May 31, 2023
According to Cisco Talos Intelligence Group, malicious web shells surpassed ransomware as the top observed threat in the first quarter of 2023, comprising nearly 22 percent of incidents. Web shells allow remote administration on web servers. They may be used for legitimate purposes, but they are often installed by cyber criminals and other adversaries to…
May 10, 2023
As the academic year comes to a close and summer draws near, you or someone you know may need a refresher on how to secure personal and/or UW data and devices. Check out our Tips for Traveling Risk Advisory to help you prepare to get moving again. Travel tips
May 3, 2023
Cyber thieves and other adversaries are creating fake login pages that look similar to legitimate UW authentication and Duo web pages to try to get access to your UW NetID account. You may be directed to one of these pages if you click on a link from a phishing email, like the one shown below….
March 15, 2023
Summary Recommendations for UW students, faculty, and staff Technical details Things UW-IT will do Recommendations for IT Staff Resources Summary On March 14th, Microsoft disclosed a critical security vulnerability (CVE-2023-23397) that affects all supported versions of Microsoft Outlook for Windows. The vulnerability can be exploited with an email message or a calendar invitation, and ultimately,…
March 3, 2023
Latest update What happened? December 2022 post Update 3/2/23 Additional details have emerged about the nature of the LastPass data breach that the company disclosed in December 2022. An updated summary of those details are included in the What Happened section below. UW’s LastPass Enterprise accounts UW-IT is reviewing the latest disclosures about the LastPass…
December 30, 2022
Audience for this post: UW System administrators, IT staff, and staff members responsible for maintaining websites The Office of Information Security has received a report this morning that a malicious Linux program is exploiting vulnerabilities in various WordPress plugins and themes. If you manage a WordPress (WP) site, it is recommended that you review the…