BCNet Power re-configuration to impact Hospital Wireless and Video Conference Services – October 13, 2017 19:00 – 24:00 PT

Maintenance will be performed on Hospital Wireless and Video Conference services in order to facilitate a BCNet power re-configuration project. During this maintenance window on Friday, October 13, 2017 19:00 -24:00 PT, Hospital Wireless and Video Conference services will be affected and users may experience intermittent connectivity.

Update – Intermittent FASMail Connectivity – 2 October 2017 17:00 PT

The following message is being shared with the campus community on FASMail connectivity issues that some campus users may have been experiencing recently. Further to our last post from earlier this afternoon, the Email team has made a number of changes based on Microsoft’s recommendations. Since implementing these changes, we noticed a decline in dropped […]

Shibboleth Consent Form Implementation for Sauder Applications – August 15, 2017 11:30 – 12:30 PT

As a requirement, Sauder students will be presented with a consent form when accessing the Shibboleth-enabled applications VMock and 12Twenty. The form requires consent from the user to share a list of his/her CWL attributes with the application before proceeding. Visitors can accept the terms of the consent form and proceed to the application or […] Information Security Breach

On December 20, 2016 UBC employees, who have an account with, may have received an email reporting an information security breach of their learning data. Please note that receipt of this message does not mean that your information was compromised. At this time, only 0.6% of profiles were compromised:  What risk is there […]

Dropbox Breach Notification

Dropbox® recently confirmed that 68 million email addresses and password information were stolen from their database. UBC IT has received the list of credentials that were identified as associated with this breach. The IT Service Centre has sent out the notification below to these users. If you have been impacted by this breach, please update […]

DirtyCOW Linux Kernel Vulnerability

A vulnerability called the DirtyCOW has been disclosed for all Linux systems, but is especially problematic for multi-user systems, that allows attackers to locally gain escalated privileges for the affected system. Multi-user Linux systems should be prioritised for patching ahead of other systems such as application servers. DirtyCOW is a vulnerability in Linux’s copy-on-write (COW) […]

Mirai Botnet

The Mirai Botnet has been attributed to a large number of distributed denial of service (DDoS) attacks globally, including Dyn, a major Domain Name System company that supports Twitter, Netflix and Airbnb. The malware targets Internet of Things (IoT) devices with default credentials, such as webcams and CCTV cameras. The ports that are impacted by […]

MySQL zero-day exploit

A vulnerability in the MySQL database has been detected, allowing attackers to compromise servers by remotely injecting malicious settings and modifying MySQL configuration files (my.cnf). Severity High CVE Number This issue has been assigned CVE-2016-6662. Impacted Servers The vulnerability affects MySQL servers in default configurations in all version branches (5.5, 5.6, and 5.7), including the […]

Hate Speech Printouts

A number of units have reported receiving hate speech printouts, which contain threatening and hateful language. As a temporary measure we have blocked the IPs listed below, which are suspected to be the source of these printouts. This is a reminder that unsecured printers that are internet accessible can be exploited and can create a […]

Security Warning – Spam emails containing ransomware – July 7, 2016

There has been an increase in the number of emails being sent by fraudulent email addresses, which contain an attachment with the Locky ransomware. The subject line of these emails are randomly generated letters and numbers, and may differ from message to message. While our email server anti-virus are blocking most of these messages, some […]