What’s New – IT Security

Locating Our Confidential Data

Identity Finder is being installed to help reduce our risk.

In an effort to try and detect confidential data on university-owned systems and reduce the risk that UMBC will be the source of a data breach, UMBC has worked with the university system to...

Posted: June 9, 2015, 10:01 AM

Recent Phishing Email Messages

How to Identify and Report Phishing Messages.

UMBC has recently been the target of an increasing number of phishing messages.  These phishing messages appear to come from the UMBC Division of Information Technology or another university...

Posted: April 28, 2015, 10:08 PM

Critical Security Flaw in Core Linux Library

Allows for complete control of a system with no credentials

Earlier this week a critical security flaw in the gethostbyname() function of glibc in Linux was exposed. This effects many major linux distributions including Redhat 5 and Redhat 6 Enterprise....

Posted: January 31, 2015, 10:59 AM

Warning: Email Phishing Attacks Targeting Faculty & Staff

Never give out your username or password

DoIT continues to receive reports of faculty and staff receiving that is part of a targeted "phishing" attack to steal your username and password information or infect your computer.  One...

Posted: April 10, 2014, 12:48 AM

UMBC Response to Heartbleed Security Incident

Issue potentially affects "https" web sites using Open SSL

A major security vulnerability named Heartbleed was disclosed Monday night.  The vulnerability affects a large portion of websites on the Internet, and here at UMBC, that use the "https:" protocol...

Posted: April 9, 2014, 7:40 PM

Everyone Must Reset Password and Create Security Questions

Deadline: May 23, 2014

Update: Given recent IT security threats generally, DoIT has decided to force the password change to May 23, 2014, the day after Undergraduate Commencement. Thank you in advance for your patience...

Posted: April 2, 2014, 10:57 PM

Phishing Scam Alert - Subject: IT Service Help Desk

UMBC would never ask "users are to verify there accounts."

A new phishing scam is threatening to deactivate email accounts. This email is not from UMBC. Do not click this link. Here's what's being received: "This E-mail is sent by the HelpDesk...

Posted: November 11, 2013, 12:48 PM

Phishing Scam Alert: Fake Blackboard Notifications

Blackboard email notifications do not require you to sign in

A new phishing scam is attempting to fool people into providing personal information by claiming that there is a Blackboard notification waiting for them, and provides a link for logging into...

Posted: October 10, 2013, 2:09 PM