University of Maryland Baltimore Center for Information Technology Services posts displayed by tag

OneDrive for Office 365 Offers Flexibility for Your Files

OneDrive is UMB’s new, secure, and universally accessible storage location for all your work files. It is HIPAA and FERPA compliant and University approved.

However, OneDrive offers a lot more than just file storage. It’s an integral part of Office 365, and by using OneDrive, it also allows you to:

  • Access your files securely from anywhere.
  • Share files with others.
  • Work on Office documents with others at the same time.

In a word: Flexibility!

Once your files are in OneDrive, you can access them from any computer or mobile device that has internet access. If you’re at a meeting across campus, at home, traveling for work — whatever the scenario — you can get access to your files  by using the Office 365 portal or mobile app.

Again, OneDrive is HIPAA and FERPA compliant, so you can be assured that your files are safe and secure no matter where you’re accessing them from.

If you need a colleague to review a file, you can let them view and update the file in your  OneDrive by using the “Share” feature — meaning their changes will automatically appear in the file. There’s no need to email a file back and forth.

You also can be in the file at the same time as your colleague, and both can make real-time updates.

By using OneDrive to securely store your files, you gain great flexibility and accessibility. To help you, the Enterprise Training Group provides training opportunities and resources. Please visit the Center for Information Technology Services’ Office 365 website for information.

Sarah Steinberg Bulletin Board, Technology, University LifeNovember 15, 20170 comments
Read More

Internet Security Tips: Take a Closer Look Before You Click!

To protect yourself as you read email and surf the web, you need to know where links are going to take you, compared to where you expect to go, because links and their associated addresses can be misleading. Email sent by phishers and hackers may contain links that look like they go to familiar, expected locations — but not quite. Do you know how to tell an authentic link from a fake?

You may see “Click Here” in an email message. You can examine where that link goes by putting your cursor over the link without clicking. Try it — your browser will show you the link address. Does it go where you are expecting it to go? It also is possible for the destination web page to send you off to another page, so you should check at the top of your browser for the actual web address of the page you are viewing.

Instead of a “Click Here” link, you may see an actual link like this in an email message —  http://payroll.umaryland.edu/IncreaseYourPay.html — but just like the “Click Here” link, that address link actually might go someplace else. Put your cursor over the link without clicking, and your browser will show you where it will really send you. Does it go where you want to go?

Web page addresses have this general format:

http(s)://website name.umaryland.edu/file/path/filename.ext?parameters

Notice the punctuation around the website name:

  • :// — immediately before the website name
  • / — immediately after the website name

Any valid website at UMB will end with “umaryland.edu” and be located immediately after the double slashes and before the first single slash. 

These links look the same, but are they?

www.umaryland.edu/cits

www.umaryland.edu/cits

If you put your cursor over a link without clicking on it, your browser will generally display the address that the link really goes to, regardless of what the text under your cursor actually says.

You need to be on guard against attempts to fool you into believing it is at a safe, familiar site instead of a criminal or hacked site. The essential rule is: The real host name always appears immediately after the double slashes and before the FIRST single slash.  Hackers may build a web page address with a familiar host name before the SECOND single slash in an attempt to get you to believe their malicious site is familiar.  If you see “umaryland.edu” anywhere else in the whole address, it may be a distractor to make you think you are going to a UMB web page when you are not.

http(s)://website name/file/path/filename.ext?parameters

www.umaryland.edu/cits

Hovering before clicking and checking for a familiar host name in the correct position will save you from a great many scams and tricks offered in your email and on the web.

If you see “umaryland.edu” anywhere else in the whole address, it may be a distractor to make you think you are going to a UMB webpage when you are not.

This same rule holds true if you are expecting a web page on any other website that you may be familiar with. If you are expecting to go to PayPal, Amazon, Gmail, etc., always look for that familiar website name immediately before the first single slash.

https://www.paypal.com/home

http://www.amazon.com/

https://mail.google.com/mail/u/0/#inbox

http://www.maryland.gov/Pages/default.aspx

http://www.irs.gov/

http://www.wbal.com/

http://www.cnn.com/

http://www.redcross.org/

http://www.army.mil/

Here is an actual phishing email example:

From: Email Adminstrator <Email Administrator@umaryland.edu>

Subject: Warning !!!

