iSpartan Users’ Google Security Dashboard

Posted on Wednesday, November 26th, 2014 by ITS Communications under Service Enhancements.

A new Security Dashboard and Security Wizard are now available to give UNCG iSpartan users additional insight over the devices accessing their Google account.

UNCG users can access their dashboard at https://security.google.com/settings/security/activity and the Security Wizard at https://security.google.com/settings/security/secureaccount.

Leaving Greensboro for Thanksgiving or Christmas? Use the dashboard to see how your login location history is updated over the holiday period.

The dashboard shows a comprehensive view of all devices that have been active on an account in the last 28 days, or are currently signed in. And in case any suspicious activity is noticed, there’s a setting to immediately take steps to secure an account and change a password.

Security Dashboard

 

Google also launched a security wizard for Google accounts. The security wizard guides users through steps they can take to turn on or adjust security features, reviewing recent account activity and account permissions.

Security Wizard

 

For more information, visit the blog post from Google here: http://googleforwork.blogspot.com/2014/11/new-security-tools-to-help-improve.html

If you have questions or need more information, please contact 6-TECH at (336) 256-TECH (8324) or 6-TECH@uncg.edu.

 

Comments Off

Open PDF Files with Adobe Reader, Not Acrobat

Posted on Wednesday, November 26th, 2014 by ITS Communications under General.

Information Technology Services (ITS) would like to remind users to please use Adobe Reader, rather than Adobe Acrobat, if you only need to read PDF files. UNCG owns a limited number of licenses for Acrobat. Because some users inadvertently use Acrobat to read PDF files, or leave the program open and unused, these limited licenses quickly get used up.

To preserve access to Acrobat for users who need to use the program for file and form creation, it will automatically close if it is not being used for more than two hours and more than two people are waiting in the queue for a license. Please note that the user will receive warnings before the program closes.

For instructions on how to set your computer to open Adobe Reader by default when you click a PDF file, see: Change the Default Program for PDF Files.

If you have questions, please contact 6-TECH at (336) 256-TECH (8324) or 6-TECH@uncg.edu.

Comments Off

Latest Dangerous Phishing Attacks Targeting UNCG, 11-25-2014

Posted on Wednesday, November 26th, 2014 by ITS Communications under Security.
Protect Yourself from Phishing Attacks
  • Be careful when following links in emails or email attachments. Especially in emails from unknown sources.
  • Use  discretion when using your iSpartan credentials to log into sites outside of the uncg.edu domain.
  • Never reset your password on any site other than reset.uncg.edu.
  • If you have any doubts about the authenticity of an email or a web site asking for your iSpartan credentials, contact 6-TECH.

Information Technology Services (ITS) has become aware of a coordinated phishing attack targeting both UNCG and non-UNCG users. Email comes into a user’s inbox, sometimes from a UNCG user’s compromised account and sometimes from an external email address, inviting them to review an attached document or to review a Google Doc. In these latest attacks, the user is asked to visit a website, where they are asked to select and log in to their email account.

The email will have a message similar to the following:

Example Subject Line: Review My Attached Document
Hello,
I have created a secured shared document using Google Doc.
To access this doc, please Click here to see Document and for security reasons, you have to log on with your email to view it,its very important.
Thank You

The website linked to may look like the image below, in this example posing as a login page for multiple online services:

Screenshot, Google Drive

In reality, each of these links takes users to fake login pages hosted by the phishing website. After providing their email username and password, the user’s account is compromised. In these latest cases, verifying that the link takes you to a website other than google.com would be sufficient evidence to prove that it is not a legitimate piece of email. Under no circumstances should you reply to the sender of this email, or to any other suspicious email you may receive.

Usually you can tell whether a link is going to the appropriate place by hovering over the link and checking to see if the text of the link is the same as the actual target of the link.

URL in status bar
When the cursor is placed over a link without clicking, most browsers show the target of the link at the bottom of the browser in the status bar.

ITS reminds users to never reset their password on any site except the official reset.uncg.edu website.

ITS also reminds users to be extremely careful which websites they provide their UNCG password to. Most UNCG websites will be located at URLs that contain “.uncg.edu” directly before the first forward slash. For example, if you look at the URL when you log in to your UNCG iSpartan email account, it will appear as https://gafe.uncg.edu/login.jsp. Seeing “uncg.edu” appear directly before the first forward slash will prove it is a trusted website. For other examples like this, look at the URL when you are logging into other campus services like Canvas, Box, Qualtrics, Office365, and Blackboard. They will appear as “idp.uncg.edu/idp/Authn/UserPassword”, which contains “.uncg.edu” before the first forward slash.

In some specific cases, official UNCG services are provided at other URLs that may not contain “uncg.edu” before the first forward slash. In those situations, if you are suspicious or confused as to whether it is a trusted website, contact the UNCG office providing that service, before entering your username and password.

If you have questions, please contact 6-TECH at (336) 256-TECH (8324) or 6-TECH@uncg.edu.

Comments Off

Planned Downtime for Shibboleth Authentication Service | Friday, November 21 | 5:30am – 7:30am

Posted on Thursday, November 20th, 2014 by ITS Communications under Scheduled Maintenance.

Who: Anyone using an application that is connected to the Shibboleth authentication service.

What: Restart of Shibboleth authentication service.  Many services will be affected including:

  • Canvas
  • Box
  • Office 365

When: Friday, November 21, 5:30AM – 7:30 AM (brief downtime during this period when the server is restarted)

Why: Maintenance

If you have questions or need more information, please contact 6-TECH at (336) 256-TECH (8324) or 6-TECH@uncg.edu.

Comments Off

Changes to New Accounts in Instructional Linux Environment (ILE)

Posted on Thursday, November 20th, 2014 by ITS Communications under General.

Starting Friday, November 21, new accounts created in the Instructional Linux Environment (ILE) will not have default access to department directories.  If access to those directories are required, the account owner will need to contact 6-TECH and submit a request for that access.

Current ILE account users will not be affected by the change in the account creation process and will retain access to departmental directories.

If you have questions or need more information, please contact 6-TECH at (336) 256-TECH (8324) or 6-TECH@uncg.edu.

Comments Off