There is currently an increased cyber security risk to our University and we are asking all students and staff to be vigilant and aware – particularly for phishing emails.
As the situation in Ukraine continues to unfold there is a strong likelihood that those conducting cyber warfare against Ukraine will turn their focus elsewhere. While the University may not be a principal target, the WannaCry ransomware attack that impacted the NHS in 2017, showed us how rapidly things can spread to unexpected targets.
Our University has a range of protections in place to help reduce the risk from ever-present cyber security threats. As we continue to monitor and respond to these, there may be times where we need to take swift action and implement changes at short notice. You may for example see more applications being protected by 2-factor authentication from Duo.
We know that such changes can be frustrating especially if they happen at short notice, and we will always try to keep any disruption to a minimum; but it is essential that we take any measure we need to keep our University, its IT infrastructure, and its data – including your personal data, safe.
What you can do to help:
- Stop phishing in its tracks: Remember – JDLR. If it Just Doesn’t Look Right, or sounds too good to be true, then it is likely phishing – trust your instinct, report it and then delete it.
- Run regular updates: Ensure your laptop has the latest security and software updates.
- Stay login savvy: If you receive an approval notification from the Duo Mobile App when you’re not logging in, don’t approve – it could be a hack attempt. If this happens, visit the IT Account Manager straight away to change your password.
- Have a strong password: Ensure your passwords are strong, secure, not guessable and never disclosed – see the IT Services password page for advice. Immediately change any passwords you are concerned about.