Online Security
- Starting Thursday, January 11, 2024, at 11 p.m., if you use any UM Single Sign-On (UMSSO)-enabled applications like email, Blackboard, CaneLink, myUM, or Workday, you'll now encounter the Duo multi-factor authentication (MFA) prompt in a different way.
- Help us beat FSU, UF, and other rival schools by playing in Cyber Bowl! As part of Cybersecurity Awareness Month, the University of Miami is challenging rival Florida schools in Cyber Bowl, an online cybersecurity awareness game taking place on the virtual playing field.
- A new tool, dubbed "TeamsPhisher," gives cybercriminals a way to leverage a security vulnerability in Microsoft Teams and automatically deliver malicious files to targeted Teams users in an organization. By impersonating legitimate external contacts or creating fake accounts, cybercriminals are sending messages containing infected attachments, aiming to deceive users into opening them—potentially leading to malware infections and data breaches. At this time, we highly discourage communications with external users/tenants, if not expected and/or required.
- In August 2023, University of Miami Information Technology (IT) changed the default sharing option in Microsoft 365 cloud services—OneDrive, SharePoint, Teams—to "Specific people" to ensure the security of our digital information. When choosing to share a file or folder, you can manage the share settings as needed; however, IT highly recommends NOT using "Anyone with the link" as the sharing option. Instead, limit sharing to either "Specific people" or "People in your organization."
- The CaneID Self-Service portal displays a new look and feel, and University passwords are reset via the new CaneID identity management solution.
- You can help safeguard against cyber-threats by creating strong passwords and changing your password frequently. To change your CaneID password, visit: caneid.miami.edu.
- Google released an updated Chrome browser in response to various, new high severity vulnerabilities. If you're a Chrome user on Windows, Mac, or Linux, please update your Chrome browser to version 99.0.4844.84 as soon as possible.
- The University has implemented a new enterprise virtual private network (VPN) solution, GlobalProtect VPN, to replace Pulse Secure VPN.
- To comply with U.S. regulations, Duo implemented a change in their company policy. On May 5, 2022, Duo began blocking authentications from users whose IP address originates in a country or region subject to economic and trade sanctions by the U.S. Office of Foreign Assets Control (OFAC), including Cuba, North Korea, Iran, Sudan, Syria, and regions in Russia and Ukraine.
- In an effort to reduce potential security risks, UMIT has turned off the ability to log in to the UM network through the use of unsupported remote access tools.
- Please be advised that a new email security feature has been implemented to block file attachments that are commonly used to transmit viruses or malicious software in an effort to further protects the University's email system and individual mailboxes.
- Multi-Factor Authentication (MFA) is now required for all University of Miami faculty, staff, and student employees. MFA uses a second factor, e.g., mobile phone or tablet, to authenticate your login—in addition to your CaneID credentials. Since hackers don't have physical access to these devices while attempting to compromise your account, your information is secure.