Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Brown University - Cybersecurity Threat Announcement

From: Jeremy Livingston <jlivings () STEVENS EDU>
Date: Thu, 1 Apr 2021 17:42:26 +0000
I agree with Sol,  and as I've often seen additionally their Legal team will advise them against making any public 
statements about the nature of the incident.



Jeremy M. Livingston
Chief Information Security Officer
M 973-985-4996
STEVENS INSTITUTE OF TECHNOLOGY<http://www.stevens.edu/>
facebook<https://nam02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.facebook.com%2FStevens1870&data=04%7C01%7Cggorji%40stevens.edu%7C699c5195bc474e603d7d08d8763c6946%7C8d1a69ec03b54345ae21dad112f5fb4f%7C0%7C0%7C637389349125639671%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=1KGpGo5vEh7IOdT%2B5Yt%2BgT%2BMV3DtUpGdip4nVisQkI8%3D&reserved=0>
  *  
twitter<https://nam02.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftwitter.com%2FFollowStevens&data=04%7C01%7Cggorji%40stevens.edu%7C699c5195bc474e603d7d08d8763c6946%7C8d1a69ec03b54345ae21dad112f5fb4f%7C0%7C0%7C637389349125649665%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=Bx%2BuLzfm06iTj00sT2PWyvvZ0BOoEsU84p6CBiOkhzY%3D&reserved=0>
  *  news<http://www.stevens.edu/news/>  *  
youtube<https://nam02.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.youtube.com%2Fuser%2FEdwinAStevens70&data=04%7C01%7Cggorji%40stevens.edu%7C699c5195bc474e603d7d08d8763c6946%7C8d1a69ec03b54345ae21dad112f5fb4f%7C0%7C0%7C637389349125649665%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=RSJ%2BaWOeuShz2gsnYCupqNHFh%2FVNwEp1v%2BnwG1nEydw%3D&reserved=0>


Report Phishing
To report phishing, please forward your email as
an attachment to phishing @stevens.edu. Please
click here<https://sit.teamdynamix.com/TDClient/KB/ArticleDet?ID=46729> for forwarding instructions.

From: The EDUCAUSE Security Community Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> On Behalf Of Sol Bermann
Sent: Thursday, April 1, 2021 1:33 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Brown University - Cybersecurity Threat Announcement

Brown is in the middle of an incident and investigation. If they care, or have time, to share, they will.

We should give them the space to focus on themselves first.

The FBI and CISA alerts over the last weeks/months regarding targetting of high ed is enough for all of us to go on for 
now
https://www.ic3.gov/Media/News/2021/210316.pdf<https://nam02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ic3.gov%2FMedia%2FNews%2F2021%2F210316.pdf&data=04%7C01%7Cjlivings%40STEVENS.EDU%7C7e4f7e5080684483066708d8f534297a%7C8d1a69ec03b54345ae21dad112f5fb4f%7C0%7C1%7C637528951684616688%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=VIf2At2GfQSM%2FHvevYXwZL015XHFGzjkSkIL%2BGS5uzI%3D&reserved=0>
https://www.infosecurity-magazine.com/news/fbi-alert-pysa-ransomware-target/<https://nam02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.infosecurity-magazine.com%2Fnews%2Ffbi-alert-pysa-ransomware-target%2F&data=04%7C01%7Cjlivings%40STEVENS.EDU%7C7e4f7e5080684483066708d8f534297a%7C8d1a69ec03b54345ae21dad112f5fb4f%7C0%7C1%7C637528951684626673%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=9RWVr6tRiZztKWP%2FbNdtKr%2B3S42QDQed9uJfErnR5bM%3D&reserved=0>
https://www.cyberscoop.com/fbi-egregor-ransomware-cybercrime/<https://nam02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.cyberscoop.com%2Ffbi-egregor-ransomware-cybercrime%2F&data=04%7C01%7Cjlivings%40STEVENS.EDU%7C7e4f7e5080684483066708d8f534297a%7C8d1a69ec03b54345ae21dad112f5fb4f%7C0%7C1%7C637528951684626673%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=njqHawittKBexBiyK6qy%2FF5OuY%2BjkXTYSvRwIPdHG9Y%3D&reserved=0>

