Please note that NYU IT has replaced two data-centric policies (Data Classification Table and Reference for Data and System Classification) with the new Electronic Data and System Risk Classification Policy, which incorporates necessary General Data Protection Regulation (“GDPR”) data-centric information. Please consult this policy for information on how NYU classifies information assets into risk based […]
As an update to our 12/05/18 post on the Marriott breach, please be advised that Marriott has provided an update on this security incident, which details the number of guests, passport numbers and payment cards impacted by the breach as well as guest monitoring/support resources. Marriott states that they will be putting a mechanism in […]
As an update to our September 24th post entitled Free Credit Freezes and Year-Long Fraud Alerts Now Available, please note that Equifax and TransUnion have abandoned the use of PINS in connection with the online unfreezing of frozen credit files. However, if you are seeking to unfreeze your credit file via phone, a PIN is […]
As of September 21st, Equifax, Experian and TransUnion are required to offer free credit freezes and year-long fraud alerts nationally to all consumers. These initiatives are part of broader financial legislation, which was signed in May. Please be advised of the following: A credit or security freeze restricts access to your credit file and thereby […]
As part of NYU’s commitment to help protect the University’s networks and data, NYU IT will launch a new email security feature on September 28 at 8pm ET. In compliance with NYU IT’s security policies, email protection is a priority. The University’s existing email security tool prevents external email with known malicious URLs from reaching […]
As an update to our 1/4/18 post entitled Computer Chip Vulnerabilities: Meltdown & Spectre and our 2/26/18 post entitled Spectre Patches Available, please be advised of the following NJCCIC (New Jersey Cybersecurity & Communications Integration Cell) resource dedicated to the Meltdown and Spectre vulnerabilities. The Meltdown and Spectre Product Vulnerability and Update List summarizes the incident […]
Did you know? October is National Cyber Security Awareness Month (NCSAM)! The goal of NCSAM is to promote awareness of the information security risks and threats we face daily. The themes we’ve chosen for the month are ransomware, and passwords. Please visit our Security Awareness page for more information, and links to resources. What can […]
We recommend that you update your install of Symantec Endpoint Protection (anti-virus software) to the recent version (March 2016 update, 12.1.6). This update address the security vulnerabilities detailed below. To install the updated version of Symantec, please visit: https://home.nyu.edu, and click Ask NYU IT. The Symantec update will be available in the Software section at […]
Google Chrome is now using Safe Browsing technology to protect browsers from shady websites or deceptive advertising on legitimate sites. This initiative by Google addresses the threat of social engineering, which could involve: deceptive download buttons an ad on a legitimate website pretending to offer an update a warning claiming the system is out of […]
*Please note that these new features are currently available in free Gmail accounts, and are not yet available in Google Apps for Education. Google has announced new authentication features for Gmail which will make it easier to identify emails that arrive from, or are being sent to unsecured or unencrypted connections. Emails arriving from unsecured […]