Cyber Security Awareness Month

Information Security

Mission Statement

The Information Security Office is committed to lowering the risk profile of the University’s electronic information by implementing industry best practices to protect the confidentiality, integrity, and availability of student, faculty, and staff information. We uphold the University’s compliance obligations by developing information security policies, providing security awareness training, and overseeing the implementation of strategic information security initiatives.

Cyber Security Alerts

Windows CryptoAPI Spoofing Vulnerability

What is being exploited?

Vulnerability in Windows CryptoAPI that allows malicious executables using a spoofed code-signing certificate to appear as if it was from a trusted source.

What does this affect?

Attackers can conduct man-in-the-middle attacks and decrypt confidential information on user connections to spoofed software that appears legitimate.

Which Operating Systems does this affect?

Windows 10, Windows Server 2016, and Windows Server 2019

How to mitigate this?

Apply critical patches to affected systems as soon as possible.

For more information:

CVE-2020-0601

Windows Remote Desktop Gateway Remote Code Execution Vulnerability

What is being exploited?

Vulnerability in Windows Remote Desktop Gateway (RD Gateway) that allows specially crafted requests to execute arbitrary code on the target system.

What does this affect?

Attackers can gain access to the target system with full user rights that would allow them to install programs; view, change, or delete data; or create new users.

Which Operating Systems does this affect?

Windows Server 2012, Windows Server 2016, and Windows Server 2019

How to mitigate this?

Apply critical patches to affected systems as soon as possible.

For more information:

CVE-2020-0609 & CVE-2020-0610

Remote Desktop Client Remote Code Execution Vulnerability

What is being exploited?

Vulnerability in Windows Remote Desktop Client that allows the server to execute arbitrary code on the target system after an unsuspecting user connects to it.

What does this affect?

Attackers can trick the user into connecting to a compromised server and gain access to the target system with full user rights that would allow them to install programs; view, change, or delete data; or create new users.

Which Operating Systems does this affect?

Windows 7, Windows 8, Windows 10, Windows RT, Windows Server 2008, Windows Server 2012, Windows Server 2016, and Windows Server 2019

How to mitigate this?

Apply critical patches to affected systems as soon as possible.

For more information:

CVE-2020-0611

Checking for Windows Updates

Windows 10 & Windows Server 2016 and newer

1. Search: Check for Updates

2. Click “Check for Updates” then install all updates

Windows 8 and older & Windows Server 2012 and older

1. Navigate: Control Panel > System and Security > Windows Update

2. Click “Check for Updates” then install all updates

Cyber Security News

Cyber Security Video of the Month

 

▼   January - Passwords

Jan 2020 Passwords: SSA Video of the Month

SANS Security Awareness

Published on Dec 26, 2019
This video is part of the SANS Security Awareness training.