Security

Warning of Fraudulent Email with Subject “RE: 19th of July” – July 19, 2018

Do not reply to this email or otherwise engage with the sender — it is a fraudulent attempt to gain sensitive account information from you. If you think you may have provided such information, such as  your CWL login credentials, please log into myAccount, change your password immediately and advise security@ubc.ca of the possible temporary […]

.SLK Attachment Mail Relay Block July 17, 2018 – 10:00 PT

On July 17th, 2018, UBC IT will be implementing a new email blocking rule for .SLK (symbolic link) files for all messages that pass through the UBC mail-relays, including UBC’s Faculty and Staff email (FASmail). After this date, people who attempt to send a message through FASmail with an .SLK file attached will receive an […]

Fraudulent Email Alert: Library Account Expiration – July 7th, 2018

Do not reply to this email or click on the link contained in the email. If you think you may have submitted a password you use for a UBC account, please change the password ASAP and advise security@ubc.ca of the possible temporary breach of your account.  The email can be deleted from your Inbox or mobile phone. […]

Fraudulent Email Alert: Important Alert – July 1st, 2018

Do not reply to this email. If you think you may have submitted your CWL login credentials, please log into myAccount, change your password immediately and advise security@ubc.ca of the possible temporary breach of your account.  The email can be deleted from your Inbox or mobile phone.   From: UBC System Administrator  Sent: Sunday, July 01, 2018 7:51 AM […]

Fraudulent Email Alert: Ubc Update – June 28th, 2018

Do not reply to this email or click on the link contained in the email. If you think you may have submitted your CWL login credentials, please log into myAccount, change your password immediately and advise security@ubc.ca of the possible temporary breach of your account.  The email can be deleted from your Inbox or mobile phone.   From: Reem […]

Moodle LMS Vulnerability – June 26, 2018

A new vulnerability has been detected in Moodle, the open source PHP-based learning management system (LMS). The vulnerability, named ‘Evil Teacher’ allows for remote code execution. Severity Critical CVE Number CVE-2018-1133 Impacted Platforms The vulnerability appears to impact versions older than 3.5.0, which means most instances are impacted. Exploitation is limited to those assigned as […]

CWL Admin: Unable to reset passwords June 18, 2018 09:15 PT – RESOLVED

As of 09:15, CWL administrators are not able to change users’ passwords through the CWL admin tool. Our IAM team is investigating. As of 09:40, the issue was resolved. There were uncommitted transactions blocking the queue from the web UIs — IAM’s DBA identified and deleted the block.

New Automated Web Vulnerability Scanning Service – June 11, 2018

A new automated web vulnerability scanning service will be implemented at UBC starting on June 11, 2018. This new service will scan hosts serving up web pages or web applications on UBC networks. For more information on this service, including source IP addresses and how results will be processed, please visit https://cc.cybersecurity.ubc.ca/?p=1540 * To ask […]

Fraudulent Email Alert: RE: IT Service Desk !! – June 5th, 2018

Do not reply to this email or click on the link contained in the email. If you think you may have submitted your CWL login credentials, please log into myAccount, change your password immediately and advise security@ubc.ca of the possible temporary breach of your account.  The email can be deleted from your Inbox or mobile phone.   From: Blackburn, […]