Security | Information Technology | University of Pittsburgh
!

Search form

You are here

Home

Security

November 2024 Microsoft Security Update

Monday, November 11, 2024 - 12:45

Microsoft Corporation has announced security updates for November that affect a broad range of Microsoft products. Microsoft Corporation typically announces security updates on the second Tuesday of each month.

Pitt Information Technology recommends that users immediately identify and install the security updates necessary to remediate these vulnerabilities by using Microsoft's Windows Update feature on their computers as soon as possible within the following guidelines:

  • Install patches addressing zero-day and known exploited vulnerabilities within 14 days of release.
  • Critical/high and unknown/unspecified common patches within 30 days of release.
  • Low/medium common patches within 90 days of release.

Specific information about the updates is available on Microsoft’s Security TechCenter, notably the Base Score – or severity rating – for each vulnerability. More information on the Base Score/severity ratings is available from sans.orgPlease note that some patches will require a system reboot to take effect.

All University devices should utilize Microsoft Defender for Endpoint/Server as the endpoint protection solution.  Additionally, Pitt IT recommends that students, faculty, and staff utilize an endpoint protection solution such as Microsoft Defender for personally owned devices.

Please submit a request to the Technology Help Desk or call +1-412-624-HELP (4357) if have any questions about this announcement. These announcements are led by Pitt IT Security.

Phishing Alert: Fake Email Scam Mimics Pitt Passport Login Page

Friday, May 20, 2022 - 22:05

 

Pitt Information Technology has identified a new email phishing scam targeting University students, faculty, and staff. The scam claims you have a new important message and prompts you to click a link to view it. The link directs you to a webpage that mimics the Pitt Passport login page, which attempts to collect your Pitt username and password. The scam appears to originate from a University email address.

The following is a sample of the recent scam. Note that this scam message may appear in your junk email or quarantined email folder. Always use caution in responding to messages in these folders. If you receive this message (or any message similar to it), please report it as a phishing scam by forwarding the email message as an attachment to phish@pitt.edu. Detailed instructions on reporting scams are available at https://www.technology.pitt.edu/security/phishing-scams.

******************************************************************************

From: Pitt user
Subject: Secure Message

You have 1 New Important Message

Click below to view message details.

<malicious link>

University of Pittsburgh

******************************************************************************

Clicking the link displays a webpage that mimics the Pitt Passport login page:

Pitt IT strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. If you were not expecting to receive such an email, confirm with the sender prior to interacting with the message. If you must interact with the message, avoid clicking on links contained in such emails. These may lead to sites that contain malicious software, or sites that attempt to steal your credentials. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, Pitt IT recommends that all students, faculty, and staff install Antivirus and Anti-Malware (Malwarebytes) Protection. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Please contact the Technology Help Desk at 412-624-HELP (4357) if you have any questions regarding this announcement.

Modern Authentication Affects Some Outlook Logins Beginning May 20

Friday, April 22, 2022 - 11:36

 

Effective Friday, May 20, 2022, Pitt Information Technology will enhance Pitt Email security by enabling Microsoft’s Modern authentication protocol. 

Pitt IT is required to make this change in response to Microsoft’s announcement that it is ending support for Basic authentication and replacing it with the more secure Modern authentication protocol. These authentication protocols dictate how users log in to their email client: Basic authentication relies only on your username and password, whereas Modern authentication leverages Pitt Passport and multifactor authentication.

In alignment with Microsoft’s requirement, Pitt IT will prepare the University’s computing environment in two phases:

  • Phase 1: Enable Modern authentication on May 20
  • Phase 2: Disable legacy Basic authentication by Aug. 1

Take Action: Prepare for Phase 1 (before May 20)

  1. Understand how logging in to the Outlook desktop client will change.

After Modern authentication is enabled on May 20, you will occasionally be prompted to log in to your Outlook 2016 or later desktop client with Pitt Passport and multifactor authentication, similar to the way you log in to Microsoft Teams today. Outlook will not prompt you to log in every day. However, like Teams, Outlook may prompt you to log in if you have not used it in a while.

  1. Convert sponsored accounts that are used to share mailboxes to resource accounts.

In some departments, individuals may be sharing the credentials of a sponsored University Computing Account to manage a Pitt Email mailbox or calendar. Effective May 20, resource accounts will replace sponsored accounts as the method for sharing the management of Pitt Email mailboxes and calendars. If you currently share a sponsored account with others in your department for this purpose, please complete the steps on our website as soon as possible to transition the account to a resource account before May 20.

