使命宣言
The 信息安全 Office is committed to lowering the risk profile of the University’s electronic information by implementing industry best practices to protect the confidentiality, integrity, and availability of student, faculty, and staff information. 我们维护 the University’s compliance obligations by developing information security policies, providing security awareness training, and overseeing the implementation of strategic 资讯保安措施.
Time It Takes a Hacker to Brute Force Your Password in 2023
| 字符数 | 只有 | 小写字母 | 大写和小写字母 | 数字,大写和小写字母 | 数字,大写和小写字母, Symbols |
|---|---|---|---|---|---|
| 4 | 立即 | 立即 | 立即 | 立即 | 立即 |
| 5 | 立即 | 立即 | 立即 | 立即 | 立即 |
| 6 | 立即 | 立即 | 立即 | 立即 | 立即 |
| 7 | 立即 | 立即 | 立即 | 立即 | 立即 |
| 8 | 立即 | 立即 | 立即 | 立即 | 1秒 |
| 9 | 立即 | 立即 | 4秒 | 21秒 | 1分钟 |
| 10 | 立即 | 立即 | 4分钟 | 22分钟 | 1小时 |
| 11 | 立即 | 6秒 | 3个小时 | 22个小时 | 4天 |
| 12 | 立即 | 2分钟 | 7天 | 2个月 | 8个月 |
| 13 | 立即 | 1小时 | 12个月 | 10年 | 47年 |
| 14 | 立即 | 1天 | 52年 | 608年 | 3 k年 |
| 15 | 2秒 | 4周 | 2 k年 | k 37年 | 232年 |
| 16 | 15秒 | 2年 | 140年 | 2 m年 | 16 m年 |
| 17 | 3分钟 | 56年 | 7 m年 | 144年 | 10亿年 |
| 18 | 26分钟 | 1 k年 | 378年 | 80亿年 | 790亿年 |
FBI诈骗警报
UK Military Data Breach via Outdated Windows 7 System
网络安全警报
被剥削的是什么?
Vulnerability in Windows CryptoAPI that allows malicious executables using a spoofed
code-signing certificate to appear as if it was from a trusted source.
这有什么影响呢??
Attackers can conduct man-in-the-middle attacks and decrypt confidential information
on user connections to spoofed software that appears legitimate.
影响哪些操作系统?
Windows 10, Windows Server 2016, and Windows Server 2019
如何减轻这种情况?
应用 critical patches to affected systems as soon as possible.
更多信息:
cve - 2020 - 0601
被剥削的是什么?
Vulnerability in Windows Remote Desktop Gateway (RD Gateway) that allows specially
crafted requests to execute arbitrary code on the target system.
这有什么影响呢??
Attackers can gain access to the target system with full user rights that would allow
them to install programs; view, change, or delete data; or create new users.
影响哪些操作系统?
Windows Server 2012, Windows Server 2016, and Windows Server 2019
如何减轻这种情况?
应用 critical patches to affected systems as soon as possible.
被剥削的是什么?
Vulnerability in Windows Remote Desktop Client that allows the server to execute arbitrary
code on the target system after an unsuspecting user connects to it.
这有什么影响呢??
Attackers can trick the user into connecting to a compromised server and gain access
to the target system with full user rights that would allow them to install programs;
view, change, or delete data; or create new users.
影响哪些操作系统?
Windows 7, Windows 8, Windows 10, Windows RT, Windows Server 2008, Windows Server
2012, Windows Server 2016, and Windows Server 2019
如何减轻这种情况?
应用 critical patches to affected systems as soon as possible.
更多信息:
cve - 2020 - 0611
Windows 10 & Windows Server 2016及更新版本
1. 搜索:检查更新
2. Click “Check for Updates” then install all updates
Windows 8及以上版本 & Windows Server 2012及更早版本
1. Navigate: Control Panel > System and Security > Windows Update
2. Click “Check for Updates” then install all updates