Cyber Essentials is a UK Government backed scheme, providing a proactive approach to guarding against a range of common cyber-attacks. This is achieved through the strengthening of five key areas: Securing of your Internet connection Securing of your devices and software Controlling access to your data and services Protection against viruses and other malware Keeping … Continue reading “Cyber Essentials”
Category: Uncategorized
Apple Release Important Security Patches
Apple has released a fix for the newly discovered security exploit that affects iPhones, iPads, and Macs which can spread malware via iMessage. If you use any Apple devices you should immediately update them to ensure that you are fully protected. Further information can be foulnd in the following articles. https://www.techrepublic.com/article/apple-releases-emergency-patch-to-protect-all-devices-against-pegasus-spyware/ https://www.techrepublic.com/article/apple-releases-emergency-patch-to-protect-all-devices-against-pegasus-spyware/ https://support.apple.com/en-ca/HT212807
Increase in Blackmail Scams (Sextortion)
We are getting more reports of sextortion scams, which are a type of blackmail. These look very similar to the ones highlighted in a previous blog article. The method of operation and advice remain the same. Click here for the original article and advice on what top do if you have received one. We do … Continue reading “Increase in Blackmail Scams (Sextortion)”
Password Spray Attacks
The NCSC recently issued an advisory on password spray attacks. The attacks are aimed at health care organisations involved in the coronavirus response, including research. The University is a potential target. In password spray attacks, attackers use a few easy to guess passwords and try them against multiple accounts. Attacking in this way does not … Continue reading “Password Spray Attacks”
New Password Expiry Notice
IT security policy requires password changes every 180 days. In order to achieve this, passwords are set to expire approximately every 180 days. Warnings and reminders are sent in the period running up to password expiry times. The password expiry noticed issued by IT Services has changed recently. The new notice looks like this. If … Continue reading “New Password Expiry Notice”
Meltdown and Spectre – time to panic?
We have had a number of queries about the well-publicised processor vulnerabilities, Meltdown and Spectre. There are no reports of actual exploits being used at this stage and certainly with meltdown an attacker would need access to the systems concerned in order to exploit the vulnerabilities. Suppliers of operating systems, anti-virus and other relevant software … Continue reading “Meltdown and Spectre – time to panic?”
Student Password Change Notices
We have had a lot of queries recently about password change reminders and whether or not they are a phishing attack. We have previously published an example password change notice highlighting its characteristics and how it differs from an attack. Some students have been asking why there has been a change in policy. The policy … Continue reading “Student Password Change Notices”
Important Message From Staff Portal
We have a huge number of reports of a phishing campaign which many people have recognised as such. Some, however, appear to have been taken in by this. Initial versions came from outside the University which were easy to spot as bogus. However, once some people had given their passwords away their accounts were then … Continue reading “Important Message From Staff Portal”
Fake Email Administrator Message
Quite a few people have received a message asking you to login to “reset” their email. This is something that IT services would never ask you to do. It is similar to others that have asked you “verify” your email. As it generated a few queries, I am posting an example with an explanation of … Continue reading “Fake Email Administrator Message”