Cybersecurity Awareness Month is now in its 18th year. The effort serves as a timely reminder for organizations across all sectors to reevaluate their cybersecurity posture. For 2021, the theme is ‘Do Your Part. #BeCyberSmart,’ helping to empower individuals and organizations to own their role in protecting their part of cyberspace. Throughout October, we will […]
Use Duo Push As you may know, Duo is an app that can be used when authenticating to NYU-NET. Not only is Duo Push the most secure way to use NYU Multi-Factor Authentication (MFA), it’s easy to switch! Here’s how. Learn More and Get Help To learn more about MFA, see these MFA knowledge articles. […]
Welcome to week four of NCSAM! This the final week of movie ticket pair give-aways. Listen to the following video and then take the quiz for your chance to win!
VMware has issued a critical security alert for VMware ESXi (ESXi) VMware vCenter Server VMware Workstation Pro / Player (Workstation) VMware Fusion Pro, Fusion (Fusion) regarding a number of issues. The most important is an out-of-bounds write vulnerability in VMware’s products allows guests to break out of their isolation. This means a malicious actor who […]
Researchers at Checkpoint, Inc. have found a family of malware which, when installed on vulnerable Android OS version 4 (Ice Cream Sandwich, Jelly Bean, and KitKat) and version 5 (Lollipop) gives the hacker full control of the device. Then it steals Google credentials to give the hackers access to all Google apps. The malware can […]
Strong passwords and the use of a password manager to manage the many strong passwords you create are essential to keeping your data secure. For more information on password best practices, and password manager FAQs and recommendations, please see: Under Lock and Passphrase
Following last week’s announcement of iOS critical vulnerabilities and their patches, Apple has issued similar patches for OS X Yosemite v10.10.5 and OS X El Capitan v10.11.6. See details on the vulnerabilities in our last post and below for links to the updates and more details. More info here: https://support.apple.com/en-us/HT207130 https://www.grahamcluley.com/2016/09/mac-users-vulnerable-state-sponsored-trident-attack-fixed-ios-week-patch/
Spam is unsolicited bulk email. The key term is “unsolicited” — if you signed up for a mailing list (commercial or otherwise) which you no longer wish to receive, that is not spam. The easy differentiation is that legitimate businesses will have a mailing policy posted on the site where you sign up for the […]
Microsoft has released an update that has been deemed critical for Internet Explorer affecting all supported versions from IE7 through 11. Microsoft says that the vulnerability could allow an attacker to take control of an affected system, and went to the somewhat unusual step of releasing patches out of its normal Patch Tuesday cycle for […]
A vulnerability which could allow an attacker to take control of any Android device that can receive text messages (phones, and some tablets with cellular service (AT&T, T-Mobile, Verizon, etc)) has been discovered. The vulnerability requires no interaction on behalf of the user, which would allow them to take control of the device, compromising any data stored on […]