<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0"
	xmlns:content="//purl.org/rss/1.0/modules/content/"
	xmlns:wfw="//wellformedweb.org/CommentAPI/"
	xmlns:dc="//purl.org/dc/elements/1.1/"
	xmlns:atom="//www.w3.org/2005/Atom"
	xmlns:sy="//purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="//purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>UM TodayInformation Security &#8211; UM Today</title>
	<atom:link href="https://umtoday-wordpress.ad.umanitoba.ca/tag/information-security/feed/" rel="self" type="application/rss+xml" />
	<link>https://umtoday-wordpress.ad.umanitoba.ca</link>
	<description>Your Source for University of Manitoba News</description>
	<lastBuildDate>Tue, 27 Jan 2026 15:13:58 +0000</lastBuildDate>
	<language>en-US</language>
		<sy:updatePeriod>hourly</sy:updatePeriod>
		<sy:updateFrequency>1</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.7.1</generator>
	<item>
		<title>Safeguarding Digital Spaces</title>
        
          <alt_title>
                 
</alt_title>
        
        
		<link>https://umtoday-wordpress.ad.umanitoba.ca/safeguarding-digital-spaces/</link>
		<comments>https://umtoday-wordpress.ad.umanitoba.ca/safeguarding-digital-spaces/#respond</comments>
		<pubDate>Wed, 16 Apr 2025 19:06:00 +0000</pubDate>
		<dc:creator><![CDATA[Sarah Vanderveen]]></dc:creator>
				<category><![CDATA[Network News]]></category>
		<category><![CDATA[Faculty and Staff]]></category>
		<category><![CDATA[Information Security]]></category>
		<category><![CDATA[Information Services and Technology]]></category>
		<category><![CDATA[provost and vice-president (academic)]]></category>
		<category><![CDATA[Students]]></category>

		<guid isPermaLink="false">https://news.umanitoba.ca/?p=214932</guid>
		<description><![CDATA[DeepSeek, (Hangzhou DeepSeek Artificial Intelligence Basic Technology Research Co., Ltd.) is a large language model Artificial Intelligence (AI) chatbot launched in February 2025. It has quickly become a popular AI application. However, third party audits and UM internal investigations have identified numerous security and privacy concerns, including a lack of data transport layer security and [&#8230;]]]></description>
        
        <alt_description><![CDATA[<img width="120" height="90" src="https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2025/04/AI-chatbot-user-120x90.jpeg" class="attachment-newsfeed size-newsfeed wp-post-image" alt="Woman working on a laptop computer and using a mobile phone." style="margin-bottom:0px;" decoding="async" /> UM adopts new regulations regarding the Artificial Intelligence (AI) chatbot, DeepSeek, in order to safeguard the safety and privacy of UM members.]]></alt_description>
        
				<content:encoded><![CDATA[<p>DeepSeek, (Hangzhou DeepSeek Artificial Intelligence Basic Technology Research Co., Ltd.) is a large language model Artificial Intelligence (AI) chatbot launched in February 2025. It has quickly become a popular AI application.</p>
<p>However, third party audits and UM internal investigations have identified numerous security and privacy concerns, including a lack of data transport layer security and several below standard data encryption practices. DeepSeek also collects extensive data (including personal information) and, as a result of insecure practices, this data is at risk.</p>
<p>These concerns have prompted the Canadian federal government and several Canadian universities to take precautionary action by banning the use of DeepSeek.</p>
<p>After careful review by IST and the Provost Office, several recommendations were proposed to safeguard the safety and privacy of UM members. These recommendations have been approved by the President’s Executive Team and the following regulations now apply to all UM students, faculty, and staff.</p>
<h3>New regulations:</h3>
<ol>
<li>All members of UM must remove DeepSeek from any UM owned devices or any other devices (including personal devices) that connect to the UM network.</li>
<li>IST will block the DeepSeek domain and URL’s on the UM campus firewall.</li>
<li>IST will block DeepSeek (via Intune and Defender application firewall) on any devices that are managed with Intune or Defender applications.</li>
</ol>
<p>Exceptions may be considered for academic purposes. Please contact <a href="https://umanitoba.ca/information-services-technology/information-security-and-compliance">Information Security and Compliance</a> via the <a href="mailto:srvdesk@umanitoba.ca">IST Service Desk</a> for more information.</p>
<p>&nbsp;</p>
<p>The UM Artificial Intelligence (AI) Committee is in the process of establishing an AI Framework for the university.</p>
<p><em>These restrictions are issued under the UM Use of Computer Facilities Policy and the Information Security Policy. Non-compliance may be addressed through appropriate remedies in accordance with UM policies.</em></p>
]]></content:encoded>
			<wfw:commentRss>https://umtoday-wordpress.ad.umanitoba.ca/safeguarding-digital-spaces/feed/</wfw:commentRss>
		<slash:comments>0</slash:comments>
		</item>
		<item>
		<title>Safeguarding research at UM</title>
        
          <alt_title>
                 
</alt_title>
        
        
		<link>https://umtoday-wordpress.ad.umanitoba.ca/safeguarding-research-at-um/</link>
		<comments>https://umtoday-wordpress.ad.umanitoba.ca/safeguarding-research-at-um/#respond</comments>
		<pubDate>Thu, 27 Jul 2023 19:45:07 +0000</pubDate>
		<dc:creator><![CDATA[Davide Montebruno]]></dc:creator>
				<category><![CDATA[Network News]]></category>
		<category><![CDATA[Information Security]]></category>
		<category><![CDATA[Open scholarship]]></category>
		<category><![CDATA[Research and International]]></category>

