O I T's Blue Tech branding image.
OIT News

Security Alert- Coronavirus Phishing and Malware

Malicious actors are currently using the Coronavirus as a topic for sending phishing emails and spreading malware. These criminals may send an email claiming to be from legitimate organizations with information about the coronavirus, or one that might ask you to open an attachment to see the latest statistics. If you click on the attachment or embedded link, you’re likely to download malicious software onto your device or be directed to a fake login page that harvests your credentials. Attackers have already tricked users into downloading a fake Coronavirus map that installs malware on the victim's device.

 Be very careful of any email related to the Coronavirus that appears to be a CDC alert, health advice, or something that might even look like it's from ISU.

 If you want information on coronavirus, rather than clicking on a link in an email you did not request, our advice is to go directly to the cdc website:  www.cdc.gov

 And, as always, practice good email safety tactics:

  • Always check the sender address. Do not just look at the sender name.  If the sender address doesn’t match the sender name, or looks suspicious in any way, close the email and send it to stop-spoofing@indstate.edu
  • Avoid emails that insist that you act with urgency or an immediate action.
  • Avoid clicking on links that can direct you to a malicious website.  To check the website, hover your mouse over the link.  If it looks like a website that is not an official website for the organization that sent you the email, close the email and send it to stop-spoofing@indstate.edu.

OIT Performance Metrics and Results

OIT monitors key performance indicators on all services, and we are now sharing our results with customers. Please click on the preview image below to access our current infographic. If you have questions or comments about this information, please contact Lisa Spence-Bunnett at 812-237-2100 or lisa.spence@indstate.edu.

October is Cyber Security Awareness month.

Throughout the month, you will receive information and recommendations intended to provide you with knowledge, tips, and techniques to stay safe online. Weekly cyber security topics during the month are:

MFA (Multi Factor Authentication)

Multi-factor authentication (MFA) is a security enhancement that requires two forms of verification when logging into your account, and adds critical protection for user sign-ins and transactions. You likely already use MFA to access your bank account at an ATM (swipe your bank card + enter your PIN) and online accounts (enter your logon credentials + a numeric code sent to your phone).

MFA activation involves changing some settings in your Office 365 account and registering an authentication device (mobile phone, tablet, or office phone).  OIT will host support sessions that faculty must attend on or prior to March 15, 2019, to complete the setup and activation process.  When you attend a support session, OIT will activate you.  If you are not activated in this time period, you will not be able to access your ISU email as of March 16, 2019.

Go here to see the days, times and locations for support sessions, and to register to attend a session, Bring your laptop and smartphone, and your tablet if you use onehttps://challenger.indstate.edu/workshop/user

Please call the Technical Support Center at 812-237-2910 if you have technical questions. If you will not be on campus to attend one of the sessions prior to March 15, 2019, please call the Technology Support Center at 812-237-2910 to request a remote MFA activation session.

Unified Communications

As previously announced the University is in the process of implementing Unified Communications.  This implementation requires a conversion of telephone lines from the existing telephone switch to Skype for Business.  A tentative implementation schedule is available >>here<<.

Please note, this schedule may change based on input from departments.  Email feedback regarding the tentative schedule to UnifiedCommunications@mail.indstate.edu

 Presentation material used by OIT for the 5/22/17 President’s Advisory Council is available >>here<<.

Banner Extended Upgrade

The Banner Administrative System was upgraded to allow for new, improved user interface and additional functionality.  Banner 9 Administrative Pages will soon be replacing the old Banner 8 INB Forms.  This upgrade makes Banner 9 Administrative Pages available through the MyISU portal for authorized employees.

When did this happen?

Friday, February 9th from 6pm through Saturday, February 10th until 12pm noon.

Who was impacted?

All users of the Banner Administrative System.  This includes:

·         Student, Faculty, Employee Self-Service

·         Argos Reporting against Banner Data

·         Blue Reports will have a delay in their data refresh

·         Product integrations, including:

o   E-Commerce Payment Integrations

o   ISU Transcript Request Processing

o   High School Transcript Processing

o   Some Customer Interaction Center (CIC) Screens

 

Why was this done?

To stay current with the product releases, to add new functionality and to retain a supported environment.

 What do I do if I have questions or issues?

If you experience technical issues outside of the maintenance windows, please reach out to the Technology Support Center at 812-237-2910.


Network updates, January 2, 2018

What is happening?

Software updates will be applied to campus core networking systems.

When is this happening?

January 2, 2018 from 8:00 a.m. to 5:00 p.m.

Who is impacted?

All users of the network (Wired, Wireless and Servers) may experience brief drops in service during this maintenance. This includes both inbound and outbound Internet traffic.

