The authentication of our webmail (https://owa.ist.ac.at/) has been changed to use our Shibboleth SSO (as most other applications), so it looks like: If you are on Campus/connected via VPN with an IST device, you should be logged in automatically, as well as if you already logged in somewhere else via SSO. Because of this change, Read More …
Andy Nguyen discovered that the Bluetooth implementation in the Linux kernel contained a type-confusion error. A physically proximate remote attacker could use this to cause a denial of service (system crash) orpossibly execute arbitrary code. Please update your system as soon as possible (sudo apt-get upgrade in the Terminal). If it’s currently not possible for Read More …
Attackers could hijack your apple mail-app on iOS – they then could read/delete/write mails with your account. If you’re not sure if your account is save, please deactivate mailsync on your device. a guide how to do so can be found here and wait for the next iOS-Update. Security researchers say the iPhone has a Read More …
We get a lot E-Mails every day, but when receiving a message from the boss (or another company leader) we are on alert. This is how criminals try to get our attention, and just lately we (i.e. recipients at IST Austria) received a couple of emails impersonating managers/heads of IST Austria. These – so called Read More …
Well, at least parts of it – currently the ISTWlan and some admin-networks as well as Windows clients in all networks are using this service. One of the major security issues when dealing with phishing/SPAM Emails, is the risk, that people visit links to enter data, or even worse visit links which trigger local vulnerabilities Read More …
Sharing data (documents, images, databases,…) to internal and external users/collaborators is a very common task we do every day. Safely sharing is not always necessary, but usually suggested. When is it necessary to share safely? The following data needs to be shared safely: Documents/data containing personal data (e.g. CVs, passports, addresses, grades, …) Financial data Read More …
Just recently the number of various attacks against computer systems of companies has increased a lot. Still, most attacks targeting IT systems actually target the users of such systems. Read More …
As you might have already read in the news, personal data (email-addresses, passwords,…) has been published and sold on the internet – again. Read More …
The following phishing mail has been sent to a number of IST Austria recipients. The sender address seem to be a hacked university (Princess Nourah bint Abdulrahman University) account. From: Nourah A. Algdeb <naalgdeb@pnu.edu.sa> Subject: Informationszentrum IST Owa 2018 Screenshot of the email: Do not click on links or download attachments of suspicious emails.
We hope not, but it is not always easy to be sure. As we’re all users of free (or non-free) services in the world wide web, and there are also successful attacks against such services, it is possible that one of your accounts (and the password) has been compromised. There are services in the internet, Read More …