		<guid isPermaLink="false">https://news.umanitoba.ca/?p=181386</guid>
		<description><![CDATA[The UM Office of Research Security launched earlier this year to provide additional support to assess security risks and implement new procedures to safeguard research. In June, the U15 group of Canadian research-intensive universities announced updated guidelines to ensure the highest standards for assessing and mitigating risk and conducting research across Canada. “Canadian researchers are [&#8230;]]]></description>
        
        <alt_description><![CDATA[<img width="120" height="90" src="https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2023/07/iStock-1061357610-120x90.jpg" class="attachment-newsfeed size-newsfeed wp-post-image" alt="Hands type at a keyboard, overlaid with a graphic network of locks." style="margin-bottom:0px;" decoding="async" /> The UM Office of Research Security launched earlier this year to provide additional support to assess security risks and implement new procedures to safeguard research.]]></alt_description>
        
				<content:encoded><![CDATA[<p>The UM <a href="https://umanitoba.ca/research/office-research-security">Office of Research Security</a> launched earlier this year to provide additional support to assess security risks and implement new procedures to safeguard research. In June, the U15 group of Canadian research-intensive universities <a href="https://u15.ca/publications/statements-releases/u15-canada-provides-guidance-on-leading-institutional-practices-to-safeguard-research/">announced updated guidelines</a> to ensure the highest standards for assessing and mitigating risk and conducting research across Canada.</p>
<p>“Canadian researchers are at the cutting edge in many important emerging fields, including AI, quantum technology, biosciences, and clean technologies. These leading practices will help to ensure Canadian research stays secure,” said Chad Gaffield, CEO of U15 Canada. “Our universities recognize that research is a global enterprise, and our aim is to help make Canada’s research ecosystem as open as possible and as secure as necessary.”</p>
<p>Open collaboration internationally, with other research institutions, and locally, with community and industry partners, is fundamental to research success at UM. Later this year the federal government is expected to release new requirements for research collaborations in sensitive research areas. The Office of Research Security is working to ensure that new practices can be implemented seamlessly, without creating a burden for researchers.</p>
<p>“UM is committed to upholding the safety and protection of research knowledge, data and intellectual property for the benefit of Canada’s entire research community,” says Mario Pinto, Vice-President Research &amp; International. “That is why the Office of Research Security is taking additional measures to safeguard research and intellectual property from interference and espionage. This new unit is dedicated to identifying and addressing potential security risks and collaborating with partner institutions to ensure UM’s continued leadership in this area.”</p>
<p>If you work in a sensitive research area or wonder how the new guidelines may impact your work, please email for one-on-one advice: Research.Security@umanitoba.ca</p>
<p>&nbsp;</p>
<p><em>The Office of Research Security is also supported by the <a href="https://umanitoba.ca/research/opportunities-support/research-support-fund/research-support-fund-research-security">Research Security Fund</a>.</em></p>
]]></content:encoded>
			<wfw:commentRss>https://umtoday-wordpress.ad.umanitoba.ca/safeguarding-research-at-um/feed/</wfw:commentRss>
		<slash:comments>0</slash:comments>
		</item>
		<item>
		<title>UM’s info security policy is your guide to securing our data</title>
        
          <alt_title>
                UM’s info security policy is your guide to securing our data 
</alt_title>
        
        
		<link>https://umtoday-wordpress.ad.umanitoba.ca/ums-info-security-policy-is-your-guide-to-securing-our-data/</link>
		<comments>https://umtoday-wordpress.ad.umanitoba.ca/ums-info-security-policy-is-your-guide-to-securing-our-data/#respond</comments>
		<pubDate>Tue, 12 Oct 2021 19:42:49 +0000</pubDate>
		<dc:creator><![CDATA[Terry Vandenbroeck]]></dc:creator>
				<category><![CDATA[Network News]]></category>
		<category><![CDATA[cyber security]]></category>
		<category><![CDATA[Information Security]]></category>

		<guid isPermaLink="false">https://news.umanitoba.ca/?p=154833</guid>
		<description><![CDATA[With cyber threats and breaches increasing exponentially over the last few years, it is essential we all do our part to keep our data safe and protected. To better protect the information used and shared by the university community, the information security policy, procedure and standards were developed and approved by the UM Board of [&#8230;]]]></description>
        
        <alt_description><![CDATA[<img width="120" height="90" src="https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2021/10/iStock-942893738-120x90.jpg" class="attachment-newsfeed size-newsfeed wp-post-image" alt="" style="margin-bottom:0px;" decoding="async" /> To better protect the information used and shared by the university community, new/updated information Security policy, procedure and standards were developed and approved by the UM Board of Governors on Feb. 3, 2020. ]]></alt_description>
        
