Information Security
Community Fall Shred Fest
IT Services is proud to partner with R4 and the Office of Sustainability for the Fall Shred Fest! Additionally, the University of Chicago is excited to announce its participation in Cybersecurity Awareness Month, an annual initiative aimed at promoting awareness and education in cybersecurity.
Bring your paper, cables, cellular phones, copiers, and more. Document destruction will be done onsite, while e-waste, including removed hard drives, will be collected at the event and shredded securely off-site. Click here for a list of accepted e-waste. In addition, Bookdriver.net will collect books in good condition as donations. Please visit their site to review a list of items that are not accepted for donation.
Join members of Information Security in the south parking lot of the Press building (1427 East 60th St.) on September 22nd from 11 a.m. – 2 p.m.
Enjoy a free taco dinner and giveaways when you stop by!
Cybersecurity Symposium
IT Services invites faculty, staff, and researchers to join the UChicago Cybersecurity Symposium, a one-day event on October 24 at Ida Noyes Hall.
As technology continues to evolve and become an integral part of our daily lives, the need to protect sensitive information and maintain data privacy has never been more critical. Higher education institutions are increasingly becoming targets of cyberattacks due to the vast amount of personal, financial, and intellectual property data they store. Faculty and staff play an important role in safeguarding these resources and ensuring the institution is a secure environment. IT Services is hosting the Cybersecurity Symposium to provide the UChicago community with the necessary knowledge and skills to protect the institution’s digital infrastructure and information assets.
The event will feature session tracks on Core Security Concepts and Research Security, presented by distinguished UChicago faculty and security professionals. Strengthen your knowledge and skills for protecting the University’s digital information infrastructure at the Cybersecurity Symposium. Register by October 23, and to learn more visit cybersymposium.event.uchicago.edu.
This activity is approved for AMA PRA Category 1 Credits™
Attending this conference will satisfy the following professional development requirements:
- The University’s Annual Information Security Training Course
- The University’s Annual HIPAA Training Course
- Six hours of IT Services Professional Development
- CME credits for hospital staff
- CPEs through SANS GIAC certifications
Information Security Training
Read our FAQ for more information about Core Information Security Awareness training.
How can we help you?
- Report a possible phishing attempt
- I need to complete Security Awareness Training
- I need to reset or recertify my CNetID or password.
- I want to know how to use two-factor authentication.
- I need an SSL, code signing, or some other kind of security certificate.
- Report a possible compromise or other security incident
- I have a question about security for my application or have my application reviewed.
- My account was locked for spamming or due to some other security issue.
- I need access to phone records, emails, or other data for an investigation or personnel matter.
- I’m traveling and received an email asking that I contact the security team.
- My computer or phone was blocked from the network due to a virus detection.
- I want to send the security team a report about a security vulnerability or some other issue I discovered.
- A website I tried to visit is blocked and erroneously listed as suspicious. What do I do?
IT Policies
Refer to the University’s official IT policies regarding data security and use of copyrighted material.
Training and User Guides
Complete security training and get user guides for helpful security tips and advice.
Phishing Alerts
Listed below are the latest phishing scams that have been acted upon by Information Security. Think you’ve received a phishing email? Don’t click it, report it.
Email Scam (08 29, 2023): “EMPLOYMENT OFFER”
From: Solera Holdington Subject: EMPLOYMENT OFFER Date: 08-29-2023 Good Day Staff & Students. The University of Chicago Employment Offer This message is from the Campus Job Placement & Student Services. In Accordance with the work and study regulations of...
Email Scam (Aug 14, 2023): Paul Alivisatos shared a document with you as a user
From Andrea Jones <adjones @ liverpool[.]k12[.]ny[.]us> Subject Paul Alivisatos shared a document with you as a user Date/Time 2023/08/13 or 2023/08/14 - time variable
Email Scam (July 27, 2023): (PART TIME) Admin-Assistant Remote POSITION!
Subject: (PART TIME) Admin-Assistant Remote POSITION! Date: 2023-07-27 15:19:22 [UTC-05:00] Some departments are in need for people to assist some of their visiting professors by providing basic administrative duties remotely. The successful candidate will maintain...
Security News
Check here for the latest security alerts that may affect you.
Don’t Wait to Update
One of the easiest ways to keep your information secure is to keep your software and apps updated. Update often. Always keep your software updated when updates becomes available and don’t delay. These updates fix general software problems and provide new security...
Multi-factor Authentication for the Win!
According to a 2021 PC Mag study, 70% of people admit they use the same password for more than one account. Using weak or similar passwords makes a hacker's life a lot easier and can give them access to more materials than they could dream of. Enabling multi-factor...
Ditch the Post-It Notes and Use a Password Manager
Most of us manage 100 or more passwords for our online accounts and it can be tough to remember so many unique passwords. If you’re like most people, you’re probably using the same password for most of your accounts—and that’s not safe. Once that single password is...
Video: Report Phish With One Click
How to Locate the Report Phish Button
IT Services has implemented an easier way to report suspicious emails from your University Outlook or Gmail inbox. This feature, called Report Phish, allows you to report phishing or other suspicious emails with the click of a button. The Report Phish button will...
Learn How to Refuse the Phishing Bait
Phishing – when a cybercriminal poses as a legitimate party in hopes of getting someone to engage with malicious content or links – remains one of the most popular tactics among cybercriminals today. In fact, 80% of cybersecurity incidents and 90% of data breaches...
Text Message Scam ( August 9, 2022 ): SMS Impersonation of University VIPs
Date: August 9, 2022 From: +(213)205-5089 The following is part of an example of what a UChicago user saw and responded to the initial scammer message. We have currently observed some scam campaigns through phone text (i.e. smishing) where the attacker tries...
Cybersecurity First – Oct 25, 2021
Cybersecurity is a Team Sport Cybersecurity is a shared responsibility, and the University of Chicago’s security efforts will only be successful when all members of the campus community understand the risks and take steps to avoid them. We offer the following tips to...
Cybersecurity Career Awareness Week
Cybersecurity is a dynamic and rapidly growing field, with new threats and challenges emerging each day. And with that, there is a huge push being undertaken by both business and education sectors to attract individuals toward a degree and career in cyber. Whether...
Protecting Yourself Against Ransomware Attacks
In week 1 of Cybersecurity Awareness Month, we focused on educating you on the different types of phishing attacks we have seen and that many have reported receiving in the UChicago community. The most important element in a successful phishing attack is the human...