Scammers recently sent a phony Office 365 login alert. Learn how to protect yourself!
Cybersecurity News
The Office of Cybersecurity manages the university’s risk-reduction efforts through data protection, ongoing diagnostics, cybersecurity awareness training and policies and procedures to safeguard intellectual property and sensitive information.
Cybersecurity Announcement: Microsoft “Follina” zero-day in the wild (CVE-2022-30190)
About the Event A recently discovered zero-day vulnerability in all supported versions of Windows could allow an attacker to execute arbitrary code on affected machines. The flaw, dubbed “Follina”, exists due to improper validation of …
Email phishing alert: Subject line “IT Desk Message Incident…”
Scammers recently sent a phony email quota message. Learn how to protect yourself.
Cybersecurity Announcement: Microsoft Remote Procedure Call Runtime Remote Code Execution Vulnerability
Microsoft released a patch as part of April 2022’s Patch Tuesday for a Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2022-26809). This vulnerability impacts most Windows Server and Desktop versions, including Windows 7 and Windows 11.
Cybersecurity announcement: web fingerprint scanning Tue, Apr 5
Spring announced a remote code execution vulnerability in Spring Core, aka Spring4Shell. Details and actions here.
Cybersecurity announcement: Java Spring Framework RCE vulnerability
Spring announced a remote code execution vulnerability in Spring Core, aka Spring4Shell. Details and actions here.
Chrome update fixes “severe” vulnerability
Do you use Chrome as your desktop web browser? If so, please check which version of Chrome you have installed on your computer. If your version of Chrome is not up to date, you could be vulnerable to hackers.
3/17 phishing alert! Subject: “UNICEF Paid part-time job”
Watch out for an active phishing campaign on campus in which the attacker impersonates UNICEF Executive Director Henrietta H. Fore. The email message advertises a part-time, work-from-home job.
Beware of Ukraine-themed phishing scams
Although there are no current credible Russian cybersecurity threats to U.S. universities, UW’s cybersecurity team is prepared to prevent cyberattacks. Do your part by identifying and reporting phishing scams related to Ukraine.
Last Chance For Early Registration: EDUCAUSE Cybersecurity Conference
In Baltimore: May 3-5. Attend for just-in-time content to help higher education cybersecurity and privacy professionals address current challenges. Price increases after Mar 22!