Alert: Recent computer compromises – Desktop Services follow-up
To all DS-supported staff:
This is a follow-up to the “Alert: Recent computer compromises” message sent to CU-LIB, which is reproduced beneath our message.
Late last night, Desktop Services disabled “autorun” on the computers on our domain. If you plug a USB drive into your computer, you will need to “explore” in order to view files on the drive. One way to do this is to go to My Computer, then find the drive there. If you see any files on your USB drive which you don’t recognize, please ask us to help you figure out what they are.
If you have a laptop managed by Desktop Services, please let us know ASAP when we can disable autorun for you.
For computers that Desktop Services is not responsible for – for example, home computers – a quick Google search found these promising links on how to disable autorun. As you read these pages, please be cautious as you decide what applies to your situation, especially if you need to edit your computer’s registry.
http://support.microsoft.com/kb/953252
http://www.howtogeek.com/howto/windows/disable-autoplay-of-audio-cds-and-usb-drives/
(for Vista) http://www.nirmaltv.com/2008/02/20/windows-vista-tips-disable-autoplay-in-vista/
If you have any questions or comments regarding how these guidelines apply to computers we support, please feel free to contact us.
Library staff,
As became clear by yesterday afternoon, there has been a spate of recent Windows computer compromises occurring on campus, including in the Library. It is currently not detected nor contained by anti-virus software. This is thus a good time to remind ourselves that we all have a role in preventing IT security compromises. This includes being cautious and deliberate when we consider opening new files, whether received via email, downloaded from the web, or introduced via removable media, such as a USB flash drive.
The current Windows compromises are mostly spread through USB flash drives, but can also be downloaded from web sites. The campus IT security office issued a strong recommendation to disable “autorun” immediately, and thus your local IT support provider may choose to do this for the systems you use. If “autorun” is disabled, a computer will no longer automatically launch programs when you insert a CD or USB flash drive. Instead, you will need to browse and launch the program or file you wanted, yourself.
In the short-term, please avoid connecting USB flash drives unless auto-run has been turned off on the computer you’re using. When using a USB flash drive, look for suspicious files (such as files you haven’t placed on the drive) and please immediately report them to your local IT support provider.
Please consult with your local IT support if you have any questions or concerns.
Thank you,
-Oliver