Archive for September 2012

What technology projects are we working on?

by in ,

Do you know what technology projects the Division is working on, or how those projects are prioritized and scheduled? In January 2011, the Division began implementing a technology project and portfolio management (PPM) program in order to improve access to this information for the University community.

We're pleased to share a narrated video presentation (running time approx. 7 minutes) which provides some  important updates about this program.

Project Management Update September 2012

For a list of current projects and more information about our process, please visit the T&C Projects web site.

The Information Technology Strategic Plan provides further insight into how these projects support our overall strategy of creating a more mobile-friendly, paper-less, and secure campus computing environment.

Feel free to contact Peter Mosinskis at peter.mosinskis@csuci.edu with any questions.

Don't Click to Agree without Reading the Small Print!

by in

Some free software passes your information on to advertisers, changes your PC or downloads other software without asking you. Some suppliers will claim that this is OK because you agreed to this. How? People often click on the "agree" button to accept 20 pages of difficult legal jargon they don't understand. But buried in the middle can be a sentence allowing the software to do whatever it likes. You can argue in court that the terms aren't reasonable, but then it will be too late — the damage has been done and your PC is broken. Learn from other people's pain: if terms and conditions are hard to understand, it is probably deliberate. If it isn't worth the trouble to read the conditions, don't risk using the software.

Beware of Phishing Scams!

by in

We've all received them, emails from a seemingly trusted source like a bank or delivery company claiming there was some type of issue or another requiring you to offer up some personal information or click on a link or button to help clear the issue up. If you receive an email of this sort DO NOT CLICK ON ANY LINK OR OFFER UP ANY INFORMATION!

This is a common form of security attack call a phishing or spear phishing scam.

Groups attempting to steal personal information will often use e-mails that appear to originate from a trusted source to try and trick a user into entering valid credentials at a fake website. Typically the e-mail and the web site look like they are part of a bank or some other organization the user is doing business with.

If you receive an email like this and you are certain it is fraudulent, please report it immediately to the T&C Helpdesk at X8552 or helpdesk@csuci.edu. They will assist you and instruct you on how to remove it effectively.



New online payment service is coming

by in , , , , ,

(Update 2012-10-01: the CashNet EMarket Service is now available. Read more...)

The ability to take payments online for campus events, goods and services has been a difficult issue for the campus over the last 10 years. Interim solutions, such as PayPal and RegOnline, have been useful for addressing the immediate need, but have failed to provide a standard, cost-effective platform for online payment that matches both growing campus need and requirements to integrate with key campus systems.

Since April of this year, T&C has been working closely with team members from Budget and Fiscal Services and Student Financial Services to develop and roll-out a new system for online payment.

The new system is called CashNet eMarket, and provides online payment functionality that has been requested by campus organizations. The eMarket system will replace existing campus PayPal accounts for taking online payment for events, products and services.

So far, eMarket has been deployed for 2 systems: online purchase of parking permits, and for registration for the upcoming SCCUR conference.

In conjunction with Budget and Fiscal Services, T&C is pleased to announce that eMarket will become available this fall for campus entities and organizations that wish to take payment for events, goods and services online.

As of October 1, 2012, requests for new  eMarket sites can be submitted by campus organizations to Budget & Fiscal Services. A full description of the process and a request form will be posted to the CI eMarket web site (details forthcoming). It is expected that implementation for most basic eMarket sites will take 4-6 weeks per site; eMarket sites which require integration with other campus systems may take longer.

October 1, 2012 will also be the last day to request new PayPal online payment sites through Student Business Services.

Over the course of the fall 2012 semester, Budget & Fiscal Services will work with programs and organizations that are using PayPal to migrate them to eMarket, with the goal of completing migration and conversion of all existing PayPal payment sites to eMarket sites by December 31, 2012.

Please contact Melissa Bergem, Project Coordinator at melissa.bergem@csuci.edu with any questions about CashNet eMarket or the roll-out of this important new service.


Eight Tips for Creating Bulletproof Passwords

by in

Strong passwords are an important way to protect your data from theft – and to avoid joining the more than nine million Americans victimized by identity theft each year. Darya Gudkova, head of content analysis and research for Kaspersky, also emphasizes the need for strong passwords. She recommends long passwords with a mix of different characters and letters. She also throws in several different languages to make her own passwords even tougher to crack. How do you create a bulletproof password that hackers can't crack? These tips from myID.com can help you set passwords that will keep your data stays secure.


Ban the basics! 

Never use words found in a dictionary, even written backwards, in another language, or with a simple number following.

Personal is Predicable! 
Anyone who knows you could guess your password if it uses your name or username, birthday, pet or favorite team, band or movie.

Size Matters! 
The longer the better. Passwords should be at least 8-14 characters and mix upper and lowercase letters, special characters and numbers.

Hooked on Mnemonics! 
Try working a mnemonic phrase into your password. For example, “Theres no place like home” would be translated to “TNPLH”.

Sell-By-Dates. 
Change passwords for online bank or credit card accounts every 1 to 2 months; others are good for maybe a few months. Mark your calendar.

To each his own. 
Don’t use the same password or similar patterns (word plus repeated number for example), so one cracked password doesn’t unlock all accounts.

Keep it secret, keep it safe. 
You would think people wouldn't need to be reminded of this but....  Don’t share passwords or store them on your computer or mobile device. The best place to store them is in your head or a locked safe.

PASSWORD is not a password. 
If an admin sets your password to PASSWORD change it FAST!

September 2012 - secureCI Monthly Security Newsletter Now Available

by in

secureCI, CI's monthly information security awareness newsletter is now available for viewing.  Please follow this link to view the September issue of secureCI.