Sol Bermann
Chief Information Security Officer
Executive Director of Information Assurance
Clinical Assistant Professor, School of Information
University of Michigan

734/615-9661
solb () umich edu<mailto:solb () umich edu>
https://www.safecomputing.umich.edu/<https://nam02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.safecomputing.umich.edu%2F&data=04%7C01%7Cjlivings%40STEVENS.EDU%7C7e4f7e5080684483066708d8f534297a%7C8d1a69ec03b54345ae21dad112f5fb4f%7C0%7C1%7C637528951684636673%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=ORzvImr%2FAPg5HcXl7ZkqNVBWIRYTor1bJ%2FD%2FQbGmn6w%3D&reserved=0>
https://safecomputing.umich.edu/six-words-about-privacy<https://nam02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fsafecomputing.umich.edu%2Fsix-words-about-privacy&data=04%7C01%7Cjlivings%40STEVENS.EDU%7C7e4f7e5080684483066708d8f534297a%7C8d1a69ec03b54345ae21dad112f5fb4f%7C0%7C1%7C637528951684636673%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=SdX6GmN0QQHihYExEdGreN%2BUTE1QtBZfR33wZScsnkk%3D&reserved=0>




On Thu, Apr 1, 2021 at 1:21 PM Nadim El-Khoury <0000024d485fe2c4-dmarc-request () listserv educause 
edu<mailto:0000024d485fe2c4-dmarc-request () listserv educause edu>> wrote:
Hi Everyone,

Do we know what threat Brown University detected that prompted them to shut down connections to their central data 
center?  It would be helpful to understand the nature of the threat and be on the lookout.

https://it.brown.edu/alerts/read/it-security-threat-and-temporary-systems-outage<https://nam02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fit.brown.edu%2Falerts%2Fread%2Fit-security-threat-and-temporary-systems-outage&data=04%7C01%7Cjlivings%40STEVENS.EDU%7C7e4f7e5080684483066708d8f534297a%7C8d1a69ec03b54345ae21dad112f5fb4f%7C0%7C1%7C637528951684646665%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=qzDv6VC24hj5FOq4n8EfF1m6tHK48zRoFRdvE7w0okM%3D&reserved=0>

https://edscoop.com/brown-u-cuts-off-data-center-after-detecting-cybersecurity-threat/<https://nam02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fedscoop.com%2Fbrown-u-cuts-off-data-center-after-detecting-cybersecurity-threat%2F&data=04%7C01%7Cjlivings%40STEVENS.EDU%7C7e4f7e5080684483066708d8f534297a%7C8d1a69ec03b54345ae21dad112f5fb4f%7C0%7C1%7C637528951684646665%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=rfUr%2Bmw9Y5kk3Q6xjcA8AA8cLBJCVM0uwwV%2FdhIvkuM%3D&reserved=0>

Best,

Nadim

**********
Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the 
person who sent the message, copy and paste their email address and forward the email reply. Additional participation 
and subscription information can be found at 
https://www.educause.edu/community<https://nam02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Cjlivings%40STEVENS.EDU%7C7e4f7e5080684483066708d8f534297a%7C8d1a69ec03b54345ae21dad112f5fb4f%7C0%7C1%7C637528951684656654%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=ZIdrF833qk1UQlNbIOnwLAFCbmx1UAhBoice3OXqIyc%3D&reserved=0>

**********
Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the 
person who sent the message, copy and paste their email address and forward the email reply. Additional participation 
and subscription information can be found at 
https://www.educause.edu/community<https://nam02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Cjlivings%40STEVENS.EDU%7C7e4f7e5080684483066708d8f534297a%7C8d1a69ec03b54345ae21dad112f5fb4f%7C0%7C1%7C637528951684666651%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=a%2BHo9L30%2Ffre9K7kmfjUMoS1RdRYuSgXvG4DfaiWmV0%3D&reserved=0>

**********
Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the 
person who sent the message, copy and paste their email address and forward the email reply. Additional participation 
and subscription information can be found at https://www.educause.edu/community
Previous By Date Next
Previous By Thread Next

Current thread: