Security Advisory – Adobe Breach

Posted on October 18, 2013 by Branka Halilovic

On Oct 3, 2013, Adobe Systems Inc. announced that its network had been breached.  The cyber attack compromised information relating to Adobe’s 2.9 million customers, including payment data such as credit card numbers, as well as the source code for popular Adobe products, such as Adobe Acrobat, ColdFusion, and ColdFusion Builder.

[UPDATE: Nov.7, 2013] The number of affected Adobe customers has expanded to 38 million.  The source code theft now also extends to the Adobe Photoshop family of products.  It has been confirmed that the stolen passwords were poorly encrypted (instead of hashed, as is standard practice).  Security researchers have been able to retrieve many passwords from the stolen data.  Therefore, we reiterate the recommendation to promptly change passwords for Adobe accounts and apply all the latest updates to Adobe products as soon as possible.”

Adobe reported that the stolen payment card information was encrypted, thus the financial risk to its customers is not believed to be critical.  Nevertheless, the company has begun the process of notifying the affected customers, offering them free credit monitoring for one year.  Other account holders have been advised to reset their passwords as a precautionary measure.

The theft of the product source code poses a more significant concern, as it increases the likelihood and volume of zero-day exploits — malicious attacks against vulnerabilities that are not yet known to either the software developer or the public.  The best way for an Adobe user to safeguard against such attacks is to:

  • Ensure that Adobe software is kept up-to-date

  • To run only vendor-supported versions of the software

  • To apply all available security updates

The same hackers thought to be responsible are linked to major breaches of giant data aggregator companies earlier this year; they are also believed to be involved in the breach of PR Newswire this week.  Investigators have determined that these hackers specialize in attacking ColdFusion vulnerabilities.  With the source code in their possession, there is enormous potential for harm.

Soon after the breach, Adobe issued security updates for Adobe Reader and Acrobat.  Although the fixes are unrelated to the breach, it is strongly recommended that all users of Adobe Reader or Adobe Acrobat apply these updates immediately.  The same recommendation shall also apply to future updates unless otherwise advised.

Adobe Security Bulletin for Adobe Reader and Acrobat:

http://www.adobe.com/support/security/bulletins/apsb13-25.html

 

– Computing and Communications Services

Posted in All Categories | Comments Off on Security Advisory – Adobe Breach

CED Active Directory outage

Posted on October 18, 2013 by michael

On Friday October 18, 2013 at 7:00 AM, CCS migrated its data centre firewalls to a newer device. This prevented CED staff from accessing their Active Directory server in the data centre. The problem was rectified and services were resumed at 11:38 AM.

Please accept our apologies for the outage.

-Computing and Communications Services

Posted in All Categories, Firewall | Tagged | Comments Off on CED Active Directory outage

Intermittent Email Delivery Disruption from Yahoo

Posted on October 16, 2013 by Hongbo HE

CCS has received reports from users about not being able to send emails to Ryerson from Yahoo email addresses.  This issue is  intermittent and users will get the following message: No MX or A records for ryerson.ca.

This appears to be an issue from Yahoo.

CCS  has contacted Yahoo and Yahoo  has confirmed that its engineering team is currently investigating the issue and intends to have it corrected as soon as possible.

Update – Oct. 18, 2013 15:31 – Yahoo has confirmed that the issue has been fixed.

-Computing and Communications Services

 

Posted in All Categories, Google Apps, RMail | Comments Off on Intermittent Email Delivery Disruption from Yahoo

Intermittent Wireless Access

Posted on October 16, 2013 by michael

A critical upgrade had to be done for the wireless network controllers all over the campus (except TRS) to allow for the use of enhanced wireless access points. The upgrade took place on Tuesday October 15, 2013 between 10:30 and 10:55 PM and on Wednesday October 16, 2013 between 5:05 and 6:55 AM. During these periods wireless access was intermittent.

Please accept our apologies for the outage.

