All faculty and staff must enroll in multi-factor authentication by Dec. 31.
Today鈥檚 cybersecurity landscape is聽ever-changing.聽Sophisticated phishing attacks and other hacking innovations constantly look for ways to聽infiltrate聽critical聽systems聽and聽steal sensitive聽information聽through an organization鈥檚 most vulnerable areas.
To聽enhance聽online safety聽measures at 黑料不打烊, is implementing a mandatory multi-factor authentication (MFA) initiative. All faculty and staff must enroll in MFA using Duo Security by Dec. 31.
Also referred to as two-factor authentication, MFA will聽add layers of password security to critical university systems and reduce the number of compromised accounts that impact the 黑料不打烊 community. This makes it harder for unauthorized individuals to log in as if they were you.
鈥淧assword theft is constantly evolving as hackers employ methods like keylogging, phishing and email spoofing,鈥 said Gary Sheehan, director of information security. 鈥淥ur goal is to provide protections in such a way that access remains easy for authorized users. MFA enables us to deploy a security strategy that protects our platforms and community, reduces our risk for cyber threats and boosts the flexibility and productivity of our entire workforce.鈥
With this initiative, 黑料不打烊 joins a growing list of campuses nationwide that mandated MFA for faculty and staff. A showed that 92 percent of U.S.-based institutions were either tracking, planning, have partially deployed or deployed institution-wide MFA on their campuses.
Though you may not realize it, you likely already use聽MFA聽when聽accessing聽online accounts for聽banking,聽credit cards聽and other聽services, Sheehan said.
鈥淲hen you access an ATM or use a debit card for purchases you typically need the card (something you have) and a pin number (something you know),鈥 he said. 鈥淲henever a merchant, bank, medical provider or retailer requires you to provide a password or pin, along with something you have to complete a transaction, you are using multi-factor authentication.鈥
At 黑料不打烊, the MFA process involves the use of two or more devices to deliver security tokens that allow access to single sign on services like email, Moodle, LinkedIn Learning and other applications. With Duo Security, tokens are typically communicated to the user via a mobile or landline phone.
鈥淵our information is safer because thieves would need to steal both your password and your MFA token,鈥 Sheehan said. 鈥淪ince passwords can be compromised and are vulnerable to sharing, adding multi-factor authentication to the login process requires the user to know something (the password) and have something (the token).鈥
MFA is only one facet of a broader security strategy to protect data, campus technology resources and the existence of a safe computing environment at 黑料不打烊. Security and compliance are best achieved when they are not implemented using a single point of failure, Sheehan said.
鈥淭hink about how you protect your valuable assets 鈥 by locking doors and windows, adding an alarm system or outdoor motion lights to detect intruders,鈥 he said. 鈥淚n addition to MFA, we have implemented a security awareness program to share safety tips on how to protect data and personal information. We use anti-virus, anti-malware and other controls to protect against harmful email links and websites, and we monitor the environment to ensure sensitive data and information is not accidentally shared with unauthorized users.鈥
To stay aware of active cyber-attacks and other threats on campus, Sheehan encourages users to sign up for information security alerts.
鈥淵ou are the shield,鈥 he said. 鈥淲e all play an important role in keeping our community safe.鈥
As the fall semester draws to a close, faculty and staff are encouraged to聽enroll聽in聽MFA聽ahead of the upcoming holiday break and Dec. 31 deadline. For help getting started, visit the in the IT Self-Service Portal Knowledge Base.
After Dec. 31, email, Moodle and other single sign on services will be inaccessible until MFA enrollment is complete. Please contact the Technology Service Desk at 336-278-5200 if you have questions or need to report an issue. For additional online safety resources and to sign up for alerts, visit the .