				<content:encoded><![CDATA[<p>With cyber threats and breaches increasing exponentially over the last few years, it is essential we all do our part to keep our data safe and protected.</p>
<p>To better protect the information used and shared by the university community, the information security policy, procedure and standards were developed and approved by the UM Board of Governors on Feb. 3, 2020.&nbsp;</p>
<p>“Higher education institutions manage vast amounts of sensitive data involving finance, research, health and more, which makes them prime targets for hacking and malicious breaches of security,” says Patrick McCarthy, director, IST information Security and Compliance.</p>
<p>“With cyber threats and breaches increasing exponentially over the last few years and the requirement to have robust security controls in place to obtain cyber insurance, it is essential we all do our part to keep our data safe and protected.”</p>
<p>The policy, procedure and standards apply to everyone in the university, including visitors, because, as McCarthy notes, we all have a responsibility to keep our data safe and protected.</p>
<h3>WHAT DO I NEED TO DO?</h3>
<p>Read the <a href="http://umanitoba.ca/computing/ist/security/policies.html">policy, procedure and associated standards.</a></p>
<p>Some standards like the <a href="http://umanitoba.ca/computing/ist/security/media/ISS-E01-Password-Standard-2020.02.06.pdf">Password Standard</a> apply to everyone, while others like the <a href="http://umanitoba.ca/computing/ist/security/media/ISS-001-Workstation-Patch-Mgmt-Standard-2020.02.06.pdf">Workstation Patch Management Standard </a>&nbsp;apply to anyone responsible for managing, updating or maintaining computer systems.</p>
<p>Review these <a href="https://umanitoba.ca/student-supports/academic-supports/academic-learning/support-learning-remotely/online-safety">additional tips for online safety</a>.</p>
<h3>WHERE DO I GET MORE INFORMATION?</h3>
<p>The purpose of the Information Security Policy is to:</p>
<ul>
<li>ensure the protection of all information and information systems;</li>
<li>mitigate risks associated with theft, loss, misuse, damage or abuse of information systems;</li>
<li>ensure staff, students, faculty and researchers are aware of and comply with provincial and federal legislation;</li>
<li>minimize the university’s exposure to cyberattacks;</li>
<li>ensure that information users understand their responsibilities; and</li>
<li>protect the university from liability.</li>
</ul>
<p>If you have any questions, concerns or would like more information about your responsibilities, email the Information Security and Compliance team directly at infosec [at] umanitoba [dot] ca.</p>
<p>Thank you for your continued help in ensuring the confidentiality, integrity and availability of the university’s data.</p>
<p>Remember: Information Security Starts with You!</p>
<p>&nbsp;</p>
]]></content:encoded>
			<wfw:commentRss>https://umtoday-wordpress.ad.umanitoba.ca/ums-info-security-policy-is-your-guide-to-securing-our-data/feed/</wfw:commentRss>
		<slash:comments>0</slash:comments>
		</item>
		<item>
		<title>Slam the scam this tax season!</title>
        
          <alt_title>
                Protect yourself against fraud by learning how to recognize, reject and report a scam 
</alt_title>
        
        
		<link>https://umtoday-wordpress.ad.umanitoba.ca/slam-the-scam-this-tax-season/</link>
		<comments>https://umtoday-wordpress.ad.umanitoba.ca/slam-the-scam-this-tax-season/#respond</comments>
		<pubDate>Mon, 01 Mar 2021 19:16:41 +0000</pubDate>
		<dc:creator><![CDATA[Terry Vandenbroeck]]></dc:creator>
				<category><![CDATA[Network News]]></category>
		<category><![CDATA[Information Security]]></category>
		<category><![CDATA[phishing]]></category>
		<category><![CDATA[Tax Forms]]></category>

		<guid isPermaLink="false">https://news.umanitoba.ca/?p=144769</guid>
		<description><![CDATA[According to the Canadian Anti-Fraud Centre, in 2020, there were 40, 612 victims of fraud in Canada. This number is expected to increase in 2021 because of our increased reliance on digital transactions as we continue to shelter in place and work remotely. Security analysts are already warning Canadians to watch out for COVID-19 vaccine [&#8230;]]]></description>
        
        <alt_description><![CDATA[<img width="120" height="90" src="https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2021/02/iStock-1175077095-120x90.jpg" class="attachment-newsfeed size-newsfeed wp-post-image" alt="" style="margin-bottom:0px;" decoding="async" loading="lazy" /> Security analysts are already warning Canadians to watch out for COVID-19 vaccine scams. We also continue to see an increase in fraud scams during tax season.  Protect yourself against fraud this tax season and throughout the year by learning how to recognize, reject and report a scam.]]></alt_description>
        
