Visitors Updates
Hy-Vee Issues Warning to Customers After Discovering Point-of-Sale Breach
UPDATE: Hy-Vee now has a page that provides dates and locations that were affected by this breach. Visit https://www.hy-vee.com/paymentcardincident/ to check for dates and locations when your card information may have been stolen.
Though the firm cannot cite specific locations in which its point-of-sale (PoS) systems were affected due to an ongoing investigation, supermarket chain Hy-Vee notified its customers this week that a security breach occurred on certain systems. Thus far, it's believed that transactions at "Hy-Vee fuel pumps, drive-thru coffee shops, and restaurants (Market Grilles, Market Grille Expresses, and Wahlburgers)" may be vulnerable to hackers. A spokesperson said, "We believe the actions we have taken stopped the unauthorized activity on our payment processing systems."
Registers in Hy-Vee grocery stores utilize a different system and are reportedly not affected in the same way as those in the auxiliary enterprises. More information is available on the Hy-Vee site at https://www.hy-vee.com/corporate/news-events/announcements/notice-of-payment-card-data-incident/
Mobile devices, such as smartphones, smart watches, and tablets, continue to advance and innovate at an astonishing rate. As a result, some people replace their mobile devices as frequently as every year. Unfortunately, people often do not realize how much personal data is on these devices. See the latest OUCH! newsletter from SANS for assistance in this sometimes overlooked task.
Cyber criminals continue to come up with new and creative ways to fool people. A new type of scam is gaining popularity— personalized scams. Cyber criminals find or purchase information about millions of people, then use that information to personalize their attacks. Below we show you how these scams work and walk you through a common example. The more you know about these scams, the easier it is for you to spot and stop them.
Read the details in this month's OUCH! newsletter from SANS.
On Friday, February 1, major DNS (Domain Name System) software and public DNS providers will remove support for workarounds accommodating authoritative DNS servers that don’t follow published operational standards. UNI's DNS servers are compliant with the necessary standards, however, sites using authoritative servers that don’t meet standards may find their resources unreachable by large portions of the Internet. To be clear, the solution for an unreachable site lies with the unreachable site, not with UNI. Additional information is here.
January 28 is Data Privacy Day (DPD), an annual effort to promote data privacy awareness and education. This year's DPD events, sponsored by the National Cyber Security Alliance (NCSA), focus around the theme, A New Era in Privacy.
The NCSA Stay Safe Online website will feature a live stream of the Data Privacy Day 2019 - Live From LinkedIn event, which includes presentations on opportunities and challenges and the future of privacy, as well as a TED-style talk with the Amazon Web Services Global principal security architect.
The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and administrators to review NCSA's tips on Managing Your Privacy and the following NCCIC tips:
Caribou Coffee chain announces card breach impacting 239 stores, including the Cedar Falls store
"All customers who used a credit or debit card at one of the affected stores between August 28, 2018, and December 3, 2018, should consider their card details compromised and take precautions such as asking for a card replacement, reviewing credit card reports, and enrolling in identity protection programs. Users can consult the list of impacted stores via the company's data breach notice, posted on its homepage. Caribou Coffee officials said they detected that something was wrong last month, on November 28, when its IT staff was alerted of "unusual activity" on its network via its security monitoring processes."
To read the complete article see: https://www.zdnet.com/article/caribou-coffee-chain-announces-card-breach-impacting-239-stores/
UPDATE: See the end of the article for information on how to delete and disable much of Google's tracking information
Is your mobile device spying on you? It may be doing just that! Let's look at the two major mobile arenas, Apple iPhones and Google Android phones.
Apple explains how Siri listens for "Hey, Siri" without eavesdropping and how it keeps Siri usage anonymous. Siri uses a buffer, or a chunk of audio that's continually recorded over, to listen for the "Hey, Siri" trigger phrase. Once the trigger is heard, it records the user's question or command. This recording is sent to Apple with an anonymous identification number that isn't tied to an individual's Apple ID. More on the Apple story here: https://nakedsecurity.sophos.com/2018/08/13/siri-is-listening-to-you-but-shes-not-spying-says-apple/
Google wants to know where you go so badly that it records your movements even when you explicitly tell it not to. An Associated Press investigation found that many Google services on Android devices and iPhones store your location data even if you've used privacy settings that say they will prevent it from doing so. Computer Science researchers at Princeton University confirmed these findings at the AP's request. More on this story is here: https://www.securityweek.com/google-tracks-your-movements-it-or-not
The bottom line - check your device's privacy settings, both overall and on a per-app basis. Set them to levels that you feel comfortable with. If you find that the app doesn't adhere to your settings, complain to the app's authors and consider using an alternate app that provides a similar function.
UPDATE: How to Find and Delete Where Google Knows You've Been
The first thing to do, regardless of device, is to login to myactivity.google.com and go into "Activity Controls." Disable "Web & App Activity" and "Location History" to stop Google from storing location markers on your Google account. Some services won't work well (or at all) without these features, such as Google Assistant or a Google Home speaker. Additional details are in this AP News article: https://www.apnews.com/b031ee35d4534f548e43b7575f4ab494/How-to-find-and-delete-where-Google-knows-you%27ve-been
Outage Date & Times: Thursday August 2nd at 12:00 a.m. through Tuesday August 7th at 5:00 p.m.
UNI's existing on-campus Blackboard Learn System (eLearning) will be fully migrated to Blackboard Inc.'s cloud based offering known as SaaS (Software as a Service) from August 2-7, 2018. On August 1, 2018 at 11:59 p.m. CDT, UNI's Blackboard Learn System will be turned OFF for migration and will NOT be available to users during this extended maintenance period. For this migration, we will be doing a full migration of data: meaning all the existing content and entire database records will be moved to SaaS. For more information, please visit our Blackboard Learn SaaS webpage.
The Department of Educational Technology and Media Services (ETMS) hosted this year’s Regent Day at UNI on May 30th. ETMS’s staff and their counterparts from the University of Iowa and Iowa State University met to share experiences, successes and challenges.
Main discussions and activities were centered around topics of Learning Spaces Technology, Online Testing/Proctoring, Student Response System, Badging, and Online Textbooks. Updates and inputs were also exchanged on Learning Management Systems, Digital Media Storage Solutions, Lecture Capturing programs, and Lynda online training site.
The successful day was concluded with show and tell groups presenting Hololens, Jamboard, SVSI, and Meetio. The three departments will continue to have this yearly event, in addition to their ongoing communication, to optimize services, relationships, and efficiency for the three regent universities.
Katie O’Brien teaches American Sign Language in the Communication Disorders program at UNI. During her classes, nobody talks, not even Katie! The only means of communication in the room are signing or writing. In order to provide content, she has learned how to use the SMARTBoard to its fullest capacity. She is able to have items prepared ahead of class for presentation with the flexibility to write on the screen as the class progresses or questions arise
.
In some classroom evaluation models, the level of noise in a room is used to measure the engagement of the students and the interactions with the instructor. In Katie’s room, the only sounds are from taps on the SMARTboard screen as things are displayed and manipulated by Katie. Despite the lack of noise, the student in the class remain very engaged through Katie’s teaching and the use of the technology.
Katie has been using the SMARTBoard for 14 years and would love to share her experiences with others who are interested in this technology.
In fact, she will be presenting a session on this use at the Technology-Enhanced Teaching and Learning conference on May 11th from 10:10-10:50 in her normal classroom CAC 116!
Pages
- ITTC 36
- (319) 273-5555
