MediaArchive.SMU Retires February 28, 2022

MediaBankThe University’s digital asset management system, MediaBank—also known as MediaArchive.SMU, will be retired on Monday, February 28, 2022. MediaBank was designed to store and index a large volume of graphic images and video files and offered metadata functionality, automatic rendering of images, and security roles offering images either for private or public use. Primarily used by the SMU Libraries and Development & External Affairs, other departments experimented with the system for asset management before we had other enterprise storage system solutions. With the advancements in cloud storage for the University and other solutions available, we are allowing MediaBank to retire. We will decommission the service at the end of February. Continue reading MediaArchive.SMU Retires February 28, 2022

Recent Changes Made to Duo Security

DuoOn Tuesday, January 4, 2022, a security change was made in Duo, preventing the “call me” or SMS passcode options by the SMU community, as these factors were susceptible to vulnerability and fraud.

How does that apply to me?

An alternate method for two-factor authentication is now required, either by using a hardware token or by installing the Duo Mobile app on your mobile device.

If you previously used the “call me” or SMS passcode options as your primary method to two-factor, please complete the following steps: Continue reading Recent Changes Made to Duo Security

Winter Hours for the IT Help Desk

The Office of Information Technology (OIT) IT Help Desk will have reduced hours this week with walk-in and chat support ending at 6 p.m. and phone support ending at 8 p.m. On Wednesday, phone support will also end at 6 p.m. The IT Help Desk will be closed for regular business operations from Thursday, December 23, 2021, through Sunday, January 2, 2022, for the winter break. Continue reading Winter Hours for the IT Help Desk

Log4Shell Vulnerability Impacts Systems Across the Internet

Apache Log4j LogoOn December 9, 2021, a vulnerability in the popular Java logging library Log4j—used by developers of web and server applications around the world—was discovered and made public. The zero-day vulnerability allows for code to be run remotely by sending a malicious code string, allowing a hacker to take control. Published the next day in the National Vulnerability Database as CVE-2021-44228, it is already being exploited in the wild across Windows, Linux, macOS and devices. Teams across the internet are working to patch enterprise systems and web apps to protect against these critical zero-day exploits. Even games like Minecraft can be impacted, leading Microsoft to post instructions on how players of the Java version can patch their systems.  Of course, our Security Team is aware of the issue and reviewing SMU systems to determine impact.  Continue reading Log4Shell Vulnerability Impacts Systems Across the Internet