IT Security Project: Is your software up to date?
Friday, 16 November 2018
An IT Security Project at the University is working to improve our protection from cyber threats. Many of the changes will not be visible to colleagues, but changes brought about by the project mean:
- administrator rights on a computer/laptop will be limited to those with a business need
- unsupported software will be upgraded or removed
- all University Apple computers/handheld devices will be enrolled in a central management system in line with Windows devices.
Starting this week, we are launching an awareness campaign about what the staff and students at the University can do to support stronger cybersecurity.
Keeping software up to date is one of the most important things an organisation can do to improve cyber security.
Many software applications have vulnerabilities. Once discovered, these are shared rapidly online and can be exploited by cybercriminals.
Hackers can take advantage of known vulnerabilities if they are not fixed ("patched"). The WannaCry ransomware attack affected computers which were running old unsupported versions of Windows.
Particular risks are:
- Software which has not been "patched", ie updated with security fixes.
- Old software versions for which security updates are no longer released.
These risks particularly apply to software which is widely used and will, therefore, be a common target for exploitation.
Top Tips
- Install software updates and security patches promptly.
- Remove or upgrade software if security patches are no longer available, even if the software still provides the required function.
- Keep all devices – desktops, laptops, handheld devices, mobiles and servers - up to date.
- Log off daily if you can.