OpenSSL and GLIBC Security Advisories

Thursday, March 3rd, 2016

It has been a busy month for security vulnerabilities.  We’d like to take a moment to call three of them to your attention to make sure you are addressing them. The first two relate to OpenSSL and what you may have heard referred to as the DROWN attack. The last, slightly older, vulnerability is in…

Tax Fraud Advisory

Wednesday, April 15th, 2015

Tax fraud is a growing national problem. In 2014, tax fraud was 32.8% of identity theft complaints received by the FTC, the largest category of such complaints. A small number of members of the BU community have been notified by the IRS that a tax return has already been submitted for their SSN. This does…

InfoSec Receives Security Innovation Award

Monday, November 3rd, 2014

Boston University’s Information Services and Technology Department was named the recipient of a 2015 CSO50 Award from IDG’s CSO Magazine. Learn more!

Beginning Tuesday, faculty and student employees will be enrolled in Duo Security for BUworks

Thursday, October 9th, 2014

Beginning Tuesday, October 14, all BU employees, including faculty and student employees, will be automatically enrolled in Duo Security for the BUworks Central Portal at www.bu.edu/buworkscentral. If you are not already enrolled in Duo, you will be prompted to enroll a device the first time you attempt to log in on or after October 14….

This week! Free shredding and disk/drive destruction for Information Security Week Oct 7-9

Monday, October 6th, 2014

As part of the 4th Annual Information Security Awareness Week, IS&T’s Information Security team will be bringing a shredding truck to the locations described below. We will be on hand to accept custody of your paper documents to ensure they are immediately shredded.  In addition, we can assist with the destruction of hard drives, CDs…

Using Bash? Learn more about the ‘Shellshock’ vulnerability

Friday, September 26th, 2014

We are providing detailed information about the recent Shellshock vulnerability on our Information Security site. Learn more! http://www.bu.edu/infosec/2014/09/26/gnu-bourne-again-shell-bash-shellshock-vulnerability/…

Security Alert: Heartbleed

Wednesday, April 9th, 2014

About Heartbleed and the BU response On Monday night, a major security vulnerability called Heartbleed was announced. That vulnerability impacts a large number of web sites throughout the world, as well as servers here at BU that use OpenSSL to provide encrypted web pages.  If a server is vulnerable, an attacker can steal sensitive information…

Make sure to secure your mobile devices!

Monday, March 3rd, 2014

As described in the Minimum Security Standards guidelines, “All BU faculty and staff are expected to be familiar with the Data Management Guide, Data Protection Standards and Minimum Security Standards to ensure understanding of how to handle Confidential or Restricted Use information properly… If you use a personal device to connect to the BU network…

Don’t miss the BU Today article on Cybersecurity

Friday, February 28th, 2014

at www.bu.edu/today/2014/university-to-tighten-cybersecurity/….

Direct Deposit Reactivated on ESS

Wednesday, February 19th, 2014

Boston University is committed to securing the personal information of our faculty and staff. In light of the recent Phishing events the Direct Deposit banking information on Employee Self Service (ESS) was disabled as a security precaution. A working group was formed and has been working diligently to develop more robust security measures to safeguard…