Fix for VPN Upgrade Installation Issue

Posted on Monday, March 30th, 2015 by ITS Communications under Documentation.

Who: Virtual Private Networking (VPN) for Windows users

What: Error when VPN client attempts software upgrade

Client Action: To fix the error, follow the instructions: Fix for VPN Upgrade Installation Issue (Windows)

If you have questions or need more information, please contact 6-TECH at (336) 256-TECH (8324) or 6-TECH@uncg.edu.

 

Comments Off

UPDATE (Resolved): Blackboard Outage

Posted on Friday, March 27th, 2015 by ITS Communications under Service Disruption.

Update 3/30/2015 1:30pm

The cause of Friday’s issue with missing enrollments and courses in Blackboard Learn has been confirmed and addressed, and the issue is now resolved.  Everything should be functioning normally and the synchronization of enrollments and courses with UNCGGenie/Banner has been re-enabled.

If you have questions or continue to experience problems, please contact 6-TECH at (336) 256-TECH (8324) or 6-TECH@uncg.edu.


{Original post: 3/27/2015}

What: Missing Enrollments, Courses in Blackboard Learn (3/27/15)

Who: Faculty, Students, Staff

When: Friday March 27th, 4:05pm until 5:35pm

An unintended change in Banner today caused courses and enrollments for Spring 2015 to disappear from Blackboard Learn. The data began disappearing at 4:05pm and was restored at approximately 5:35pm. This caused UNCG users to lose access to their course information, quizzes and any other activity tied to a Spring 2015 course.

As a precaution, Information Technology Services (ITS) has suspended processing any new changes for Blackboard Learn until Monday, 3/30. No new courses or changes in enrollment in UNCGenie/Banner between 5:35pm on Friday 3/27 and Monday 3/30 will be reflected in Blackboard until ITS has successfully confirmed today’s problem will not occur again. ITS will post information about the ongoing work to fix and clean up this problem as it becomes available.

Note: Blackboard Learn will be fully operational and usable by students, faculty and staff this weekend. The only temporary change from normal operating procedures is that no new official enrollments or courses (that would normally be synchronized with UNCGenie/Banner), will be displayed in Blackboard until ITS posts updated information on Monday 3/30/15.

Comments Off

Latest Dangerous Phishing Attacks Targeting UNCG, 3-24-15

Posted on Tuesday, March 24th, 2015 by ITS Communications under Security.
Protect Yourself from Phishing Attacks
  • Be careful when following links in emails or email attachments. Especially in emails from unknown sources.
  • Use  discretion when using your iSpartan credentials to log into sites outside of the uncg.edu domain.
  • Never reset your password on any site other than reset.uncg.edu.
  • If you have any doubts about the authenticity of an email or a web site asking for your iSpartan credentials, contact 6-TECH.

Information Technology Services (ITS) has become aware of a phishing attack targeting campus users.  Email comes into a user’s inbox requesting that they click on a link to view a document. In reality, the link takes the user to a fake site, asking them to provide their iSpartan password, at which point the user’s account is compromised.

Description of phishing email

Multiple messages are part of this recent string of phishing attempts. Message subject lines include “Dropbox document,” “Important Message (Do Not Ignore)” and “Account Lockdown.”

The email with the subject line “Dropbox document” has a message similiar to the one shown below:

dropbox

The link in the email takes you to a fake site that looks like this:

email_provider

Once you click on your email provider, you are provided with a pop-up window asking for your credentials:

credentials


General tips for determining whether a link is legitimate or not

Usually you can tell whether a link is going to the appropriate place by hovering over the link and checking to see if the text of the link is the same as the actual target of the link.

URL in status bar
When the cursor is placed over a link without clicking, most browsers show the target of the link at the bottom of the browser in the status bar.

ITS advises users to be extremely careful about the websites they provide their UNCG password to.  Most UNCG websites will be located at URLs that contain “.uncg.edu” directly before the first forward slash. For example, if you look at the URL when you log in to your UNCG iSpartan email account, it will appear as https://gafe.uncg.edu/login.jsp. Seeing “uncg.edu” appear directly before the first forward slash will prove it is a trusted website. For other examples like this, look at the URL when you are logging into other campus services like Canvas, Box, Qualtrics, Office365, and Blackboard. They will appear as https://idp.uncg.edu/idp/Authn/UserPassword.

In some specific cases, official UNCG services are provided at other URLs that may not contain “uncg.edu” before the first forward slash. In those situations, if you are suspicious or confused as to whether it is a trusted website, contact the UNCG office providing that service before entering your username and password.


ITS reminds users to never reset their password on any site except the official reset.uncg.edu website.

If you have questions, please contact 6-TECH at (336) 256-TECH (8324) or 6-TECH@uncg.edu.

Comments Off

New Email Retention Service: Google Vault, Replacing Postini Services

Posted on Tuesday, March 24th, 2015 by ITS Communications under Announcements, Service Enhancements.

Beginning on March 31st, 2015, UNCG Information Technology Services (ITS) will take steps towards enabling the Google Vault email retention and e-Discovery service for all UNCG Google Apps accounts, including student accounts. Vault will expand and replace the Postini services some campus users already have.

Vault will make it easier for all UNCG employees to retain copies of all work-related electronic documents, including those of a non-transient nature, as required by the North Carolina Public Records Act (N.C.G.S. 132-1). Refer to UNCG’s Records Management site for more details.