Take Action: Prepare for Phase 2 (before Aug. 1)

Software and services that are incompatible with Modern authentication will stop working after Basic authentication is disabled on Aug. 1. Please take the following steps now to prepare: 

  1. Upgrade your desktop email client if you are using Outlook 2013 or an earlier version.

    To ensure uninterrupted access to your Pitt Email, individuals who use Outlook 2013 or previous versions should upgrade to the current version of the Outlook desktop app through Office ProPlus before Aug. 1. Outlook 2013 will no longer work with your Pitt Email after Aug. 1. (To determine your current version of Outlook, choose File > Office Account > About Outlook.)       
     
  2. Prepare Pitt Email on your mobile device.

    Individuals who access Pitt Email from their mobile devices are encouraged to use the Microsoft Outlook mobile app for Android and iOS devices. Most major third-party email apps also support Modern authentication, including, but not limited to: Gmail app for Android and the built-in Mail app for iOS 11.3.1 and later. (Learn how to find your iOS version or find your Android version.)
     
  3. Ensure departmental applications that integrate with Pitt Email/Calendaring support Modern authentication.

    Departments should identify applications that are using Basic authentication to connect to Microsoft-hosted resources and transition them to methods supported by Modern authentication. In some cases, application developers may need to adjust permissions or change the email protocol.
     
  4. Upgrade non-Outlook email clients and transition from legacy email protocols.

    Individuals who access Pitt Email from non-Outlook email clients (e.g., Thunderbird) should verify whether the client supports Modern authentication. If it does, ensure the client’s settings have been updated to enable Modern authentication. If the client does not support Modern authentication, upgrade to a client that does and configure it appropriately. In addition, those who use legacy email protocols like IMAP, POP, and EWS to connect to their Pitt Email will need to switch to email clients that support Modern authentication.

Learn More

Additional details about how Modern authentication affects you, including answers to frequently asked questions, can be found on our Modern authentication webpage and Microsoft’s webpage. This page will be updated as more information becomes available.

Please contact the Technology Help Desk at 412-624-HELP (4357) if you have questions or need assistance.

Modern Authentication Affects Some Outlook Logins Beginning May 20

 

Effective Friday, May 20, 2022, Pitt Information Technology will enhance Pitt Email security by enabling Microsoft’s Modern authentication protocol.

Zoom Security Guide

The following information outlines the steps necessary to host more secure Zoom meetings and webinars. Using the settings recommended below can protect your meetings against Zoom bombing, a practice in which an uninvited attendee disrupts a Zoom meeting by sharing inappropriate or offensive material. 

Phishing Alert: Payroll Notification Scam Links to Malicious Website

Monday, December 7, 2020 - 09:56

 

Pitt Information Technology is responding to an email phishing scam that claims to be a payroll notification from the University. The email links to a malicious website that attempts to capture an individual’s University credentials and mimics a Microsoft login page. The scam originates from outside the University, but the message claims to be from a University of Pittsburgh source.

The following is a sample of the recent scam. If you receive this message (or any message similar to it), please report it as a phishing scam by forwarding the email message as an attachment to phish@pitt.edu. Detailed instructions on reporting scams are available at https://www.technology.pitt.edu/security/phishing-scams.

******************************************************************************

From: Pitt <external email address removed>
Sent: Sunday, December 6, 2020 2:11 PM
To: Doe, J <jdoe@pitt.edu>

Subject: Payroll Notification 

You have a payroll update from pitt.edu Staff Portal

<link removed> to read.

Best Regards,
pitt.edu.

******************************************************************************

Clicking the link in the email takes the reader to a fake Outlook Web App login page like the one shown below:

Pitt IT strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. If you were not expecting to receive such an email, confirm with the sender prior to interacting with the message. If you must interact with the message, avoid clicking on links contained in such emails. These may lead to sites that contain malicious software, or sites that attempt to steal your credentials. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, Pitt IT recommends that all students, faculty, and staff install Antivirus and Anti-Malware (Malwarebytes) Protection. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Please contact the Technology Help Desk at 412-624-HELP (4357) if you have any questions regarding this announcement.

Pitt Adopts New Antivirus Solution

Due to an unexpected and significant increase in licensing fees, the University of Pittsburgh adopted Microsoft Defender for Endpoint as its new enterprise antivirus solution, replacing Symantec Endpoint Protection (SEP) effective Friday, June 5, 2020.

Moving to Microsoft Defender for Endpoint provides the opportunity to deliver an excellent antivirus solution at substantial cost savings for the University,

You're Protected with Duo Multifactor Authentication

Multifactor authentication, provided by Duo Security, adds another layer of security to your online accounts when using Pitt Passport. Two “factors” are required to verify your identity when you log in to a service. You'll need something you know (your password) and something only you have (such as your mobile phone, on which you will receive a login confirmation notice).

Learn More about Duo