Date: February 10, 2015 4:04:13 PM EST

To: undisclosed-recipients:;

Bcc: <fsmith@umaryland.edu>

Reply-To: <mailto:nz2091@qq.com>


Dear User,

We have received many negative complaints against your email address that it is being used by spammers to promote spam remotely. We wish to notify you that we will temporarily lock down all emails sent from your address and reject them until we successfully verify that this email is under ownership of the authentic user and not by some bot.

So, if you are reading this then an important action is required by you to save your email from being flagged and to avoid further discontinuation of your outgoing email service. Please click here to authenticate the ownership of your account and “Click here

Copyright © 2015 Email Security Team. All Rights Reserved

  • Hover over the From: address — It’s not from anyone at UMB.
  • Look at and hover over the Reply-To: — It doesn’t belong to anyone at UMB.
  • Hover over the “Click here” — It’s taking you to a site outside of UMB, it doesn’t have .umaryland.edu anywhere in the link.
  • If you receive an email that has that has any of these characteristics, DELETE it.

Here is a legitimate email example:

The Password for your UMID account will expire on 1/13/2015 10:06:12 AM.

This is the password used to access all UMID authenticated applications, such as the myUMB Portal, eUMB Systems, COEUS, Effort Reporting, SURFS, Blackboard, Google Apps @UMaryland, myUMB Mail, Campus Wireless (eduROAM), Library Resources, and Mediasite.

If you do not change your password, your password will expire and you will lose access to all UMID Authenticated Systems/Applications.

To reset your password, go to the Account Management Site (https://directory.umaryland.edu) and log in with your UMID and current Password. Click on the “Password” link on the left side of the screen to enter a new password.

If you do not remember your UMID or password, click on the “I cannot log into UM Account” link.

If you have any questions or the system does not accept the answer you are entering for your verification, please contact the IT Help Desk at 410-706-4357 (x6-HELP) or help@umaryland.edu.

Sincerely,

IT Help Desk
Center for Information Technology Services (CITS)
University of Maryland, Baltimore
601 W. Lombard Street, Room 540
Baltimore, MD 21201
410 706-4357 (x6-HELP)
help@umaryland.edu
www.umaryland.edu/helpdesk

 

  • This email passes all of our checks to verify links and addresses.
  • Don’t trust that just because it has the campus branding that it is legitimate — that is easily copied and can be added to more sophisticated email phishing attempts. Just remember to take a closer look, hover, and check all links before clicking through.
Fred Smith Technology, University LifeOctober 30, 20170 comments
Read More

Cybersecurity Awareness: Protect Against Ransomware

All employees at UMB can take simple actions to protect themselves online and recover their data in the event of a cyber incident. This week’s topic covers ransomware and simple steps that an individual or organization can take to improve their online safety.

What is ransomware?

Ransomware is essentially advanced malware whose mission is to take everything stored on your computer and encrypt it. After encrypting your information, the offender will offer to decrypt all of your content for a fee, therefore “ransoming” your data. Ransomware is particularly concerning to businesses that often are asked to shell out thousands of dollars to obtain the decryption keys and in many cases pay but never receive the information necessary to recover their files.

How can I protect myself and the University?

The No. 1 protection against ransomware is vigilance. Malware infections usually make their way onto a user’s computer by persuading them to open a file or run a program by sending a phishing email. In addition to training, which the University will be providing in the coming months, anti-virus software is required for all University-owned computers — we provide network monitoring and an intrusion prevention system (IPS) at the campus gateway to the internet and in front of all administrative servers (i.e., PeopleSoft and Banner).

Simple things like applying the principle of least privilege or the removal of admin rights for user’s computers can help stop the spread of malware throughout the University. Also, it is important to regularly back up your system to a removable drive that can be completely detached after the backup is complete if it contains business critical data.

What should I do if I am infected with ransomware?

