Securing BUworks with Duo

In response to the phishing scam that redirected employee payroll deposits last December, and at the request of President Brown, Information Services & Technology is developing a proposal to implement a high-security login process for BUworks that requires a second method to confirm the identity of the person logging in. Referred to as two-step or…

Security Alert: Heartbleed

About Heartbleed and the BU response On Monday night, a major security vulnerability called Heartbleed was announced. That vulnerability impacts a large number of web sites throughout the world, as well as servers here at BU that use OpenSSL to provide encrypted web pages.  If a server is vulnerable, an attacker can steal sensitive information…

Watch out for phishing!

Remember that no one at BU will ever ask you for your password or ask you to “verify” it; nor would any other legitimate business or institution. It is important that you safeguard your passwords and never give them to anyone. For more good ways to detect phishing, go to: http://www.bu.edu/infosec/howtos/fight-phishing/ Additional information on phishing…

Thanks for attending Tech Fair 2014!

Thanks to everyone who came out to the Tech Fair! If you have any follow-up questions, please feel free to contact us – ithelp@bu.edu. The following raffle winners were randomly selected from the list of registered attendees. Congratulations! Glenn, Margaret E Google Nexus 7 Sr Program Manager, SMG – Accounting Singh, Jasjot iPad Mini Grad…

2014 April Patch Listing

See below for security related patches released Between 04/01/14 and 04/30/14 Please note: Not all of these patches will be applicable to every machine, but all are included for informational purposes. Apple Apple 2014-04-01 Safari Update 6.1.3 (Lion) Apple 2014-04-01 Safari Update 6.1.3 (Mountain Lion) Apple 2014-04-01 Safari Update 7.0.3 (Mavericks) Apple 2014-04-22 Security Update…