The team has news about some of the known serious security risks:
The Information Security team is based in the Office of the CIO. The team can help with:
- a toolkit of advice for managers and IT staff to support the University's Information Security Policy;
- guidelines for users
- courses for users
- briefings and bespoke training for University units
- oversight of security services like OxCERT, PCI Compliance, Whole Disc Encryption (WDE)
Network Security and OxCERT
Responsibility for network security within the University lies with the University of Oxford Computer Emergency Response Team (OxCERT based in the Networks and Telecommunications Group). OxCERT's primary role is to ensure the security of the University backbone network.
Within the University, OxCERT interact chiefly with IT Support Staff (ITSS). End users should contact their local ITSS or the IT Services General Help Centre for support.
- About OxCERT including policy;
- Contact details, including PGP key details;
- Resources for end users;
- Dealing with fake emails;
- Dealing with key-logger infections;
- Dealing with a compromised email account;
- Resources for IT support staff;
- Logging of network access;
- Incident handling;
- Security bulletins (security announcements of particular note or with particular relevance to IT within the University of Oxford) access restricted to Oxford users;
- OxCERT reports ;
- OxCERT monthly and annual reports access restricted to Oxford users;
- OxCERT's blog (news and views from OxCERT);
- Service level definition;
- Monitoring and log retention;
- Papers and presentations (by members of the team, aimed at both University ITSS and the wider security community).
You may not realise it, but your computer, your mobile devices, your Oxford accounts and your personal information all have tremendous value to criminals. With access to these, criminals could:
- ...get access to your email account to read or delete your emails, or use your account to send thousands of spam emails
- ...log into other online accounts like your bank account and steal money
- ...steal your credit card details and buy things online with them
- ...take control of your computer to record everything you do, hold you to ransom, attack other computers on the Internet or send spam
- ...use your personal details to commit fraud using your identity
But don't panic because taking just a few simple measures can help you defend yourself against cybercrime and prevent you from becoming another statistic:
- Learn about Information Security from the comfort of your own desk (access restricted to Oxford staff and graduates only)
- Read our FAQ (some quick answers to common questions)
- Use anti-virus to protect your computer from viruses, malware, worms, trojans, adware, etc.
- Update your software to avoid known security problems
- Lockup your laptop including Smartphones and tablets secure your hardware from loss or theft, etc.
- Attend our Security and Privacy Online courses
- Use secure passwords
- Don't fall for phishing attacks
- Be mysterious and protect your identity online, especially on social media (like Facebook)
- Read about current threats, relevant to the University
- Follow @Ox_IS
Are you or the kids on Facebook? Do you use DropBox to synch your work? Have you received an email from your bank that looked so plausible you almost clicked a dodgy link or sent "them" some of your details? Is it difficult to remember all those passwords? Do you work with other people's personal information? Do you check your email on the train? Or shop online when relaxing in the coffee shop? Answer "yes" to any of these and you may be interested to know we can help you start to find the tools and techniques to protect yourself, your work and your family online.
Come and learn from our information security specialists at our series of Security and Privacy Online courses.