				<content:encoded><![CDATA[<p>According to the <a href="https://www.antifraudcentre-centreantifraude.ca/index-eng.htm">Canadian Anti-Fraud Centre</a>, in 2020, there were 40, 612 victims of fraud in Canada. This number is expected to increase in 2021 because of our increased reliance on digital transactions as we continue to shelter in place and work remotely.</p>
<p>Security analysts are already warning Canadians to watch out for <a href="https://ca.finance.yahoo.com/news/online-scams-will-spike-in-2021-heres-how-to-avoid-them-091322965.html?guccounter=1&amp;guce_referrer=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbS8&amp;guce_referrer_sig=AQAAAAMux13431DExtvhd9ugYacBs8nSjjaeD7JHEqWdlszQGON3SqzOd2xY1e0ZYw10dOkweQyy3MnnYVvd6NsqX2dMk4DYnjAjG8--OL3zPQlaq_p0XWMpgqzQjXDS81aAqxLd9ScZJt7qEBGa5kyjY_NqCfovEWfRCI1LwEVBlINy">COVID-19 vaccine scams</a>. We also continue to see an increase in fraud scams during tax season.</p>
<p>Protect yourself against fraud this tax season and throughout the year by learning how to recognize, reject and report a scam.&nbsp;</p>
<h2>Recognize</h2>
<p>Fraudsters will use any communication vehicle&#8211;phone, email, text message, letter, website, social media&#8211;to try to get you to give up your personal information. Don&#8217;t let them.</p>
<p>You can recognize a scam by the urgency of the message and by the direct request for personal information such as a credit card number, bank account number or your bank account password.&nbsp;</p>
<p>The University of Manitoba <strong>will never</strong>:</p>
<ul>
<li>Ask you for your login credentials or personal information by email.</li>
</ul>
<p>The Canada Revenue Agency <strong>will never</strong>:</p>
<ul>
<li>Demand immediate payment by Interac e-transfer, bitcoin, prepaid credit cards or gift cards from retailers such as iTunes, Amazon, or others.</li>
<li>Give or ask for personal or financial information by email and ask you to click on a link.</li>
<li>Send you an email with a link to your refund.</li>
<li>Threaten you with arrest or a prison sentence.</li>
<li>Use text messages or instant messaging such as Facebook Messenger or WhatsApp to communicate with taxpayers about tax-related issues under any circumstance.</li>
</ul>
<p><em>Source: Read more at <a href="https://www.canada.ca/en/revenue-agency/corporate/security/protect-yourself-against-fraud.html">Slam the scam!</a></em></p>
<h2>Reject</h2>
<p>Watch for the <strong>external message notice</strong> at the top of any email you receive to your UM email address. If the message comes from a person or organization you don&#8217;t recognize, delete it!</p>
<ul>
<li><strong>Don’t react to scare tactics:</strong> All these attacks depend on scaring you, such as with a lawsuit or criminal charges, that your computer is full of viruses, or that you might miss out on a chance at a great interest rate. Don’t fall for it!</li>
<li><strong>Verify contacts independently:</strong> Legitimate companies and service providers will give you a real business address and a way for you to contact them, which you can independently verify on a company website, support line, etc.</li>
<li><strong>Know the signs:</strong> Does the message/phone call start with a vague information, a generic company name like “card services,” an urgent request or threat and/or an offer that seems impossibly good? Hang up or click that <strong>delete</strong> button!</li>
</ul>
<p><em>Source: <a href="https://news.umanitoba.ca/protect-yourself-against-fraud-this-tax-season/">Protect yourself against fraud this tax season</a>&nbsp;</em></p>
<h2>Report</h2>
<p>Forward any suspicious messages to infosec[at]umanitoba[dot]ca.</p>
<h2>Fraud Prevention Month phishing simulation</h2>
<p>To help you recognize, reject and report an email scam, the university will be sending a phishing simulation email to all staff and faculty during <a href="https://www.competitionbureau.gc.ca/eic/site/cb-bc.nsf/eng/03662.html">Fraud Prevention Month</a> this March.&nbsp; Watch out for any suspicious messages in your Inbox and slam the scam!</p>
<h2>Canadian anti-fraud resources</h2>
<ul>
<li><a href="https://www.canada.ca/en/revenue-agency/corporate/security/protect-yourself-against-fraud.html">Slam the scam – Protect yourself against fraud – Canada Revenue Agency</a></li>
<li><a href="https://staysafeonline.org/">National Cyber Security Alliance</a></li>
<li><a href="http://www.antifraudcentre-centreantifraude.ca/">Canadian Anti-Fraud Centre</a></li>
<li><a href="https://antifraudcentre-centreantifraude.ca/report-signalez-eng.htm">Report fraud and cybercrime &#8211; Canadian Anti-Fraud Centre</a></li>
</ul>
<p>&nbsp;</p>
]]></content:encoded>
			<wfw:commentRss>https://umtoday-wordpress.ad.umanitoba.ca/slam-the-scam-this-tax-season/feed/</wfw:commentRss>
		<slash:comments>0</slash:comments>
		</item>
		<item>
		<title>Duo Enrolment Contest winners!</title>
        
          <alt_title>
                Congratulations to the winners and a big thank you to everyone who participated in our Duo Enrolment Contest! 
</alt_title>
        
        
		<link>https://umtoday-wordpress.ad.umanitoba.ca/duo-enrolment-contest-winners/</link>
		<comments>https://umtoday-wordpress.ad.umanitoba.ca/duo-enrolment-contest-winners/#respond</comments>
		<pubDate>Tue, 01 Dec 2020 19:33:29 +0000</pubDate>
		<dc:creator><![CDATA[Terry Vandenbroeck]]></dc:creator>
				<category><![CDATA[Network News]]></category>
		<category><![CDATA[Cybersecurity]]></category>
		<category><![CDATA[Faculty and Staff]]></category>
		<category><![CDATA[Information Security]]></category>
		<category><![CDATA[Things to Know]]></category>

		<guid isPermaLink="false">https://news.umanitoba.ca/?p=141264</guid>
		<description><![CDATA[We have our winners! 1st Prize Philip Dufresne Asst to Head/Administrative Asst, Biochemistry &#38; Medical Genetics 2nd Prize James Nagy Professor, Physiology &#38; Pathophysiology 3rd Prize Richard Hodges Director, Animal Care &#38; Veterinary Services Congratulations to the winners and a big thank you to everyone who participated in our Duo Enrolment Contest! Using multi-factor authentication [&#8230;]]]></description>
        
        <alt_description><![CDATA[<img width="120" height="90" src="https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2020/12/iStock-1167651289-120x90.jpg" class="attachment-newsfeed size-newsfeed wp-post-image" alt="" style="margin-bottom:0px;" decoding="async" loading="lazy" /> Congratulations to the winners and a big thank you to everyone who participated in our Duo Enrolment Contest]]></alt_description>
        
				<content:encoded><![CDATA[<p>We have our winners!</p>
<p><strong>1<sup>st</sup> Prize</strong></p>
<p>Philip Dufresne<br />
Asst to Head/Administrative Asst, Biochemistry &amp; Medical Genetics</p>
<p><strong>2<sup>nd</sup> Prize</strong></p>
<p>James Nagy<br />
Professor, Physiology &amp; Pathophysiology</p>
<p><strong>3<sup>rd</sup> Prize</strong></p>
<p>Richard Hodges<br />
Director, Animal Care &amp; Veterinary Services</p>
<p>Congratulations to the winners and a big thank you to everyone who participated in our Duo Enrolment Contest!</p>
<p>Using multi-factor authentication is a convenient and effective way to keep our systems as secure as possible. If you haven&#8217;t already, please set up multi-factor authentication for logging into the VPN today. Find the Duo set-up instructions and more information about multi-factor authentication at <a href="https://umanitoba.ca/multi-factor-authentication">UM multi-factor authentication.</a></p>
<p>Remember: Information Security Starts with You!</p>
<p>&nbsp;</p>
]]></content:encoded>
			<wfw:commentRss>https://umtoday-wordpress.ad.umanitoba.ca/duo-enrolment-contest-winners/feed/</wfw:commentRss>
		<slash:comments>0</slash:comments>
		</item>
		<item>
		<title>Working remotely? Log in to the virtual private network (VPN) regularly</title>
        
