We have had another phishing attack, which purports to come from IT Services. The email contains text as follows: Continue reading
In response to customer comments, IT Services have amended the firewall ruleset for Eduroam at all University of Reading campuses. Continue reading
IT Services have had an outbreak of phishing attacks where we have had to block accounts and websites. Continue reading
In light of the regularity of malware incidents, we have another security bulletin about Java and Windows Update.
Our security team have now seen machines on campus and on the readingConnect network running Java version 1.6.0_31 being compromised via a “Scalaxy” exploit kit. It’s only a matter of time before the exploit appears in other, more prevalent kits.
Java needs to be 1.6.0_33 or 1.7.0_5 (released on Patch Tuesday, 12 June) to be safe. IT Services automated script will now also upgrade Java 1.7.0_x if required, should you need this, please contact IT Services.
This month’s Patch Tuesday Microsoft updates included a fix for a Remote Desktop (RDP) exploit that could again be potentially used for a worm. People with RDP enabled on their PCs or Terminal Servers need to be patched as soon as possible.
There were also fixes for Internet Explorer that are being actively exploited. We have seen one attempt to exploit another IE vulnerability that has not been patched yet, but for which exploit code has been published.
I can hardly believe that another month has passed since my last blog, but I guess that must show that I’m still enjoying myself (to quote the old adage)!
All Macs on campus are currently running Sophos 7 for Mac OS X. Sophos 8 for Mac OS X has been out for a while but due to performance issues, we have not been ready to release it until now. Continue reading
Again, there has been another attempt at Phishing, sent to approximately 600 University Email recipients on 30 March. If you have received an email with the subject ‘eMail Alert!!!’ you should delete it immediately. Do not open it and do not click on any links in it. Continue reading
On Tuesday 27 March, ITS completed an overhaul of the Sophos infrastructure to bring us up to the latest protection they have to offer.
The primary reason was to begin deployment of the new version 10 of Sophos for Windows, which adds a level of network protection not possible with version 9. This is in order to protect against emerging threats as we have been advised by Sophos.
Sophos 10 for Windows will be deployed gradually over the coming month with no user action required. The most obvious change that you will see is the icon on the task bar will change from
Summary of changes:
- Protection is offered at the network driver level rather than only in common web browsers.
- Sophos can now assess if a PC is missing any Microsoft/Adobe/Java/Apple etc. patches.
- Servers running Sophos now operate with a “long term support” version (fewer reboots for upgrades).
- Faster updates with better resource usage (assuming Windows Vista or later).
Following the monthly announcement of the Microsoft Patch Tuesday updates, our Security team have the following bulletin covering vulnerable versions of Java, the Microsoft Remote Desktop Protocol (RDP) issue and a reminder about Adobe product updates. Continue reading
There has been an attempt today, 25 January, to trap people into giving out their login details for University of Reading IT systems. Should you receive an email with the subject line ‘Attention: Staff/Students’ simply delete it.
Do not open it. Do not click on any links in it. Continue reading