Information Technology Updates
January 28 is Data Privacy Day (DPD), an annual effort to promote data privacy awareness and education. This year's DPD events, sponsored by the National Cyber Security Alliance (NCSA), focus around the theme, A New Era in Privacy.
The NCSA Stay Safe Online website will feature a live stream of the Data Privacy Day 2019 - Live From LinkedIn event, which includes presentations on opportunities and challenges and the future of privacy, as well as a TED-style talk with the Amazon Web Services Global principal security architect.
The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and administrators to review NCSA's tips on Managing Your Privacy and the following NCCIC tips:
Communicating using G Suite Apps - GS1
This workshop will focus on communication applications included with G Suite, covering GMail, Google Groups, and Google Hangouts Chat. During this workshop, we will review Gmail, discuss new features Google has released, and discuss how to keep your inbox organized. We will walk through the process of requesting and configuring a Google Group, and end the session by exploring Google Hangouts Chat and the benefits of creating a chat-based workspace.
1/25/19 at 10:00-11:00 AM - Scholar Space - 301 Rod Library
3/5/19 at 1:00-2:00 PM - Scholar Space - 301 Rod Library
4/4/19 at 9:00-10:00 AM - Scholar Space - 301 Rod Library
Getting Organized with G Suite Apps - GS2
This workshop will focus on organization applications included in G Suite, specifically, Calendar, Keep, and Tasks. During this workshop, we will review how to create an event, create appointment slots, and view a guest's availability. In addition, we will look at sharing calendars and creating secondary calendars. Next, we will discuss using Keep and how to create notes and use reminders. We will wrap the class up by talking about how to create tasks, subtasks, and due dates.
1/29/19 at 1:30-2:30 AM - Scholar Space - 301 Rod Library
3/12/19 at 1:00-2:00 AM - Scholar Space - 301 Rod Library
4/11/19 at 9:00-10:00 AM - Scholar Space - 301 Rod Library
Using Google Drive - GS3
This workshop focuses on Google Drive. It will include information and demonstrations on My Drive, Docs, Sheets, and Slides. We will review the process of sharing documents and folders. We will touch on using Google Drive for storage and connecting it to your machine through Drive File Stream. We will start to look at the search capabilities within Google Drive.
2/6/19 at 2:00-3:00 PM - Scholar Space - 301 Rod Library
3/25/19 at 1:00-2:00 PM - Scholar Space - 301 Rod Library
4/18/19 at 9:00-10:00 AM - Scholar Space - 301 Rod Library
Using Team Drives - GS4
This workshop focuses on Google Drive - Team Drives. It will be a deeper dive into using Google Drive and will focus on Team Drives. We will cover how to request a Team Drive, configure the settings and how to add team members. We will discuss how to use Google Drive for storage and connecting it to your computer through Drive File stream. During this session, we will continue to explore Google Drive search capabilities.
2/19/19 10:00-11:00 AM - Scholar Space - 301 Rod Library
4/2/19 at 1:00-2:00 PM - Scholar Space - 301 Rod Library
4/25/19 at 9:00-10:00 AM - Scholar Space - 301 Rod Library
Caribou Coffee chain announces card breach impacting 239 stores, including the Cedar Falls store
"All customers who used a credit or debit card at one of the affected stores between August 28, 2018, and December 3, 2018, should consider their card details compromised and take precautions such as asking for a card replacement, reviewing credit card reports, and enrolling in identity protection programs. Users can consult the list of impacted stores via the company's data breach notice, posted on its homepage. Caribou Coffee officials said they detected that something was wrong last month, on November 28, when its IT staff was alerted of "unusual activity" on its network via its security monitoring processes."
To read the complete article see: https://www.zdnet.com/article/caribou-coffee-chain-announces-card-breach-impacting-239-stores/
On Thursday, December 20, 2018 at 6 a.m. CST, Ultra Base Navigation, the new Blackboard Learn portal interface, will be enabled. More information can be found on the UNI eLearning Suite website.
|
Meeting and chatting with relatives both new and old
|
When the turkey isn’t the only thing getting grilled at the dinner table, prepare with courses like Interpersonal Communication and Communication Fundamentals. Or check out this playlist!
