Alerts, Advisories & Notices / safecomputing.umich.edu

ITS Information Assurance (IA) incident responders routinely monitor reports of new vulnerabilities along with information from intelligence sources and the U-M IT community. IA determines the risk of a vulnerability contributing to a serious IT security incident as defined by Information Security Incident Reporting (SPG 601.25), looking at factors such as whether exploit code is available, whether exploits are occurring, if U-M systems are at risk, and more.

Alerts, advisories, and notices are sent to the IT Security Community and other appropriate IT staff groups and published here. To receive them all through email, join the MCommunity group: Information Assurance Alerts-Advisories-Notices.

2023 | 2022 | 2021 | 2020 | 2019 | 2018 | 2017 | 2016 | 2015 | 2014

2024

Alert: Additional update needed to fix for VMware vCenter Server vulnerability
10/22/24
Alert: Update Mozilla Firefox Browser for Zero-Day Vulnerability
10/10/24
Alert: Vulnerability in CUPS printing system
9/27/24
Notice: Extortion Emails Increasing at U-M
9/18/24
Notice: Spread awareness of student football ticket scams
8/20/24
Alert: Threat Actors Exploiting VMware ESXi Vulnerability
7/30/24
Notice: Phishing Scams Related to CrowdStrike/Global Outage
7/22/24
Alert: Update OpenSSH on Linux Servers for Critical Vulnerability
7/2/24
Notice: Be aware of phishing scams urging users to verify accounts
6/10/24
Alert: Update Google Chrome to fix zero-day vulnerability
5/13/24
Notice: Job Scams Trending at U-M
5/1/24
Alert: Linux XZ Utils and SSH Backdoor
4/2/24
Notice: Threat Actors Targeting Researchers and Academics
2/7/24
Notice: Increase in Phishing Scams Utilizing Legitimate Services
1/31/24
Alert: Update Jenkins Server Software for Critical Vulnerability
1/29/24
Alert: Update Google Chrome ASAP for Zero-Day Vulnerabilities
1/18/24

2023

Alert: Update Google Chrome ASAP for Zero-Day Vulnerability
12/21/23
Notice: Increase in Remote Tech Support Scams
12/20/23
Alert: Apply Urgent Update to Google Chrome
11/30/23
Alert: Update VMware vCenter Server for critical vulnerability
10/25/23
Notice: Beware of student football ticket scams
10/19/23
Advisory: Apply patch in curl for high-severity vulnerability
10/11/23
Alert: Vulnerability in GNU C Library on many Linux Distributions
10/6/23
Notice: Update Android Devices ASAP
10/6/23
Alert: Apply Urgent Update to Google Chrome and Mozilla Firefox Browsers, and other software (CVE-2023-5217)
9/29/23
Notice: Robocall phishing scam referring to mandated U-M password change
9/13/23
Alert: Apply Urgent Update to Firefox and Thunderbird
9/13/23
Alert: Apply Urgent Update to Google Chrome Browser
9/12/23
Alert: Patch iOS, Apple watch OS, and MacOS ASAP
9/8/23
Notice: Beware of Job Scam Emails Targeting U-M Students
7/27/23
Advisory: Update for Shibboleth Service Providers
6/13/23
Alert: Apply Emergency Update to Chrome
6/6/23
Notice: Beware of Job Scam Emails Targeting U-M Students
5/2/23
Alert: Apply Emergency Update to Google Chrome Browser
4/17/23
Alert: Update WordPress Elementor Pro Plugin for Vulnerability
4/3/23
Alert: Update Progress Telerik against active exploit
3/21/23
Advisory: ITS IA Advisory: Log4j
2/22/23
Alert: Patching Microsoft systems for 3 zero-day exploits
2/15/23
Notice: OpenSSL
2/13/23
Advisory: Upgrade Git to version 2.39.1
1/18/23