          <alt_title>
                Working remotely? Log in to the virtual private network (VPN) regularly 
</alt_title>
        
        
		<link>https://umtoday-wordpress.ad.umanitoba.ca/working-remotely-log-in-to-the-virtual-private-network-vpn-regularly/</link>
		<comments>https://umtoday-wordpress.ad.umanitoba.ca/working-remotely-log-in-to-the-virtual-private-network-vpn-regularly/#respond</comments>
		<pubDate>Tue, 22 Sep 2020 17:15:16 +0000</pubDate>
		<dc:creator><![CDATA[Terry Vandenbroeck]]></dc:creator>
				<category><![CDATA[Network News]]></category>
		<category><![CDATA[Faculty and Staff]]></category>
		<category><![CDATA[Information Security]]></category>
		<category><![CDATA[Things to Know]]></category>

		<guid isPermaLink="false">https://news.umanitoba.ca/?p=137318</guid>
		<description><![CDATA[All staff and faculty working remotely on both Mac and Windows computers are required to regularly log in to the university network to: Maintain the activation of your Microsoft Office (M365) and Windows licenses Receive security patches and software updates If you are working remotely and use a UM-provisioned computer, using the virtual private network [&#8230;]]]></description>
        
        <alt_description><![CDATA[<img width="120" height="90" src="https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2020/09/iStock-vpn-laptop-120x90.jpg" class="attachment-newsfeed size-newsfeed wp-post-image" alt="" style="margin-bottom:0px;" decoding="async" loading="lazy" /> If you are working remotely and use a UM-provisioned computer, using the virtual private network (VPN) will help you keep your device up-to-date and secure.]]></alt_description>
        
				<content:encoded><![CDATA[<p>All staff and faculty working remotely on both Mac and Windows computers are required to regularly log in to the university network to:</p>
<ul>
<li>Maintain the activation of your Microsoft Office (M365) and Windows licenses</li>
<li>Receive security patches and software updates</li>
</ul>
<p>If you are working remotely and use a UM-provisioned computer, using the virtual private network (VPN) will help you keep your device up-to-date and secure.</p>
<h3>What is VPN?</h3>
<p>VPN is used to allow offsite users to access secured or restricted resources. It allows the authentication and encryption of data between your computer and the campus network.</p>
<p>VPN also provides an extra layer of security for public or unsecure Wi-Fi networks—if you are working at a coffee shop or a library, for example.</p>
<p>VPN access is required for the following systems:</p>
<ul>
<li>Shared drive access</li>
<li>Home (H:) drive access</li>
<li>Cisco Jabber Softphone</li>
<li>VIP access to full tool</li>
<li>Libraries – Alma Administrator access</li>
</ul>
<p>See: <a href="http://umanitoba.ca/about-um/tools-working-remotely#virtual-private-network-vpn">How to install and set up VPN</a></p>
<h3>How often do I have to connect?</h3>
<p>Log in to VPN at least once a week and leave it logged in overnight even if you are not accessing these systems regularly. This will ensure that your computer will receive all important security patches and software updates.</p>
<p>If you have any questions about VPN and the security of the university&#8217;s network, please contact the Information Systems and Technology security team at infosec[at]umanitoba.ca.</p>
<p>Remember: Information Security Starts With You!</p>
<p>&nbsp;</p>
]]></content:encoded>
			<wfw:commentRss>https://umtoday-wordpress.ad.umanitoba.ca/working-remotely-log-in-to-the-virtual-private-network-vpn-regularly/feed/</wfw:commentRss>
		<slash:comments>0</slash:comments>
		</item>
		<item>
		<title>New policy and procedure prioritize data protection</title>
        
          <alt_title>
                New policy and procedure prioritizes data protection 
</alt_title>
        
        
		<link>https://umtoday-wordpress.ad.umanitoba.ca/new-policy-and-procedure-prioritize-data-protection/</link>
		<comments>https://umtoday-wordpress.ad.umanitoba.ca/new-policy-and-procedure-prioritize-data-protection/#respond</comments>
		<pubDate>Tue, 14 Apr 2020 15:24:21 +0000</pubDate>
		<dc:creator><![CDATA[Terry Vandenbroeck]]></dc:creator>
				<category><![CDATA[Network News]]></category>
		<category><![CDATA[Cybersecurity]]></category>
		<category><![CDATA[Faculty and Staff]]></category>
		<category><![CDATA[Information Security]]></category>

		<guid isPermaLink="false">https://news.umanitoba.ca/?p=130291</guid>
		<description><![CDATA[New Information Security policy, procedure and standards have been developed to better protect the information used and shared by the university community, both within and outside the university. They were approved by the UM Board of Governors on February 3, 2020. &#160; “Systems used to process, store, retrieve and transmit information play a vital role [&#8230;]]]></description>
        
        <alt_description><![CDATA[<img width="120" height="90" src="https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2020/04/iStock-979308632-120x90.jpg" class="attachment-newsfeed size-newsfeed wp-post-image" alt="" style="margin-bottom:0px;" decoding="async" loading="lazy" /> New Information Security policy, procedure and standards have been developed to better protect the information used and shared by the university community, both within and outside the university.]]></alt_description>
        
