January 29th – February 2nd is Tax Identity Theft Awareness week. Tax identity theft occurs when someone uses your Social Security number to get a job or a tax refund. The IRS may contact you regarding wages from an unknown employer or they may inform you that more than one tax return was filed in […]
January 28th marks Data Privacy Day with a focus on safeguarding data. In furtherance of the data privacy day mission, please be reminded of the following data protection guidelines and best practices: Data Classification The data you work with with is classified according to the NYU Data Classification Table as follows: Restricted Protected Confidential Public […]
Be on the lookout for phishing campaigns crafted to steal your login credentials. Such phishing campaigns occur via the delivery of unsolicited email from known businesses, entities or services. Current phishing campaigns which employ this strategy are email purporting to come from Amazon and Microsoft Outlook Web Access (OWA). These particular phishing emails request that […]
Please note that Adobe has released security updates to address a vulnerability in Flash Player. A malicious attacker could exploit this vulnerability and gain access to sensitive information. We recommend that users and admins apply the updates. For more information, please see: Adobe Security Bulletin: https://helpx.adobe.com/security/products/flash-player/apsb18-01.html Safely Installing Flash Updates: https://wp.nyu.edu/itsecurity/2017/08/25/safely-installing-flash-updates/
Safeguard the valuable data on your mobile devices with the following tips: Secure mobile devices and with strong passwords (which are long, unique & difficult to guess) or a touch id feature, and do not share your password(s). Enroll your devices (smartphones or tablets) in NYU Multi-Factor Authentication (“ NYU MFA”). MFA provides a second […]
Thirty-six apps that were available via Google Play were recently found to harvest user data, track the location of users and bombard users with spam. Trend Micro notified Google of the issue and all of the apps have been removed from Google Play. Excluded devices are: Google Nexus 6P, Xiaomi MI 4LTE, ZTE N958St and […]
Security vulnerabilities have been identified in computer chips manufactured by Intel, ARM and AMD. The specific vulnerabilities are as follows: The “Meltdown” bug has to do with the ability of running user processes to access protected kernel memory, essentially a privilege escalation attack. The applies to all machines which use Intel X86 processors, MAC, PC […]
Shortened URLs are commonly used and circulated to others. It’s important to be cognizant of the risks associated with shortened URLs, specifically: Shortened URLs mask the true link destination and use of shortened URLs is a common ploy in phishing messages where clicking a malicious link can trigger the installation of malware. Scammers may attempt […]