2022

Advisory: Unwanted Mailing List Sign-up
11/18/22
Advisory: Patch OpenSSL 3.0.0 - 3.0.6 for buffer overflow vulnerability
11/1/22
Advisory: Update Microsoft products for zero-day vulnerability
9/16/22
Alert: Update Chrome and Edge browsers to fix security vulnerability
9/6/22
Notice: Increase in Student Job Scams at Start of Fall Term
8/25/22
Advisory: Apply Apple security updates for multiple products
8/19/22
Advisory: Update - Spread awareness of recent phishing scams
6/8/22
Alert: Beware of Duo Authentication phishing emails
6/2/22
Alert: Update Firefox to Address Multiple Vulnerabilities
3/7/22
Notice: Phishing emails targeting students with fake job scams
2/28/22
Alert: Apply patch to critical Samba vulnerability
2/2/22
Alert: Apply patches to Linux systems with policykit package
1/26/22
Advisory: Update WordPress to address security vulnerabilities
1/10/22
Alert: Update Apache Log4j utility to address zero-day vulnerability
1/3/22

2021

Advisory: Update Drupal for CKEditor cross-site scripting vulnerability
11/19/21
Advisory: Apply Apple security updates for multiple products
10/27/21
Alert: Update Apache HTTP server 2.4.49 AND 2.4.50 to fix zero-day vulnerability
10/8/21
Alert: Update VMware vCenter Server for critical vulnerability
9/28/21
Notice: Update Apple products for protection against vulnerabilities
9/20/21
Alert: Apply Microsoft Security Update for Azure Linux Open Management Infrastructure
9/17/21
Alert: Update GitLab to address Workhorse vulnerability
9/13/21
Advisory: Upgrade WordPress to version 5.8.1 to address vulnerabilities
9/10/21
Alert: Apply update for Confluence Server and Data Center vulnerability
9/3/21
Notice: Watch for vishing emails about Booking confirmation for flight
8/31/21
Advisory: Update Drupal to address CKEditor cross-site scripting vulnerability
8/13/21
Alert: Update Microsoft products for critical vulnerabilities
7/14/21
Alert: Update Windows for PrintNightmare vulnerability
7/7/21
Alert: Critical Windows Print Spooler vulnerability
6/30/21
Advisory: Update Drupal to address cross-site scripting vulnerability
5/27/21
Advisory: Update Drupal to address API vulnerability
4/23/21
Notice: IRS warns of tax-refund phishing targeting universities
3/31/21
Advisory: Uptick in ransomware targeting higher ed
3/25/21
Alert: Apply critical patches for Microsoft products
2/10/21
Alert: Update for buffer overflow in sudo
1/27/21

2020

Alert: Update WordPress Contact Form 7 plugin before 12/30
12/22/20
Advisory: Contact IA if your unit uses SolarWinds software
12/18/20
Notice: Watch for student work-from-home scams
12/14/20
Advisory: TCP/IP stack vulnerabilities affect millions of devices
12/10/20
Notice: Ransomware targeting healthcare and public health
10/30/20
Alert: Apply Update for Microsoft SharePoint Vulnerability
10/19/20
Advisory: Apply Microsoft Update for "Bad Neighbor" Bug
10/15/20
Alert: Update Windows Server ASAP for critical Netlogon RPC vulnerability
9/21/20
Alert: Update IE and Windows for vulnerabilities
8/12/20
Alert: Apply Microsoft Update for Vulnerability in Windows DNS Server
7/14/20
Notice: Watch for phishing emails impersonating payroll office
7/10/20
Advisory: No U-M "data breach"—U-M user info used on 3rd party sites exposed
7/4/20
Notice: Racist emails received at U-M and other universities
6/22/20
Notice: Increase in emails impersonating U-M deans and other employees
5/27/20
Notice: Extortion emails with old passwords in the subject line
4/30/20
Notice: Online extortion scams increasing during COVID-19 pandemic
4/23/20
Notice: COVID-19 phishing and scams at U-M
4/10/20
Alert: Update Firefox for multiple vulnerabilities
4/6/20
Notice: Protect your Zoom meetings against Zoombombing
3/31/20
Alert: IA Alert: Update Windows 10 and Server 2019 for vulnerability
3/13/20
Notice: Watch out for Coronavirus scams
3/11/20
Alert: Update Apache Tomcat for Ghostcat vulnerability
3/3/20
Alert: Update Chrome to fix three security flaws
2/25/20
Alert: Apply Microsoft update to fix IE vulnerability
2/11/20
Alert: Avoid IE until vulnerability is patched
1/20/20
Advisory: Update Windows for vulnerability
1/14/20
Alert: Update Firefox ASAP for critical vulnerability
1/9/20

