Notices
In an effort to better communicate with the 51ÁÔÆæ community of ongoing information security notices and alerts this Notices and Alerts page seeks provide information on cybersecurity activity targeted at the 51ÁÔÆæ Community and the broader higher education community. Awareness and education are the strongest defense to stop malicious activity and protect 51ÁÔÆæ's systems, data, and people. For any information security concerns contact infosec@hamilton.edu.
-
A significant number of organizations around the world have been affected by a vulnerability that was identified in Progress Software's MOVEit application. 51ÁÔÆæ received confirmation from two of our service providers, National Student Clearinghouse (NSC) and the Teachers Insurance and Annuity Association (TIAA), that certain personally identifiable information of some members of our community may have been impacted.
Topic -
51ÁÔÆæ's Email Use Policy is in place to ensure that anyone sending emails using the hamilton.edu domain follows best practices, brand guidelines, and is in compliance with all applicable regulations, including, but not limited to, the Family Educational Rights and Privacy Act (FERPA) and the Controlling the Assault of Non-Solicited Pornography and Marketing (CAN-SPAM) Act.
51ÁÔÆæ's Email Use Policy does not allow for automated forwarding that moves email from a College managed email system to a non-College managed email system
Topic -
51ÁÔÆæ is implementing Rapid Identity (an IAM solution from Identity Automation). Identity and Access Management (IAM) is an integrated system of policies, people, business processes, and technologies that enable organizations to both facilitate and control their users’ access to critical online applications and IT resources.
Topic -
We are committed to maintaining the highest standards of cybersecurity within our community, and as part of this effort, we will be implementing a monthly phishing message as part of our security awareness training program.
Topic -
51ÁÔÆæ is disabling Duo app-generated passcodes as an approved authentication method.
Topic -
Microsoft on Tuesday released updates to fix roughly 120 security vulnerabilities in its Windows operating systems and other software. Two of the flaws have been publicly detailed prior to this week, and one is already seeing active exploitation, according to a report from the U.S. National Security Agency (NSA).
Apply Microsoft Windows Updates. Always keep your systems fully patched and protected.
Topic -
Log4j zero-day flaw: What you need to know and how to protect yourself
The Log4j vulnerability affects everything from the cloud to developer tools and security devices. Here's what to look for, according to the latest information.
-
October is Cybersecurity Awareness Month. This year's theme is Do Your Part. #BeCyberSmart.
The goal of this theme is to emphasize that cybersecurity isn't only a shared responsibility, it's an individual responsibility. If everyone does their part - implementing stronger security practices, raising community awareness, educating vulnerable audiences or training employees - our interconnected world will be safer and more secure for everyone.
Topic -
Apple on Monday released security updates for its iPhone, iPad, Apple Watch and Mac computers that close a vulnerability reportedly exploited by invasive spyware built by NSO Group, an Israeli security company.
Topic -
As part of our ongoing efforts to enhance the security of our users’ daily working and learning experience, LITS has deployed a secure internet gateway service that helps you navigate the web more securely. With the introduction of Cisco Umbrella, LITS has the ability to protect users from accessing malicious sites, which could be the source of phishing scams, malware, ransomware, or other security risks.
Topic
Contact
Contact Name
Jerry Tylutki
Director of Information Security and Privacy