Kansas State University

search

IT News

Tag: Security

Remote-access protocols RDP, SSH, VNC to be blocked Aug. 13

The Office of Information Security and Compliance will begin blocking RDP, SSH, and VNC incoming Remote Access protocols at the campus border starting 8 a.m. Monday, Aug. 13.

This means that users using these protocols to access on-campus resources will need to set up their Virtual Private Network (VPN) prior to the deadline. Continue reading “Remote-access protocols RDP, SSH, VNC to be blocked Aug. 13”

Where to direct security-related issues

Harvard Townsend, chief information security officer, retired effective June 30. A nationwide search is under way to fill the position.

In the interim, send all administrative network security matters to Ken Stafford, chief information officer, at kens@k-state.edu or 785-532-6520. For other security issues, please contact Josh McCune at mccunej@k-state.edu or 785-532-2598.

(Editor’s note: Reprinted from the July 19, 2012, article in K-State Today.)

All employees: July 31 deadline looming for IT security training

The July 31 deadline is looming for all employees, including current student employees, to complete K-State’s 2012 security training. On average, it takes 20-30 minutes to complete.

State policy requires that all state employees receive annual training in IT security, said Harvard Townsend, K-State’s former IT security officer.

Continue reading “All employees: July 31 deadline looming for IT security training”

Harvard Townsend retires as chief information security officer

photo of Harvard TownsendHarvard Townsend, K-State’s chief information security officer (CISO), retired in June after more than 31 years of service to Kansas State University. He recently moved to Illinois, where he’s accepted an IT security position at Wheaton College, a Christian liberal arts institution west of Chicago. His wife, Dana, accepted a faculty position at the same institution earlier this year.

Continue reading “Harvard Townsend retires as chief information security officer”

IT security training for 2012 now available

State policy requires that all state employees receive annual training in IT security. The 2012 version for K-State is now available and must be completed by all employees, including student employees, by July 31. This year’s training builds on the foundation of last year’s introduction to basic IT security topics. It contains a single module, has no narration and should only take 20-30 minutes to complete.

To take the training, go to the SecureIT training page, login with your eID and password, and click on part 1 of “2012 Secure IT @ K-State Training.”

Continue reading “IT security training for 2012 now available”

Viruses now targeting Mac computers

Over the last week the Mac community has been dealing with the first major virus outbreak to affect OS X. These viruses take advantage of a vulnerability within the Java engine of the Mac and allow a virus to be installed on a computer by simply visiting a website that is infected. Apple has released a patch for the Java vulnerability along with a removal tool that aids in the removal of known variants of the virus.

All Mac users are highly encouraged to:

  1. Ensure their OS X operating system is up-to-date. To do this, click the Apple icon in the upper left-hand corner of your computer and select Software Update. Be sure to install all updates.
  2. Ensure they have an antivirus software package installed on their Mac. K-State does provide antivirus software to all faculty/staff and students at no cost to the individual. To get K-State’s antivirus software, go to www.k-state.edu/its/antivirus.

Continue reading “Viruses now targeting Mac computers”

Handing down or selling an iPad? A tip to make it a secure transition

With the release of the new iPad last week, many are looking to sell, trade in, or hand down their old iPad. Chances are your iPad is full of personal data such as email, documents, photos, and social applications that auto-log-in to your accounts such as Twitter and Facebook. If not properly handled, the receiving party could gain access to this and other data that may be stored on the iPad.

Continue reading “Handing down or selling an iPad? A tip to make it a secure transition”

Missed the eID password-change deadline?

The mandatory spring eID password-change deadline was yesterday, Feb. 8. If you did not change your eID password, you will NOT be able to connect wirelessly to the Internet on campus, sign into your K-State email, iSIS, K-State Online, HRIS, and more.

If you miss the deadline and have previously set an alternate email address with security question-and-answer in the Password reset options section in eProfile (eid.k-state.edu), then you can reset your eID password online.

  1. Go to eProfile (eid.k-state.edu).
  2. Click the Forgot your eID password? link and then enter your eID.
  3. An email will be sent to your alternate email address.
  4. From that email, click the password-reset link and then answer your password-reset question.

If you did not set an alternate email address with security question-and-answer, you will need to contact the IT Help Desk. You can change your password over the phone or in person at the IT Help Desk, 214 Hale Library on the Manhattan campus, or at the ID Center, 103 TAC Building on the Salina campus. You will need to provide proof of your identity.

Immediately after changing your password, update the password settings with your new eID password in all your computers, devices, and applications, or else risk getting locked out of K-State wireless or email. This includes:

If you get locked out, you may get an “HTTP 400” error when trying to access K-State Zimbra webmail or not be able to connect to the Internet using wireless on campus. If this happens, update your eID password in your devices and, if you still can’t connect, contact the IT Help Desk.

Today, Feb. 8, is the deadline to change your eID password

All eIDs, including individual and group, must be changed by midnight tonight, Feb. 8. To change your password go to eProfile (eid.k-state.edu), sign in with your eID and current password, then click “Change your eID password” and follow the steps.

Don’t risk getting locked out of K-State wireless or email. Once you have changed to a new password, immediately update the eID password settings in all your computers, devices, and applications. This includes:

If you get locked out, you may get an “HTTP 400” error when trying to access K-State Zimbra webmail or may not be able to connect to the Internet using wireless on campus. If this happens, update your password in your devices and, if you still can’t connect, contact the IT Help Desk.

Warning: Increase in phishing scam emails trying to steal K-State eID passwords

Attention, K-State faculty, staff, and students.

Since the start of the spring 2012 semester, K-State has seen a significant increase in the number of phishing scam emails that are trying to steal eID passwords. Thus far, at least 10 K-Staters have been tricked into providing their eID and password to criminals under the guise of needing to upgrade their webmail account or exceeding the mailbox storage limit.

THESE ARE ALL SCAMS. K-State IT support staff will NEVER ask for your password in an email. Do not under any circumstances reply to these scam emails or click on a link in the email and fill out a form with your eID and password.

Abide by this simple rule and you will be safe from these scams and others:  NEVER provide your password to anyone in response to an email!

Continue reading “Warning: Increase in phishing scam emails trying to steal K-State eID passwords”