News

Business Exchange with Adam Grennan, Cisco UK & Ireland

28 September 2017 - 28 September 2017, . : Adam Grennan is Systems Engineering Director for Cisco UK & Ireland - the worldwide leading company in IT and ...
News

Discovery day - Access Students (Physiotherapy)

04 October 2017 - 04 October 2017, . : The physiotherapy discovery day is aimed at access students looking to start University in September 2018.
News

Rattle Snake

03 October 2017 - 03 October 2017, . : Rattle Snake
News

Discovery day - Access Students (Adult Nursing)

27 September 2017 - 27 September 2017, . : The adult nursing discovery day is aimed at access students looking to start University in September 2018.
News

Discovery day - Access Students (Operating Department Practice)

04 October 2017 - 04 October 2017, . : The Operating Department Practice discovery day is aimed at access students looking to start University in September ...
News

Academic writing: an introduction

02 October 2017 - 02 October 2017, . : Are you unsure how to write in an academic style?
News

Discovery day - Access Students (Midwifery)

04 October 2017 - 04 October 2017, . : The midwifery discovery day is aimed at access students looking to start University in September 2018.
News

Discovery day - Access Students (Learning Disabilities)

27 September 2017 - 27 September 2017, . : The learning disabilities discovery day is aimed at access students looking to start University in September ...
News

Students' Union Trip To The Metro Centre

30 September 2017 - 30 September 2017, . : Need to do some shopping?
News

Discovery day - Access Students (Paramedic Practice)

04 October 2017 - 04 October 2017, . : The paramedic practice discovery day is aimed at access students looking to start University in September 2018. ...
News

Discovery day - Access students (Occupational Therapy)

04 October 2017 - 04 October 2017, . : The Occupational Therapy discovery day is aimed at access students looking to start University in September 2018. ...
News

Discovery day - Access Students (Dental)

04 October 2017 - 04 October 2017, . : The dental discovery day is aimed at access students looking to start University in September 2018.
News

Students' Union Trip To Flamingo Land

01 October 2017 - 01 October 2017, . : BACK BY POPULAR DEMAND - FLAMINGO LAND.
News

Discovery day - Access Students (Social Work)

27 September 2017 - 27 September 2017, . : The social work discovery day is aimed at access students looking to start University in September 2018.
News

Discovery day - Access Students (Child)

04 October 2017 - 04 October 2017, . : The child discovery day is aimed at access students looking to start University in September 2018.
News

Student ambassadors: find out more event

03 October 2017 - 03 October 2017, . : Are you interested in becoming a student ambassador? Come along to find out more about the role and what it entails. ...
News

Discovery day - Access Students (Mental Health)

04 October 2017 - 04 October 2017, . : The mental health discovery day is aimed at access students looking to start University in September 2018.
News

Introduction to Harvard referencing

03 October 2017 - 03 October 2017, . : Do you get confused with referencing?
News

Breaking taboo: coping with death and bereavement

26 September 2017 - 26 September 2017, . Dickens Inn Coffee Shop: <b>Unfortunately, due to staff availability this event has been cancelled. We apologise ...
News

Launchpad Fuel 2017

07 August 2017 - 29 September 2017, . Victoria Road: Enter Launchpad FUEL to win up to 19,000 in grant funding and business support to help ignite your ...

Teesside Email Cyber Safety

‚Äč

TEESSIDE EMAIL & CYBER SAFETY

Many of you will have already attended the Universities Information Security training programme (if you are new to the organisation and have yet to book on click here) and hopefully found it useful. The training highlights the pitfalls of being online and how to avoid being the victim of criminals and scammers. The whole thrust of that training is to equip people with the skills to recognise when something is wrong and when to proceed with caution. That personal vigilance is in many ways the last line of defence. However, this is a world of defence and counter-attack. To that end the University will be implementing some enhanced security features in the coming weeks and months.

The first of these is something called email advanced threat protection and it offers two levels of protection Safelinks and Safe Attachments.

Safelinks

This feature checks all external links (URLs) in an email for references to malicious or other dubious websites. You might notice links that look like the one below.

https://emea01.safelinks.protection.outlook.com/?url=http%3a%2f%2fwww.samilaiho.com%2f&data=01%7c01%7cj.belt%40tees.ac.uk%7ccc475f6deb1a4a3ccc2c08d361a439b9%7c43d2115ba55e46b69df7b03388ecfc60%7c1&sdata=bsPi%2fto2gsPRpb3a%2fLjnVSd4gxV0C11XAvQSJPvqv7c%3d

Even safe links will display in this new format, if on clicking the link is classified as safe you will be taken to the target website.  However, if the link is suspicious you will be greeted with this instead.

pic1.png 

Safe Attachments

This feature looks at attachments received (externally) in a similar way. E-mail attachments are inspected by an automated process in a virtual environment to see if the recipient opening it would trigger malicious activity like downloading code to your PC, or interfering with the workings of your PC.  If it looks malicious the attachment will be stripped out of the email.

As a result of this feature some external attachments might be slightly delayed while inspection and testing is performed.

As with any kind of service like this there will be occasional false positives, and false negatives so common sense should still be applied when opening messages especially if you are unsure of the content and sender.

The second layer of protection is automated anti-phishing protection.

Phishing is where nefarious third parties attempt to trick people into revealing logon details. These invariably happen via the medium of a fake email purporting to come from a trusted organisation (your bank or the University IT Service!) with a link in it to reset your id and password. Hopefully the Safelinks feature already described will catch these but just in case the delivery route is different the University is implementing a tool that will prevent web access to known malware sites. An example of what that looks like is shown below.
2017-01-04 14_25_31-Web Page Blocked.jpg

Finally, the third layer of protection is Multi-Factor Authentication (MFA).

A nefarious third party who has managed to get their hands on your userid/password can in theory use those details to access University resources. A small subset of resources is available externally i.e. without having to be onsite and will shortly be protected by MFA as part of a rolling program including CRM, Outlook Web access, Unity, Terminal services.

So what is it? Basically to gain access to a protected University resource externally you will need your userid, password and a third factor which is a physical item. In our case, and for greatest accessibility, that third factor will be a mobile phone. Thus a thief who has your id and password is unlikely to also have access to your mobile phone and therefore will not be able to gain access to protected resources. Clearly, this protection comes at the price of inconvenience but the costs of a data breach (under the coming changes to the data protection act) and the damage to reputation are extremely severe. Training and guidance will be provided in advance of any changes so as to cause minimum disruption as will be making the MFA experience as slick as possible.