IT Professionals: The University Information Security Office would like to make you aware of the following security bulletin of a Zero-Day vulnerability in Internet Explorer. A new, unpatched, zero-day remote code execution vulnerability has been found in Internet Explorer [1].  This critical vulnerability can allow an attacker to execute arbitrary code giving them the same… Read more »

Hello IT Professionals, The UITS Storage and Virtualization (SAV) team would like you to be aware of the upcoming annual fiscal review process for Intelligent Infrastructure (II) services and action items that may require your attention before February 3, 2020. What is happening? The annual fiscal review process for Intelligent Infrastructure (II) resources will take place… Read more »

IT Professionals, Our previously communicated date regarding IT People and tool assignment going live tomorrow, January 17, will need to be pushed back at least until Tuesday, January 21.  This delay is primarily around the need to incorporate IT Pros who are considered affiliates and who are not presently part of our HR data-pull used… Read more »

Hello IT Professionals, Campus Networks is planning to update the Security Certificates for eduroam and IU Secure on Wednesday, January 22, 2019.  IU Guest and DeviceNet will not be affected. The current Security Certificates are due to expire January 27. Campus Networks is working with Leveraged Services to package the new certificates for distribution via SCCM, Casper, and AirWatch. Devices that… Read more »

The eLearning Services team (eLS) want to inform you of some upcoming changes in Canvas. There is a Canvas [1] update scheduled for Saturday, January 18 between 8:00am and 12:00pm EST.  Canvas will receive feature updates and bug fixes managed by the vendor (Instructure). Highlights in this update include: Updated Features: Direct Share: Share Canvas… Read more »

IT Professionals: The University Information Security Office would like to make you aware of the following security bulletin of a vulnerability in the Microsoft CryptoAPI. Background: On January 14, 2020, Microsoft announced CVE-2020-0601 Windows CryptoAPI Spoofing Vulnerability [1]. The vulnerability exists in the Windows CryptoAPI (crypt32.dll) which is responsible for validating Elliptic Curve Cryptography (ECC)… Read more »

IT Professionals: The Campus Communications Infrastructure team would like to make you aware that Microsoft has postponed the change previously announced requiring binding and signing of LDAP queries for all Windows hosts. This has been pushed to an upcoming release in March 2020 [1,2].  The Active Directory Servers at IU are currently monitoring client connections that will… Read more »

IT Professionals: The University Information Security Office would like to make you aware of the following security bulletin of a Zero-Day vulnerability in Mozilla Firefox. Background On January 8th, The Mozilla Foundation released a security advisory to address a critical zero-day flaw in Mozilla Firefox, which has been exploited in targeted attacks.[1] To address CVE-2019-17026,… Read more »

IT Professionals, The eLearning Services team (eLS) want to inform you of two upcoming maintenances. First, beginning at 8:00 pm on Thursday, January 9, Box [1] will be performing system maintenance on their SSO logins. There is no expected downtime associated with this maintenance, which will be finished at 2:59 am on Friday, January 10…. Read more »

IT Professionals: We want to inform you that the Campus Networks Engineering team is moving the retirement of the IU Secure wireless SSID to Fall 2020. Moving to eduroam [1] affects devices that use single sign-on (SSO) through group policy on faculty and staff devices. Thanks to your feedback, we are exploring alternative options to address… Read more »