will be directed to an error page. We are incredibly sorry for the frustration that this disruption is causing you, and assure you we’re working as hard as we can to restore full service as quickly as possible.

Yours sincerely,
Teresa Crisci
Director of Client Services

By: WorldAPP, Inc.
161 Forbes Rd Ste 300, Braintree, MA, 02184, US