				<content:encoded><![CDATA[<p>New Information Security policy, procedure and standards have been developed to better protect the information used and shared by the university community, both within and outside the university. They were approved by the UM Board of Governors on February 3, 2020. &nbsp;</p>
<p>“Systems used to process, store, retrieve and transmit information play a vital role in the conduct and success of the UM’s teaching, learning, research, outreach and business processes,” says Patrick McCarthy, director of IST Information Security and Compliance.</p>
<p>“The Information Security Policy will also enable us to reduce the impact of the cyber threats all organizations and educational institutions are facing,” he adds.</p>
<p>The policy, procedure and standards apply to everyone in the university because, as McCarthy notes, we all have a responsibility to keep our data safe and protected.</p>
<p>The purpose of the Information Security Policy is to:</p>
<ul>
<li>ensure the protection of the all information and information systems;</li>
<li>mitigate risks associated with theft, loss, misuse, damage or abuse of information systems;</li>
<li>ensure staff, students, faculty and researchers are aware of and comply with provincial and federal legislation;</li>
<li>minimize the university’s exposure to cyber attacks;</li>
<li>ensure that information users understand their responsibilities; and</li>
<li>protect the university from liability.</li>
</ul>
<p>Developed by the Information Security and Compliance team, the draft policy and procedure were reviewed by units including human resources, the office of legal counsel, audit services, access and privacy and the unions across the university prior to ratification.</p>
<h3><strong>What do I need to do? </strong></h3>
<p>Read the <a href="http://umanitoba.ca/computing/ist/security/policies.html">policy, procedure and associated standards.</a></p>
<p>Some standards like the <a href="http://umanitoba.ca/computing/ist/security/media/ISS-E01-Password-Standard-2020.02.06.pdf">Password Standard</a> apply to everyone, while others like the <a href="http://umanitoba.ca/computing/ist/security/media/ISS-001-Workstation-Patch-Mgmt-Standard-2020.02.06.pdf">Workstation Patch Management Standard </a>&nbsp;apply to anyone responsible for managing, updating or maintaining computer systems.</p>
<h3><strong>Where do I get more information?</strong></h3>
<p>If you have any questions, concerns or would like more information about your responsibilities, email the Information Security and Compliance team directly at <a href="mailto:infosec@umanitoba.ca">infosec@umanitoba.ca</a>.</p>
<p>Thank you for your continued help in ensuring the confidentiality, integrity and availability of the university’s data.&nbsp;</p>
<p>Remember: Information Security Starts with You!</p>
<p>&nbsp;</p>
]]></content:encoded>
			<wfw:commentRss>https://umtoday-wordpress.ad.umanitoba.ca/new-policy-and-procedure-prioritize-data-protection/feed/</wfw:commentRss>
		<slash:comments>0</slash:comments>
		</item>
		<item>
		<title>COVID-19 (Coronavirus) phishing scams</title>
        
          <alt_title>
                COVID-19 (Coronavirus) phishing scams 
</alt_title>
        
        
		<link>https://umtoday-wordpress.ad.umanitoba.ca/covid-19-coronavirus-phishing-scams/</link>
		<comments>https://umtoday-wordpress.ad.umanitoba.ca/covid-19-coronavirus-phishing-scams/#respond</comments>
		<pubDate>Wed, 18 Mar 2020 13:42:32 +0000</pubDate>
		<dc:creator><![CDATA[Terry Vandenbroeck]]></dc:creator>
				<category><![CDATA[Network News]]></category>
		<category><![CDATA[COVID-19]]></category>
		<category><![CDATA[COVID-19 outreach and research]]></category>
		<category><![CDATA[Cybersecurity]]></category>
		<category><![CDATA[Information Security]]></category>

		<guid isPermaLink="false">https://news.umanitoba.ca/?p=128614</guid>
		<description><![CDATA[A number of phishing and online scams are seeking to capitalize on the public concern surrounding the Coronavirus-COVID-19. Scammers often take advantage of health scares&#160;and this pandemic has spawned dozens of such campaigns, scaring recipients into clicking on harmful links or attachments in emails, text messages and social media posts. Examples of COVID-19 Scams Fabricated [&#8230;]]]></description>
        
        <alt_description><![CDATA[<img width="120" height="90" src="https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2020/03/iStock-1202556982-120x90.jpg" class="attachment-newsfeed size-newsfeed wp-post-image" alt="" style="margin-bottom:0px;" decoding="async" loading="lazy" /> A number of phishing and online scams surfacing seek to capitalize on the public concern surrounding the Coronavirus-COVID-19. Scammers often take advantage of health scares and this pandemic has spawned dozens of such campaigns, scaring recipients into clicking on harmful links or attachments in emails, text messages and social media posts.]]></alt_description>
        
