Only use WordPress Gravity Forms for Non-sensitive Information (Tier 0 or 1)! The Gravity Forms plugin included with ITS Self-service and Enterprise WordPress offerings does not limit access to file uploads; these files are stored in a world readable directory … Continued

There are a lot of options for creating and deploying websites. Here is some guidance to help highlight some of the options provided by UNC and to ensure University data is protected when deploying websites for university business.  We also … Continued

Starting this fall, you may see a new functionality in Outlook that will allow you to report phishing and junk with a quick and simple click of a button. This functionality will exist in the web, desktop and mobile versions … Continued

If you’ve ever been asked whether or not you work with sensitive information, you may wonder what the University defines as sensitive information. The University maintains an information classification standard that provides detailed guidance on what is considered classified information … Continued

Protect Your Device from Ransomware  Recent attacks impacting gasoline delivery in Southeast highlight the negative impact that ransomware criminals can have and should prompt us to consider if we are taking the right precautions to protect our important documents and … Continued

Fraudulent Unemployment Claims: Impacts from External Cybersecurity Incidents Such as the Equifax Breach of 2017  Malicious attackers regularly commit unemployment fraud across the United States.  Unfortunately, some of the people who they attempt to impersonate are our employees, and we … Continued

Receiving the news that your personal data may have been exposed can be scary. Beyond changing your passwords for your accounts, there are identity protection measures that you may want to consider if you receive notice that your data was … Continued

Spoofing / Impersonation  Email spoofing and impersonation are techniques where a scammer creates an email message with a forged sender address in hopes of deceiving the recipient into thinking the email originated from someone they know or recognize. Scammers will … Continued

ITS has made the LastPass Premium password manager available to students, faculty and staff for personal use at no cost. As you may recall, we announced last fall at SecurityCon that we would pursue an offering through Internet2 to provide … Continued

Working from home will be a new experience for many members of the UNC-CH community. Here are some tips on how to protect University data while getting your work done at home. Enable the Firewall on Your Computer To protect … Continued