2019

Notice: You are likely to see privacy notice updates as the CCPA takes effect
11/22/19
Notice: Plan for end of Windows Server 2008 support (updated)
10/15/19
Notice: Plan for end of Windows 7 support (updated)
10/15/19
Advisory: Some U-M student account credentials compromised through password reuse (updated)
10/4/19
Alert: Apply update to Microsoft Internet Explorer
9/24/19
Alert: Keep Windows updated; IA monitoring unpatched Windows flaws
8/15/19
Alert: Update Windows ASAP for critical vulnerabilities
8/14/19
Notice: Update - What to do if you are affected by the Equifax data breach
7/31/19
Alert: Update Firefox to fix critical vulnerability
6/19/19
Notice: Oracle Java users need to switch to a supported version
5/23/19
Notice: Google plain text password incident has minimal U-M impact
5/22/19
Alert: Update older Windows versions for vulnerability ASAP
5/14/19
Alert: Plan to update ASAP for critical vulnerability in Oracle WebLogic
4/26/19
Advisory: Update Apache HTTP Server 2.4 to fix privileged access vulnerability
4/5/19
Notice: Update multiple Apple products to address vulnerabilities
3/26/19
Alert: Update WordPress plugin for critical vulnerability
3/25/19
Notice: Got a minute? Are you available?
3/14/19
Alert: Update Microsoft products for critical vulnerabilities
3/13/19
Alert: Update Shibboleth SP software for critical vulnerability
3/11/19
Alert: Update Google Chrome for critical vulnerability
3/7/19
Alert: Update Adobe ColdFusion for vulnerability
3/4/19
Alert: Update Drupal for vulnerability
2/20/19
Notice: "Welcome to smartAHD" emails and website are legitimate
2/15/19
Notice: Apply Adobe security updates
2/13/19
Advisory: Uptick in phishing email impersonating U-M employees
2/5/19
Alert: Tax fraud attempts resurfacing
2/4/19
Notice: FaceTime bug
1/29/19

2018

Notice: Bomb threat emails sent nationwide, including U-M
12/13/18
Notice: Check Chrome for pending updates
12/4/18
Notice: Student part-time job scam
11/26/18
Notice: International robocall scam targeting Chinese visitors and immigrants
11/20/18
Notice: Email extortion scams continuing with variations
10/24/18
Notice: Scammers impersonating U-M executives
10/15/18
Notice: Extortion emails increasing at U-M
10/1/18
Notice: Extortion scam emails with stolen passwords not credible (updated)
9/28/18
Alert: Apply patch ASAP for Windows vulnerability
9/11/18
Advisory: Plan to patch for Windows vulnerability
8/29/18
Notice: Unpatched Intel systems vulnerable to Foreshadow attack
8/16/18
Alert: Update Oracle Database for critical vulnerability
8/13/18
Notice: Beware of fraudulent payroll notification emails
7/13/18
Notice: Do not use U-M resources for cryptocurrency mining
6/12/18
Notice: Fraudulent emails about campus security emergency
6/6/18
Notice: Google Chrome Verification Begins May 7
5/3/18
Alert: Drupal admins - Apply security core update ASAP
4/25/18
Alert: Drupal admins - Apply security update ASAP
3/28/18
Advisory: Drupal admins - Watch for security release next week
3/23/18
Advisory: Memcached exposed to the internet is exploitable for DDoS attacks
2/28/18
Advisory: Upgrade SAML software (includes Shibboleth) to address vulnerability
2/28/18
Advisory: Apply updates for computer chip vulnerabilities—Meltdown & Spectre
1/4/18