				<content:encoded><![CDATA[<p>A number of phishing and online scams are seeking to capitalize on the public concern surrounding the Coronavirus-COVID-19. Scammers often take advantage of health scares&nbsp;and this pandemic has spawned dozens of such campaigns, scaring recipients into clicking on harmful links or attachments in emails, text messages and social media posts.</p>
<p><strong>Examples of COVID-19 Scams</strong></p>
<ul>
<li>Fabricated notices from health organizations (e.g., the Federal Government, CDC, WHO or local health departments).</li>
<li>Phony websites containing maps and dashboards</li>
<li>Information about protecting yourself, your children or your community that contains malicious links or attachments</li>
<li>Charitable appeals, claiming to help victims of the virus, which are not legitimate</li>
<li>Misleading ads or spam about masks or other protective gear, or other helpful hints to combat the virus.</li>
</ul>
<p><strong>What Can You Do?</strong>&nbsp;</p>
<p>Be vigilant for Coronavirus-COVID-19 scams during the coming weeks. If you suspect a message may be a phishing scam, please report it by forwarding the email message as an attachment&nbsp;to&nbsp;<a href="mailto:spam@umanitoba.ca">spam@umanitoba.ca</a>.</p>
<ol>
<li>Rely on established lines of communication from the university for your updates. Important announcements and information will be posted on the&nbsp;university’s Coronavirus webpage: <a href="http://umanitoba.ca/coronavirus">http://umanitoba.ca/coronavirus</a>.</li>
<li>Be cautious about opening any Web links or attachments even if you know the sender, as they may be from a compromised account.</li>
<li>Look for red flags in emails you receive. Red flags include abnormalities in the sender, topic, links, content, etc. Tips for spotting phishing scams—along with detailed instructions for reporting suspicious email messages—are available on our <a href="https://umanitoba.ca/computing/ist/security/phishing.html">Email Security</a>web page.</li>
<li>Contact <a href="mailto:spam@umanitoba.ca">spam@umanitoba.ca</a> whenever you have any doubts or concerns about a message you have received. Our security team will investigate and follow up with any necessary warnings to you and the university community.</li>
</ol>
<p>Vigilance is key. Reporting suspicious messages is the best way for us to combat the attacks.</p>
<p>Remember, information security starts with you!</p>
]]></content:encoded>
			<wfw:commentRss>https://umtoday-wordpress.ad.umanitoba.ca/covid-19-coronavirus-phishing-scams/feed/</wfw:commentRss>
		<slash:comments>0</slash:comments>
		</item>
		<item>
		<title>Protect yourself against fraud this tax season</title>
        
          <alt_title>
                Protect yourself against fraud this tax season 
</alt_title>
        
        
		<link>https://umtoday-wordpress.ad.umanitoba.ca/protect-yourself-against-fraud-this-tax-season/</link>
		<comments>https://umtoday-wordpress.ad.umanitoba.ca/protect-yourself-against-fraud-this-tax-season/#respond</comments>
		<pubDate>Tue, 25 Feb 2020 17:22:10 +0000</pubDate>
		<dc:creator><![CDATA[Terry Vandenbroeck]]></dc:creator>
				<category><![CDATA[Network News]]></category>
		<category><![CDATA[Faculty and Staff]]></category>
		<category><![CDATA[Information Security]]></category>
		<category><![CDATA[Staff]]></category>
		<category><![CDATA[Things to Know]]></category>

		<guid isPermaLink="false">https://news.umanitoba.ca/?p=127353</guid>
		<description><![CDATA[Cybercriminals use types of social engineering—manipulating people into doing what they want—as the most common way to steal information and money. Social engineering is at the heart of all types of phishing attacks—those conducted via email, SMS, and phone calls. Today’s technology makes these sorts of attacks easy and very low risk for the attacker. [&#8230;]]]></description>
        
        <alt_description><![CDATA[<img width="120" height="90" src="https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2020/02/iStock-1126925616-120x90.jpg" class="attachment-newsfeed size-newsfeed wp-post-image" alt="" style="margin-bottom:0px;" decoding="async" loading="lazy" srcset="https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2020/02/iStock-1126925616-120x90.jpg 120w, https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2020/02/iStock-1126925616-800x600.jpg 800w, https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2020/02/iStock-1126925616-768x576.jpg 768w, https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2020/02/iStock-1126925616-1200x900.jpg 1200w, https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2020/02/iStock-1126925616.jpg 2000w" sizes="auto, (max-width: 120px) 100vw, 120px" /> Cybercriminals use types of social engineering—manipulating people into doing what they want—as the most common way to steal information and money. Social engineering is at the heart of all types of phishing attacks—those conducted via email, SMS, and phone calls. Today’s technology makes these sorts of attacks easy and very low risk for the attacker.]]></alt_description>
        
				<content:encoded><![CDATA[<p>Cybercriminals use types of social engineering—manipulating people into doing what they want—as the most common way to steal information and money. Social engineering is at the heart of all types of phishing attacks—those conducted via email, SMS, and phone calls. Today’s technology makes these sorts of attacks easy and very low risk for the attacker.</p>
<p>Make sure you&#8217;re on the lookout for these variants on the traditional, mass email phishing attack:</p>
<ul>
<li><strong>Spear phishing:</strong> This kind of attack involves often very well-crafted messages that come from what looks like a trusted VIP source, often in a hurry, targeting those who can conduct financial transactions on behalf of your organization (sometimes called &#8220;whaling&#8221;).</li>
<li><strong>SMiShing:</strong> Literally, phishing attacks via SMS, these scams attempt to trick users into supplying content or clicking on links in SMS messages on their mobile devices. Flaws in how caller ID and phone number verification work make this an increasingly popular attack that is hard to stop.</li>
<li><strong>Vishing:</strong> Voice phishing, these are calls from attackers claiming to be government agencies such as Canada Revenue Agency, software vendors like Microsoft, or services offering to help with benefits or credit card rates. Attackers will often appear to be calling from a local number close to yours. As with SMiShing, flaws in how caller ID and phone number verification work make this a dangerous attack vector.</li>
</ul>
<p>Social engineering attacks are getting harder and harder to recognize. But no matter the medium, follow these techniques to help prevent getting tricked:</p>
<ul>
<li><strong>Don&#8217;t react to scare tactics:</strong> All of these attacks depend on scaring you, such as with a lawsuit or criminal charges, that your computer is full of viruses, or that you might miss out on a chance at a great interest rate. Don&#8217;t fall for it!</li>
<li><strong>Verify contacts independently:</strong> Financial transactions should always follow a defined set of procedures, which includes a way to verify legitimacy outside email or an inbound phone call. Legitimate companies and service providers will give you a real business address and a way for you to contact them back, which you can independently verify on a company website, support line, etc. Don&#8217;t trust people who contact you out of the blue claiming to represent your company.</li>
<li><strong>Know the signs:</strong> Does the message/phone call start with a vague information, a generic company name like &#8220;card services,&#8221; an urgent request or threat and/or an offer that seems impossibly good? Hang up or click that delete button!</li>
</ul>
<p>*Adapted from Educause article: <a href="https://er.educause.edu/blogs/2018/12/april-2019-whaling-smishing-and-vishing-oh-my">April 2019: Whaling, SMiShing, and Vishing…Oh My!</a></p>
<p>&nbsp;</p>
<p><strong>More Information</strong></p>
<ul>
<li><a href="https://www.cbc.ca/news/canada/kitchener-waterloo/wrps-interac-tax-refund-cra-canada-revenue-service-1.5430927">CBC News: Interac e-transfer tax refund scam circulating among students</a>&nbsp;</li>
<li><a href="https://www.canada.ca/en/revenue-agency/corporate/security/protect-yourself-against-fraud.html">Slam the scam – Protect yourself against fraud &#8211; Canada Revenue Agency</a></li>
<li><a href="https://news.umanitoba.ca/buy-me-a-prepaid-visa/">‘Buy me a prepaid VISA’: Be wary of gift card request scams that seem to be from people you know</a></li>
<li><a href="https://staysafeonline.org/">National Cyber Security Alliance</a></li>
<li><a href="http://www.antifraudcentre-centreantifraude.ca/">Canadian Anti-Fraud Centre</a><u></u></li>
</ul>
<p>&nbsp;</p>
]]></content:encoded>
			<wfw:commentRss>https://umtoday-wordpress.ad.umanitoba.ca/protect-yourself-against-fraud-this-tax-season/feed/</wfw:commentRss>
		<slash:comments>0</slash:comments>
		</item>
		<item>
		<title>Don’t toss your keys to a hacker!</title>
        