-Computing and Communications Services

Posted in All Categories, wireless | Tagged | Comments Off on Intermittent Wireless Access

YDI Network Outage: Friday, October 11, 2013 4:00 AM – 6:10 AM

Posted on October 11, 2013 by michael

During an automated software upgrade of a network switch, the device stopped passing network traffic. This caused a network outage for the 9th and 11th floors of the YDI building. Services were resumed at 6:10 AM after CCS staff were able to start the switch properly.

Please accept our apologies for the outage.

-Computing and Communications Services

Posted in All Categories, network | Tagged | Comments Off on YDI Network Outage: Friday, October 11, 2013 4:00 AM – 6:10 AM

Network Outage: Thursday, October 10, 2013 4:41 PM – 4:43 PM

Posted on October 10, 2013 by Brian Lesser

During maintenance on a firewall the device stopped passing network traffic for approximately two minutes. People using Ryerson’s wireless to access the Internet and people trying to access services outside their administrative subnets were unable to do so. Traffic is now flowing normally. This sort of maintenance process is run on the management plane of the firewall and should not have affected network traffic.

Please accept our apologies for the outage.

-Computing and Communications Services

Posted in Firewall, Internet, network, wireless | Comments Off on Network Outage: Thursday, October 10, 2013 4:41 PM – 4:43 PM

Google Apps/Mobile Access Disruption Thursday, October 10, 2013

Posted on October 10, 2013 by Hongbo HE

Google has reported that there was a service issue with Google Sync (ActiveSync) for mobile users this morning.  This affected iOS (iPhone and iPad) users who use the native iOS client with the “Exchange” option.  CCS has also received reports from users about not being able to receive emails via their iPhones or iPads.

At around 3:53 pm, Google  confirmed that the issue has been resolved and the service has been restored.

-Computing and Communications Services

Posted in Google Apps | Comments Off on Google Apps/Mobile Access Disruption Thursday, October 10, 2013

Authentication Service slow or unresponsive for some users: Thursday, Oct. 7, 2013 11:56 AM – 12:15 PM

Posted on October 7, 2013 by Hongbo HE

Ryerson’s Central Authentication Service (CAS) became either slow or unresponsive for some people trying to use it at 11:56 AM this morning.  CAS controls the login process to my.ryerson.ca, Google Apps at Ryerson, and other services. We found that one of the CAS servers ran out of application memory. The CAS server was assigned more memory and restarted. As a precaution, the other CAS servers were also assigned more memory. The system has been working normally since 12:15 PM. We are investigating what caused the process to run out of memory.

Please accept our apologies for the problems this outage caused.

-Computing and Communications Services

Posted in All Categories | Comments Off on Authentication Service slow or unresponsive for some users: Thursday, Oct. 7, 2013 11:56 AM – 12:15 PM

Authentication Service outage: Thursday, Oct. 3, 2013 10:56 AM – 11:15 AM

Posted on October 3, 2013 by Hongbo HE

Ryerson’s Central Authentication Service (CAS) that controls the login process
to my.ryerson.ca, Google Apps at Ryerson, and other services was unavailable
this morning from 10:56 AM – 11:15 AM. The CAS servers were restarted
and the system is working normally. We are investigating why the replication service
among all the CAS back end servers stopped working.

Please accept our apologies for the problems this outage caused.

-Computing and Communications Services

Posted in All Categories | Comments Off on Authentication Service outage: Thursday, Oct. 3, 2013 10:56 AM – 11:15 AM

RMS Outage – Admin, Self Service and Activation – Friday, September 27, 2013 11:23 AM – 11:32 AM

Posted on September 27, 2013 by Hongbo HE

The back-end server that all RMS web applications connect to became unresponsive starting at 11:23 AM this morning. Service was fully restored at 11:32 AM.  RMS is the system that makes possible account activation at http://www.ryerson.ca/accounts/ and provides the password change and other features via “manage my online resources” inside the my.ryerson.ca portal.

Please accept our apologies for the disruption in service.

-Computing and Communications Services

Posted in my.ryerson | Comments Off on RMS Outage – Admin, Self Service and Activation – Friday, September 27, 2013 11:23 AM – 11:32 AM