Office of the Chief Information Security Officer


September 1, 2021

PrintNightmare: Patches released 9/14/21

print nightmare

Update 9/15/2021 Microsoft released security updates yesterday to address the remaining PrintNightmare vulnerabilities. Update 9/1/2021 This post is an update for this previous post regarding the Microsoft Print Spooler vulnerabilities known as “PrintNightmare.” As stated in the August 16 post, Microsoft updated CVE-2021-34527, Windows Print Spooler Remote Code Execution Vulnerability to indicate that patches…

August 30, 2021

CosmosDB critical vulnerability

planet and stars

A cloud security vendor, Wiz, announced on Friday (8/26) that they discovered a vulnerability in Microsoft Azure’s managed database service, Cosmos DB, that grants read/write access for every database on the service to attackers who find and exploit the bug. They named the vulnerability “Chaos DB.” Wiz made the discovery two weeks ago, but they…

August 17, 2021

Scam alert

Recently there has been a surge in phishing and scams targeting UW students, faculty, and staff. Many of these emails appear to be job offers or alerts from UW accounts or UW offices. There is a “fresh phish” below that offers $800/week with bonuses. More examples can be found on the Phishing Examples web page….

July 9, 2021

PrintNightmare: What to do at home

print nightmare

Also see: Recommendations for UW students, faculty, and staff On July 7, Microsoft released an emergency patch for a vulnerability, dubbed “PrintNightmare,” in its Print Spooler service. It’s a serious vulnerability for several reasons, among them: It allows attackers to access your computer over the Internet (via remote code execution or RCE) to steal data…

July 2, 2021

Print Spooler vulnerability “PrintNightmare”

Also see: PrintNightmare: What to do at home Latest update August update Key points How do I know if I’m vulnerable? What can I do about it? Recommendations for UW students, faculty, and staff References This post pertains to CVE-2021-34527, Windows Print Spooler Remote Code Execution Vulnerability. The code that contains the vulnerability is present…

April 16, 2021

LinkedIn users targeted

Cybercriminals use LinkedIn’s public-facing service to collect information about LinkedIn members, the same information LinkedIn displays to non-members to include members’ names and job titles. Phishers are using this information to send malicious email messages to LinkedIn members under the guise of an employment opportunity. Currently, the phishers are attaching Zip files with names that…

Next page