          <alt_title>
                Don’t toss your keys to a hacker! 
</alt_title>
        
        
		<link>https://umtoday-wordpress.ad.umanitoba.ca/dont-toss-your-keys-to-a-hacker/</link>
		<comments>https://umtoday-wordpress.ad.umanitoba.ca/dont-toss-your-keys-to-a-hacker/#respond</comments>
		<pubDate>Mon, 04 Nov 2019 16:47:54 +0000</pubDate>
		<dc:creator><![CDATA[Terry Vandenbroeck]]></dc:creator>
				<category><![CDATA[Network News]]></category>
		<category><![CDATA[Cybersecurity]]></category>
		<category><![CDATA[Faculty and Staff]]></category>
		<category><![CDATA[Information Security]]></category>
		<category><![CDATA[Things to Know]]></category>

		<guid isPermaLink="false">https://news.umanitoba.ca/?p=122207</guid>
		<description><![CDATA[Your university UMnetID, email address and password are your keys to using our campus systems. They allow you to log into your email, UMLearn, all of your student records, financial records and the important data you have stored on your personal or shared drives. Imagine if those keys got into the wrong hands? When you [&#8230;]]]></description>
        
        <alt_description><![CDATA[<img width="120" height="90" src="https://umtoday-wordpress.ad.umanitoba.ca/wp-content/uploads/2019/11/iStock-1058694620-120x90.jpg" class="attachment-newsfeed size-newsfeed wp-post-image" alt="Person looking at credit card as they login into a laptop computer" style="margin-bottom:0px;" decoding="async" loading="lazy" /> Your university UMnetID, email address, and password are your keys to using our campus systems. They allow you to log into your email, UMLearn, all of your student records, financial records and the important data you have stored on your personal or shared drives. Imagine if those keys got into the wrong hands?]]></alt_description>
        
				<content:encoded><![CDATA[<p>Your university UMnetID, email address and password are your keys to using our campus systems. They allow you to log into your email, UMLearn, all of your student records, financial records and the important data you have stored on your personal or shared drives. Imagine if those keys got into the wrong hands?</p>
<p>When you use your university credentials to log into non-university services like Dropbox, Twitter or Facebook, you risk your information getting into the hands of a hacker.</p>
<p>Take steps to protect yourself and the university:</p>
<ul>
<li>Use a different username and password for each online service you access</li>
<li>NEVER use your U of M credentials for any non-university services</li>
<li>If you have to use your U of M email address for an online service, use a DIFFERENT PASSWORD</li>
</ul>
<p>Data breaches occur more often than you think. Sites like LinkedIn, Evite, Canva and Houzz have all experienced data breaches in the last two years. The person or group behind a breach counts on the fact that between <a href="https://www.cisecurity.org/blog/reusing-passwords-on-multiple-sites/">31% and 55% of people use the same login credentials at multiple sites</a> . Once they have your username, email address, password and possibly other personal information, they will attempt to access other sites with your login, including U of M&#8217;s systems.</p>
<p>This is why the university continues to improve our cyber security safeguards by requiring a yearly password change, and by introducing device encryption to ensure that your data is only readable with a password.</p>
<p>Read More</p>
<ul>
<li><a href="https://news.umanitoba.ca/a-new-initiative-to-protect-university-data-is-underway/">A new initiative to protect university data is underway!</a></li>
<li><a href="https://news.umanitoba.ca/password-and-usage-agreements-expiring-next-month/">Password and usage agreements expiring next month</a></li>
</ul>
<p>&nbsp;</p>
]]></content:encoded>
			<wfw:commentRss>https://umtoday-wordpress.ad.umanitoba.ca/dont-toss-your-keys-to-a-hacker/feed/</wfw:commentRss>
		<slash:comments>0</slash:comments>
		</item>
	</channel>
</rss>