Why is this being done?

To apply performance and security related updates to core networking equipment operating systems.

How will this impact me?

Users will experience brief drops in service during this maintenance window. Some equipment and systems may need to be restarted / rebooted after the maintenance window to re-establish proper network operations. OIT System administrators will check systems to ensure that services are operational. No further changes will be needed by users or server administrators. An update will be posted to the system status page (http://systemstatus.indstate.edu/) before, during and after the maintenance takes place as well as any necessary OIT Alerts. 

What do I do if I have questions or issues?

If you experience technical issues outside of the maintenance windows, please reach out to the Technology Support Center at 812-237-2910.

Enhancement to MyISU Portal Security on November 20, 2017.

What is happening?

Beginning on November 20, 2017, ISU faculty and staff will have to complete an additional step when logging in to the MyISU portal.  This is in order to enhance our portal security, after recent phishing attacks.

The step will be added after you have entered your ID and password when logging in to the MyISU portal.  In this additional step, you will be required to select an image (a photograph) from a grid of images.  This additional step is sort of like another password.    This security technique is called “multi-factor authentication,” because you have to use two different “factors” (a password, and an image) to confirm to the system that the right person is logging in with your ID.

Who is affected by this change?

All ISU employees who log in to the MyISU portal are affected by this change. 

How will this work?

There are two steps:  (1) setting up the images that are “yours,” and (2) selecting “your” image each time you log in to the MyISU portal.  Information about each step is provided below.

Setting up “your” images

  1. On November 20, 2017, OIT will enable your MyISU account for image based multi-factor authentication (MFA).  The first time you attempt to access the portal after the change is made, you will be asked to set up your security images in an easy, two-step process:  choose your images, and save them.
  2. The images will be in categories, and the system will walk you through the process.  You will choose a total of three images, in a combination of categories that will be explained on the screen.  Categories are things like cats, trees, and flowers.
    • Important:  Make sure you choose images that you will easily remember!  As you choose an image, think for an extra second or two about why you are choosing that image.  That may help you to remember your particular image when you are looking at a bunch of other, similar images when you log in to the portal.
  3. Save your choices.

Selecting “your” image when you log in to the portal each time

  1. The next time you log in, after you key in your password and press enter, you will be asked to select the correct image (one of the images you chose) from a grid of 20 images.
  2. You will have six (6) tries to select the correct image.  If you choose incorrect images six (6) times, your account will be locked and you will have to call the Technology Support Center to reset your account.
  3. Recommendations:
    1. As stated above, think carefully about why you are selecting a particular image when you choose your three images
    2. Contact the Technology Support Center if you forget your images after four (4) incorrect tries so the TSS can reset your images before you are locked out of the portal completely.

When will this happen?

As stated above, this new security method will be activated on November 1.  On or after that day, when you log in to the MyISU portal, you will go through the “Setting Up Your Images” process described above.

Why are we doing this?

As you are probably aware, our environment for security continues to grow more challenging on what seems like a daily basis.   OIT is actively working on improvements to our defense-in-depth strategy.  This new security method would likely have prevented security incidents that have been experienced recently.  It is probably similar to security processes you are experiencing for your online banking and other accounts.  This change has been reviewed and approved by OIT’s administrative and academic advisory committees. 

What if I have questions? 

For more information, please call the Technology Support Center at 2910.

IT Plan Now Available for Viewing

OIT completed its 2016/17 planning efforts with the publication of our plan.  The link below to our presentation outlines the foundations of the plan and provides a view of goals and initiatives.  OIT has also developed a timeline for major initiatives.  This timeline will be updated periodically for current status of projects.

View or download our IT plan here.

Office365 Mailbox Merge FAQ Now Available

The following text is an excerpt from our knowledge base FAQ article on this topic. The link at the bottom of this article will take you to the full article.

Office 365 (O365) is a cloud-based environment that will replace our on-campus Exchange/Outlook environment for faculty/staff email.  Office 365 also provides access to Microsoft Office applications, Microsoft OneDrive for Business, and other productivity tools.  Our student email already runs in this environment.

Who is affected by the O365 mailbox merge?

Note: only users who have both an @indstate.edu address and an @sycamores.indstate.edu addresses are affected by the mailbox merge process.

  1. All individual accounts that currently run in our on-campus Microsoft Exchange environment will be migrated to O365.  This includes faculty, staff, University Affiliates, and retirees.  Student employees with @indstate.edu accounts will be handled differently (see Merge section below).   
  2. Students are already on O365 and are not affected.

>click here to go to the full FAQ on this subject<