If you think the infection is confined to a single machine at your home or at the University, you should immediately disconnect the infected machine from the network. This will help prevent further spread. In some cases, ransomware can be cleaned using software available from anti-virus and anti-malware vendors. In other cases, the user must decide if the content they have lost is worth the ransom and whether the risk of paying without receiving the unlock codes is acceptable.

It is important to determine exactly what ransomware the machine was infected by and how it was activated to prevent accidental spread after the event has concluded. If you have questions about ransomware, please contact Security and Compliance at security-compliance@umaryland.edu

Fred Smith Bulletin Board, University LifeOctober 12, 20170 comments
Read More
Qualtrics

Qualtrics Is Now Available at UMB

Qualtrics is now available to faculty, staff, and students at UMB. It is an easy-to-use online survey software that’s powerful enough to perform even the most sophisticated research. With Qualtrics, survey creation is simple. You can easily collaborate your surveys and results with other faculty and analyze results inside and outside the platform (connect to SPSS, Mechanical Turk, etc.).

Additionally, Qualtrics recently launched the Insight Platform that includes new features and functionality. Over the next few months, try it out and find out how the Insight Platform can take your academic research to the next level!

How are people like me using Qualtrics?

• Academic research
• Class quizzes
• Classroom learning
• Course evaluations
• Conduct academic research
• Enhance your resume
• Improve class projects
• Launch field studies
• New! Qualitative research with text analytics

FIND OUT MORE

Joe Dincau Bulletin Board, Education, People, Research, Technology, University AdministrationMay 4, 20170 comments
Read More

New and Improved Process for eUMB Access Requests

CITS is very excited to announce our new, streamlined process for requesting access to eUMB Financials, HRMS, RAVEN, and eForms.

For years, users requesting access to these systems needed to send their completed access request forms to the IT Help Desk. The Help Desk team would then submit the form into our ImageNow document management system for approval and processing by the appropriate eUMB team. These extra steps could add hours to the process.

The middle step has been removed, allowing users to submit the request directly into ImageNow and bypassing the Help Desk!

Each system – Financials, HRMS, RAVEN, and eForms – has its own request form, and each form must be sent to the appropriate eUMB team:

These addresses are printed on their respective forms. Access requests will no longer be accepted via fax beginning June 1.

If you have any questions, please email help@umaryland.edu.

Stephen Giermek Bulletin Board, People, Technology, University AdministrationApril 21, 20170 comments
Read More
Creative Cloud Apps

Adobe Creative Cloud – The World’s Best Creative Apps!

“Researcher. Designer. Photographer. Filmmaker. Dreamer.

No matter who you are, Creative Cloud gives you the world’s best creative apps so you can make just about anything you want, wherever inspiration takes you.”

The CITS Software Licensing Office offers Creative Cloud – either as a collection or as individual titles. This annual subscription is available to UMB students, faculty, and staff, for use on UMB-owned or personally owned computers.

Email software@umaryland.edu for more information.

Content courtesy of Adobe Creative Cloud site.

Stephen Giermek Bulletin Board, People, Technology, University LifeApril 6, 20170 comments
Read More
Computer-Software

Microsoft Project and Visio Now Available

The Software Licensing Office is excited to announce that Microsoft Project Professional 2013 and Visio Professional 2013 are now available for purchase by faculty, staff, and students at a deep discount.

With Microsoft Project Professional 2013 deliver winning projects! Start with a common project template, input information from Excel or SharePoint, or begin with a blank Gantt Chart. Schedule tasks, create a timeline, report on your progress, and collaborate with your team.

Communicate complex information simply with Microsoft Visio Professional 2013. Dozens of included templates get you started quickly. Themes give your drawings a professional look. Add visual impact easily. Connect your diagrams to real-time data to make complex information easier to scan and understand.

Project Pro 2013 and Visio Pro 2013 are now available for purchase by faculty, staff and students for installation on personally owned computers. You can buy both of these titles for $100 each through the Software Licensing Office.

Email software@umaryland.edu for additional details or purchase online.

Stephen Giermek TechnologyMarch 10, 20170 comments
Read More