2017

Alert: Apply update to protect against Mac OS vulnerability
11/29/17
Notice: Uber breach is reminder to report IT security incidents & protect credentials
11/28/17
Notice: WiFi vulnerability requires updates and caution
10/17/17
Notice: Avoid use of Kaspersky software
10/9/17
Advisory: Patch Apache Web Servers for Optionsbleed vulnerability
9/22/17
Notice: Update devices or turn off Bluetooth to protect against BlueBorne
9/20/17
Notice: Beware of malicious links in emails about orders or invoices
8/17/17
Advisory: New Petya ransomware exploits same vulnerability as WannaCry
6/28/17
Notice: Windows patch also protects against Adylkuzz malware attack
5/18/17
Alert: Update to protect against global ransomware attack
5/15/17
Advisory: Install HP patch to remove keylogger
5/12/17
Notice: Beware of emails with links to orders or invoices
5/11/17
Alert: Widespread phishing attack using fake Google Docs
5/3/17
Alert: Update Microsoft products for critical vulnerabilities
4/12/17
Advisory: Update VMware ESXi, Workstation, and Fusion for critical vulnerabilities
4/5/17
Notice: iThenticate account creation notices are legitimate
3/17/17
Notice: Critical Apache Struts vulnerability being actively exploited
3/9/17
Notice: Cloudflare bug is reminder to practice good password management
2/24/17
Alert: Patch to address vulnerability in Linux (CVE-2017-6074)
2/23/17
Alert: Phishing scams targeting W-2s for tax fraud
1/20/17
Notice: Watch for hard-to-spot GMail phishing scam
1/19/17

2016

Notice: Data stored in Lynda.com exposed
12/19/16
Advisory: Update Windows for vulnerabilities in Microsoft Graphics Component
11/9/16
Notice: Update Microsoft Edge to address vulnerabilities
11/8/16
Notice: Update Adobe Flash Player to address new vulnerability
10/26/16
Notice: Beware of increased phishing and fake login sites
10/26/16
Advisory: Dirty COW Linux vulnerability, watch for patches and apply ASAP
10/21/16
Notice: Phishing scam mimics Google sign-in page
9/27/16
Notice: Hyatt Legal Plans' FraudScout/CyberScout messages are legitimate
9/27/16
Notice: Dropbox breach is reminder to change passwords, use two-factor
9/6/16
Notice: Limit Internet access to protect printers from malicious printing
8/1/16
Alert: Mitigate ASAP for httpoxy vulnerabilities that affect CGI code
7/18/16
Notice: Update Drupal to address critical vulnerabilities
7/14/16
Notice: Critical security update for Adobe Flash Player
5/12/16
Alert: Take action to mitigate ImageMagick vulnerabilities
5/4/16
Alert: Update PHP for multiple vulnerabilities
4/29/16
Notice: Identity theft & tax fraud continue
4/27/16
Notice: Uninstall QuickTime for Windows; it is unsupported
4/18/16
Advisory: Apply Samba/Windows patches for Badlock Bug
4/12/16
Advisory: Badlock Bug means patching needed April 12 for Samba/Windows SMB
4/1/16
Notice: Protect printers from malicious printing
3/25/16
Notice: Resources & a poster to inform people about phishing
3/25/16
Advisory: Plan now to patch for Badlock Bug on April 12
3/23/16
Notice: W-2s phishing scheme targets HR & payroll staff
3/9/16
Notice: Phishing at U-M continues to increase
3/1/16
Advisory: Apply patch and reconfigure SSL to avert DROWN attack
3/1/16
Notice: Update to Drupal 7 or 8; Drupal 6 no longer supported
2/26/16
Alert: Take action to avoid online scams and tax fraud
2/25/16
Alert: Update ASAP for vulnerability in Linux glibc library
2/17/16
Alert: Update Cisco ASA software to address vulnerability
2/11/16
Alert: 5 tips to help you protect your privacy
1/28/16
Notice: Beware of fraudulent emails linking to shared documents
1/25/16
Advisory: Update PHP for multiple vulnerabilities
1/21/16
Notice: Microsoft ending support for Internet Explorer versions before 11
1/5/16

2015

2014

About Alert Levels

Alert: IA Requests Action

Immediate remediation is needed.
The need for security outweighs concern about disruption in or degradation of service.
Exploit code may be available publicly, and exploits may be occurring or likely to occur soon.
Critical systems and/or sensitive data could be at risk.
There is the potential for, or likelihood of, a significant incident.

Advisory: IA Recommends Action

Patching or other mitigation is needed, but it can occur according to regular patching schedules.
There is no immediate threat, or the threat is limited, so there is time to test patches and follow routine procedures.

Notice: IA Provides Information

U-M resources are not largely affected, and communication about any needed patching may already be publicly available.
Personal devices may be affected and/or there is significant media attention.
The ITS Service Center may be getting inquiries.