DUO Temporarily Disabled

Update 2:25 p.m. – OIT has restored DUO two-factor authentication to services and applications.  DUO will not be reapplied to Banner Admin until 8:00 p.m. this evening as to avoid any disruption causing users to log out and back in. DUO is investigating the root cause of the outage. Follow along with me at https://status.duo.com where the root cause will be posted. We apologize for this inconvenience.


OIT is investigating an issue with DUO two-factor authentication. The application appears to be timing out and not permitting access. While OIT security investigates this issue, we have temporarily removed DUO from required logins. Refer to the OIT Status page for up-to-date status posts.

Oct. 12, 2015 – Student Phishing Alert

Friday, Oct. 12 2018, many UA students received a phishing email with the from email address “fhamedwomanlon@gmail.com” with the subject title “Student Internship Opportunity”.

This email is a phishing attempt designed to steal credentials such as a myBama username or password.  If you haven’t already, please delete the email. Additionally, if you are not a DUO user, please activate your DUO account at duo.ua.edu.

If you did receive this email, and you did provide any sensitive information, please contact the IT Service Desk at 205-348-5555 oritsd@ua.edu.

 

Cybersecurity Awareness Month Tip: Free Credit Freeze

October is Cybersecurity Awareness Month. Keep your information secure with tips from OIT.

Effective this year, individuals can now place a freeze on their credit at no cost. Your first question may be, “What is a credit freeze?” It’s easier than it sounds, and it is the best way to prevent malicious actors from using your personal information to open new accounts in your name.

When an individual freezes their credit, a credit bureau cannot provide any information about the individual to a lender until the individual elects to thaw the freeze.  Prior to federal legislation approved in September, individuals were required to pay a $10 fee each time the credit was frozen or thawed. Now, individuals can freeze and thaw their credit with no fee.

Individuals can freeze their credit with Equifax, TransUnion and Experian for free. OIT recommends placing a freeze at all three bureaus. Visit their websites directly to establish the freeze.

When a freeze is established with each bureau, the bureau will provide a pin or secure identification code to secure the account. Individuals can then provide that pin number to the bureau when ready to thaw the credit. An individual may need to thaw the credit when making a large purchase or requesting a loan. When making a purchase that requires a credit check, simply ask the lender which credit bureau they use, and you can thaw the freeze with that bureau only. Remember to re-freeze your credit after the purchase is made.

To learn more about credit freezes, please visit the Federal Trade Commission website.

October is National Cybersecurity Awareness Month. OIT will be posting cyber safety tips throughout the month. For more information about Cybersecurity Awareness Month, visit the National Cyber Security Alliance’s website https://staysafeonline.org.

 

5 Cyber Tips to Follow at Home and at Work

October is Cybersecurity Awareness Month. Keep your information secure at home and at work with the following tips from OIT.

Create Strong Passwords

OIT recommends that all passwords be 12 or more characters, with a mixture of uppercase, lowercase, numbers and special characters. We understand it can be tricky to generate, and remember, complex passwords. Later this semester, OIT will be providing LastPass password management tool for free to all students, faculty and staff. With LastPass, all passwords will be stored in a secure and encrypted environment. Moving forward, the only password you’ll have to remember is your password to LastPass. Stay tuned for more information.

Use 2FA

Most UA students, faculty and staff are familiar with DUO two-factor authentication, but did you know that other websites offer their own version of two-factor? Google, iCloud, Amazon, Facebook and even Snapchat offer two-factor verification to protect the sensitive data in these accounts. Activate two-factor for your personal accounts today.

Credit Freeze

A credit freeze is the best way to prevent malicious actors from using your personal information to open new accounts in your name. When an individual freezes their credit, the credit bureaus cannot provide any information about the individual to lenders until the individual elects to thaw the freeze.  Individuals can freeze their credit with Equifax, TransUnion and Experian for free. OIT recommends placing a freeze at all three bureaus. Visit their websites directly to establish the freeze.

Do not share sensitive data

Hackers do their homework. When malicious actors send spear phishing attacks, they design emails to often come from individuals within your contact list. If you get a suspicious email from a colleague, OIT recommends that you call that individual to verify the email. Do not respond to the email to verify its sender, and do not send any sensitive information via email.

Backup

Finally, backup your data! This applies at home and at work; accidents can happen anywhere. Keep your files safe and encrypted in a cloud storage account like UA Box. This applies to sensitive work material and your grandmother’s coconut cake recipe. Anything you want to keep safe should be stored in a secure cloud storage account. If you prefer to store files on an external hard drive or flash drive, plug the device into your computer, backup your files, and then unplug it and store it in a safe location.

October is National Cybersecurity Awareness Month. OIT will be posting cyber safety tips throughout the month. For more information about Cybersecurity Awareness Month, visit the National Cyber Security Alliance’s website https://staysafeonline.org.

Phishing Alert – October 3, 2018

Wednesday, Oct. 3 2018, many UA students received a phishing email with from the email address pg712031@gmail.com with the subject title “Students Opportunity”.

This email is a phishing attempt designed to steal credentials such as a myBama username or password.  If you haven’t already, please delete the email. Additionally, if you are not a DUO user, please activate your DUO account at duo.ua.edu.

If you did receive this email, and you did provide any sensitive information, please contact the IT Service Desk at 205-348-5555 or itsd@ua.edu.

Endnote X9 Now Available

Your favorite citation manager just got better! OIT is excited to provide the new EndNote X9 to students, faculty and staff at UA. This new version of EndNote includes enhanced reference-sharing capabilities and new reference types. To see a demonstration of EndNote X9, check out EndNote Training’s YouTube Channel.

EndNote is a citation management software that allows users to create customized libraries of references, and automatically create citations and bibliographies matching the requirements of the selected journal or style manual. Users can install EndNote on any personal or UA machine, and Endnote can also be accessed anywhere by using EndNote Online. To download Endnote X9, visit the OIT Software Catalog – https://oit.ua.edu/software.

Please note that effective December 2018 OIT will no longer offer Endnote X7.  Endnote X8 will continue to be available on the OIT software catalog.

Phishing Alert – Sept. 24, 2018

Monday, Sept. 24 2018, many UA employees received a phishing email with from the email address amuir@BakerRipley.org with the subject title “Outlook Upgrade”.

This email is a phishing attempt designed to steal credentials such as a myBama username or password.  If you haven’t already, please delete the email. Additionally, if you are not a DUO user, please activate your DUO account at duo.ua.edu.

If you did receive this email, and you did provide any sensitive information, please contact the IT Service Desk at 205-348-5555 or itsd@ua.edu.

Cybersecurity Panel Event

Join Crimson Defense and The Office of Information Technology for a cybersecurity panel Tuesday, Oct. 2 at 6 pm in the Ferguson Center Theater. Panelists will discuss current topics in cybersecurity, and also present information for students interested in pursuing a career in cybersecurity. The panel will be moderated by Jake Wachs, president of student cybersecurity group Crimson Defense.

Panelists

  • UA Chief Information Security Officer Ashley Ewing
  • Culverhouse College of Business Assistant Professor Dr. Greg Bott
  • Retired Secret Service Officer Craig Caldwell
  • Arts & Sciences Assistant Professor and Academic Director of the Joint Electronic Crimes Task Force Dr. Diana Dolliver

Refreshments will be served after the panel discussion. All students are welcome to attend.