What UNCG Employees need to know:

  • Beginning on March 31st, 2015
    • All new spam emails will be delivered directly to users’ Gmail Spam label instead of the Quarantine located at spamcontrol.uncg.edu.
    • Any message that is already in the Quarantine at spamcontrol.uncg.edu will be retrievable for up to 14 days after it was received (no change to prior behavior).
    • Quarantine Summaries will not be sent after a user’s Quarantine at spamcontrol.uncg.edu is empty, or after April 14th, 2015 (whichever comes first).
  • Beginning on April 20th, 2015
    • ITS and Google will begin the migration of all email that is presently in Postini, which may take several weeks.
    • All users will begin to be able to access any archived/retained email (that previously would have been accessible in Postini via spamcontrol.uncg.edu) by searching within their Trash label in Gmail.
    • Messages that are not found in the Trash label can continue to be found via spamcontrol.uncg.edu until the migration is complete. ITS will post information when this occurs.
    • Employees can continue to choose to keep an email in Gmail forever (there is unlimited quota in Gmail and Google Drive).
    • Google Vault will allow searching for, and restoration of, any deleted email for up to 10 years after the message was originally sent or received.

What UNCG Students need to know:

  • Beginning on April 20th, 2015, Google Vault will allow searching for, and restoration of, any newly deleted email for up to 10 years after the message was originally sent or received.
  • There will be no change to the delivery of email, or management of spam email for students. Spam will continue to flow into users’ Spam label.
  • Students can continue to choose to keep an email in Gmail forever (there is unlimited quota in Gmail and Google Drive).

Helpful tips for all UNCG users:

  • Use Gmail filters to ensure specific messages are delivered to your Inbox and not your Spam folder. This is the alternative to Postini’s “Approved Sender” feature. See Using Filters.
  • Use the Report Spam button to remove real spam messages from your Inbox. This will train Gmail to identify them as such. See Reporting Spam.

More Information

ITS has provided detailed information about the transition to Google Vault, including FAQs about the service, here: About Google Vault.

Comments Off

UPDATE: Latest Dangerous Phishing Attacks Targeting UNCG, 3-18-15

Posted on Wednesday, March 18th, 2015 by Christopher Waters under Security.
Protect Yourself from Phishing Attacks
  • Be careful when following links in emails or email attachments. Especially in emails from unknown sources.
  • Use  discretion when using your iSpartan credentials to log into sites outside of the uncg.edu domain.
  • Never reset your password on any site other than reset.uncg.edu.
  • If you have any doubts about the authenticity of an email or a web site asking for your iSpartan credentials, contact 6-TECH.

Information Technology Services (ITS) has become aware of multiple, unique phishing attacks targeting campus users. Email comes into a user’s inbox requesting that they click on a link to perform an action, such as opening a document, verifying their account, or correcting a quota issue. In reality, the link takes the user to a fake site, asking them to provide their iSpartan password, at which point he user’s account is compromised.

The email will have one of these, or similar, subject lines:

  • ***SAFETY***
  • ***Suspicious Activities***
  • Drop box document (Don’t Ignore)
  • Email Account Safety 2015
  • EMAIL TERMINATION
  • FINAL NOTIFICATION
  • Final Notification (Upgrade to Yahoo! Beta)
  • Final Notification (Upgrade Your Account)
  • Final Warning
  • Important
  • Mail Update!2015(Final Warning)
  • Newest anti-virus and anti-hacking software
  • Protection
  • Re-Activate Immediately
  • Re-Activate Now
  • Yahoo Account Security

The body of the message will be similar to this:

Dear uncg.edu Account User,

This is a courtesy notice from your uncg.edu Admin Team, and it’s to inform you that your email account has exceeded it’s mail quota on the database server. Your email account will be blocked from sending and receiving emails if your email account is not verified within 24-48 hours.

You are advised to click the following link below and also follow the instructions to verify your account,

We apologize for any inconvenience this may have caused.

Sincerely,

{ Phishing URL removed by ITS }

Thanks,
uncg.edu IT Service Desk.

The link in the email takes you to a fake site that looks like this:

phishing-site-2015-03-18

Usually you can tell whether a link is going to the appropriate place by hovering over the link and checking to see if the text of the link is the same as the actual target of the link.

URL in status bar
When the cursor is placed over a link without clicking, most browsers show the target of the link at the bottom of the browser in the status bar.

ITS reminds users to never reset their password on any site except the official reset.uncg.edu website.

ITS also reminds users to be extremely careful which websites they provide their UNCG password to. Most UNCG websites will be located at URLs that contain “.uncg.edu” directly before the first forward slash. For example, if you look at the URL when you log in to your UNCG iSpartan email account, it will appear as https://gafe.uncg.edu/login.jsp. Seeing “uncg.edu” appear directly before the first forward slash will prove it is a trusted website. For other examples like this, look at the URL when you are logging into other campus services like Canvas, Box, Qualtrics, Office365, and Blackboard. They will appear as https://idp.uncg.edu/idp/Authn/UserPassword.

In some specific cases, official UNCG services are provided at other URLs that may not contain “uncg.edu” before the first forward slash. In those situations, if you are suspicious or confused as to whether it is a trusted website, contact the UNCG office providing that service before entering your username and password.

If you have questions, please contact 6-TECH at (336) 256-TECH (8324) or 6-TECH@uncg.edu.

Comments Off