If you only have just a few minutes to learn… · How to interpret nonverbal cues (3 mins) · How to handle interruption (3 mins)
|
|
Managing Holiday Spending |
When your shopping list is as long as Santa’s naughty list, use these 5 Personal Finance Tips to manage your spending. Or check out this playlist to help organize your own personal Santa’s Workshop.
If you only have just a few minutes… |
|
Hitting every house on the block |
When you have a handful of places to be and people to see you will want to Manage your Calendar for Peak Productivity and master some tried and true Time Management Fundamentals. If that isn’t enough, check out this playlist.
If you only have just a few minutes… · Tips for coordinating schedules (2 mins) |
|
When you need a break from it all… Download the mobile app and check out some Happiness Tips! |
|
On Monday, December 17, UNI’s Oracle E-Business login page, ebiz.uni.edu, will be changing. This upgrade will be the first of many as Information Technology looks to upgrade the CatID login experience for all campus web applications.
A summary of the improvements are listed below:
- Previous login problems where users had to clear cache and cookies or rely on a private browsing session have been corrected.
- You can enter both your username and passphrase from the initial login screen.
- The Secure TextPad has been removed and will no longer be required.
- The “Forgot your passphrase” link is easier to find. For more information on enrolling in the CatID Account Recovery Tool, see: https://it.uni.edu/enroll-catid-account-recovery-tool
- The login page is now more mobile-friendly and should provide a better login experience on mobile devices.
- The new login page is more accessible for those using screen reading software and similar technology.
No action is required on your part. If you do encounter any issues with the new login page, simply try again by re-entering ebiz.uni.edu into your browser’s address bar. If you still have problems, submit an incident through servicehub.uni.edu or contact the IT Service Desk at 319-273-5555 for assistance.
Many people mistakenly believe they are not a target for cyber attackers: that they, their systems, or accounts do not have any value. This could not be further from the truth. If you use technology in anyway, at work or at home, trust us - you have value to the bad guys. But, you are in luck. You already have the best defense there is against these cyber attacks - you. SANS OUCH!
Blackboard Learn Ultra Base Navigation is modern, intuitive navigation menu that replaces the old portal view in Blackboard Learn that gives you quicker access to activities, assignments, grades, your courses and more! Learn more on our Blackboard Learn Ultra Base Navigation page.
An email message with Subject: Request for Input - UNI Branding Effort is being delivered to many faculty, staff, and perhaps student inboxes this week. I have had several conversations with recipients who are concerned about the legitimacy of this message. This message is legitimate.
While the From: address is a non-UNI address, it is the expected address for email originating from our Qualtrics survey tool. Other clues that this is a legitimate message include:
- A Reply-to: of csbr@uni.edu. Additionally, the content in the body of the message discusses contacting CSBR for questions or administrative issues with the survey.
- The link(s) in the message have a domain of uni.co1.qualtrics.com, the proper domain for Qualtrics surveys administered by UNI.
I understand and greatly appreciate your vigilance regarding this message, especially in the midst of our Phishing Education initiative. Keep up the good work!
A security flaw in libssh leaves thousands of servers at risk of hijacking.
Excerpt: "The vulnerability allows an attacker to bypass authentication procedures and gain access to a server with an SSH connection enabled without having to enter the password. An attacker can do this by sending the SSH server "SSH2_MSG_USERAUTH_SUCCESS" message instead of the "SSH2_MSG_USERAUTH_REQUEST" message that a server usually expects and which libssh uses as a sign that an authentication procedure needs to initiate. Because of a coding error, when libssh receives the "SSH2_MSG_USERAUTH_SUCCESS" message, it will interpret this as the "authentication has already taken place" and will grant the attacker access to the local server."
Source: Catalin Cimpanu, ZDNet Date
Published: October 17, 2018
To read the complete article see: https://www.zdnet.com/article/security-flaw-in-libssh-leaves-thousands-of-servers-at-risk-of-hijacking/
Pages
- ITTC 36
- (319) 273-5555
