Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
548 Results
Operational
Multi-Factor Authentication (Duo)
DescriptionWhat is multi-factor authentication?Phishing and brute force attacks are increasing exponentially, and so are the risks that your credentials may be stolen. Multi-factor authentication (also known as two factor authentication), or MFA, provides added security control to ensure that every login from every device is legitimate.
- Affiliate
- Faculty
- Staff
- Technical Partner
- Access & Identity
Get Global Access with eduroam
Overvieweduroam (education roaming) is the secure worldwide federated network access service developed for the international research and education community.What does it do?For the traveler:
- Affiliate
- Faculty
- Non-UCSF
- Staff
- Student
- Network & Wireless
Operational
Zoom Web Conferencing
DescriptionZoom is a simple, all-in-one solution that lets you meet across desktops, mobile devices and conference rooms. Zoom is free to UCSF faculty, staff and learners, and the UCSF Zoom instance is HIPAA-compliant.
- Affiliate
- Faculty
- Staff
- Student
- Volunteer
- Email & Collaboration
May 2023: URL Shortening Service Widely Abused in Attacks
Threat Alert: What to Watch For Cybercriminals have started using the URL shortening service clck[.]ru in widespread phishing attacks in April. The nature of these attacks and the lures used vary greatly.
Jul 2023: HR Themed Phishing Attacks
Threat Alert: What to Watch For Cybercriminals have launched series of phishing attacks claiming to be from the recipient’s HR department. The lures use a variety of sender names like HR Alerts or HR Department; however, the actual sending address is not associated with a recipient’s company or HR department.
Mar 2023: Attacks Use Silicon Valley Bank-Related Lures
Threat Alert: What to Watch For Following the collapse of Silicon Valley Bank (SVB), cybercriminals have launched phishing attacks to take advantage of the high-profile event. One widespread lure impersonates Circle, the peer-to-peer payments company that manages the cryptocurrency USDC. The lure encourages recipients to click an offer link to redeem a one-to-one exchange between the cryptocurrency USDC and the U.S.
Mar 2023: Global Phishing Campaigns Using Tax Season Lures
Threat Alert: What to Watch For Cybercriminals have launched numerous, different phishing attacks using timely tax-themed lures. As multiple attacks are leveraging this topic, the lures will appear different.
June 2023: Phishing Attacks Abuse Valid Web Traffic Tool
Threat Alert: What to Watch For Cybercriminals have launched phishing attacks abusing legitimate tools that are used to direct web traffic. Phishing lures contain an embedded URL that leads to a lookalike Google Chrome update site. Downloading the fake Google Chrome update installs a legitimate tool used for remotely monitoring and supporting computers.
Subscribe to a Listserv
- Faculty
- Staff
- Student