- Home
- University Information Technology
- IT Security
IT Security
UIT is continuously working to provide the university community with the most secure technology possible to protect the confidentiality, integrity and availability of critical information and computer resources.
Phishing Email
What is "phishing"?
Attackers attempt to obtain information by posing as a trusted individual or institution and asking you to provide information.
Avoiding Social Engineering and Phishing Attacks
You can view recent known phishing attempts here.
Learn how to recognize phishing emails.
Report a phishing attempt by forwarding the email to phishing@ndus.edu
UND Approved Anti-Virus
It is strongly recommended that personally owned computers connecting to the UND network have anti-virus software running at all times.
All UND owned computers connecting to UND network are required to have university’s antivirus software. UND provides SCEP (System Center Endpoint Protection) free of charge. For additional information about endpoint protection, please visit with your IT department or UND Tech Support.
Duo Security
To provide increased security, the North Dakota University System has implemented Duo two-factor authentication when accessing sensitive information in PeopleSoft HRMS Employee Self-Service and all areas of PeopleSoft Finance from on and off campus locations as of April 4th, 2017.
Two-factor authentication adds a second layer of security to your online accounts by requiring a second factor (phone or other mobile device). This prevents someone from accessing your account, even if they have your username or password.
For more information on Duo Two-Factor Authentication visit
https://guide.duo.com
UND Secure Wireless
UND will soon offer a more secure wireless experience by implementing the UND Secure wireless network. This secure wireless connection will include complete encryption between endpoints. The current UND wireless network relies on application encryption.
Select UND Secure from the available wireless networks to connect. You may also wish to Remove or Forget for the UND network to avoid switching back to the non-secure UND wireless. Contact UND Tech Support with questions or for assistance.
SafeConnect Network Access Control
SafeConnect is the University's network access control technology, which is used to provide wireless network services that comply with UND Network Access Control and Authentication Policy.
- SafeConnect allows compliance with this policy by requiring users to authenticate with a username and password before allowing network access. Once authenticated, the system records the associated network address and how long it was used. That combination of data allows the campus to associate questionable network behavior with a specific user account and the person to whom that account was issued.
- If you are having trouble with SafeConnect, you may need to force log out. Please click the button below to log out of SafeConnect and then attempt to authenticate.
The Impulse policy key and an anti-virus program is required when using the UND network in the Residence Halls.
Secure File Share
Secure file share is a secure way to send files that requires the sender to login with their NDUS.identifier credentials and also complete DUO authentication. Senders must be signed up with DUO first. After logging in, the sender can drag and drop files to send. Once sent, the recipient will receive an email that comes from the Sender’s Name [ liquidfiles.admin@ndus.edu ]. The email will contain a link to the file/s. Once the recipient clicks on the link, they will be prompted to enter NDUS.identifier credentials.
Policies & Procedures
There are laws and regulations that require the university to apply certain security safeguards around various categories of sensitive institutional data or information. University policies are written to support institutional compliance with these laws and regulations.
Scam Alert!
There has been an increase in fraud and scam emails. Currently this has taken the form of fraudulent job postings.
Fake job postings come as unsolicited emails sent to directly to your account or through online job-listing sites. We advise students, faculty and staff to avoid being scam victims by following these guidelines:
Beware if the email or job posting:
• Does not indicate the company name
• Comes from an email address that doesn’t match the company name
• Offers to pay a large amount for almost no work
• Offers you a job without ever interacting with you
• Asks you to pay an application fee
• Wants you to transfer money from one account to another
• Offers to send you a check before you do any work
• Asks you to give your credit card or bank account numbers
• Asks for copies of personal documents
• Says you must send payment by wire service or courier
• Offers you a large payment for allowing the use of your bank account – often for depositing checks or transferring money
• Sends you an unexpectedly large check
No legitimate employer will send payment in advance and ask the employee to send a portion of it back.
DO NOT provide any personal information--especially social security numbers or financial information!
Report a Phishing Email
Recent known phishing attempts:
These messages appear to be phishing attempts. Do NOT click on the link or the attachment and delete the message.
- April 13th
- Subject: Ticket No:99300293 Issued
- The email looks as though it’s from Peter Johnson at UND and and states your UND account will be disabled. It contains a link to log in and undo the deactivation.
- March 23rd
- Subject Norman Dearden as shared a document with you
- The email looks as though it’s from Norman Dearden and asks you to click on a link to view a document titled "7.30-8.45 Study Hall".
- March 22nd
- Subject: Chief Information Officer (CIO)
- The message looks as though it’s from UND and states your account will be deactivated shortly. It contains a link to log in and report the deactivation as an error.
- March 19th
- Subject: Employee 2018 Policy Updates
- Looks as though it’s from Oracle PeopleSoft and asks you to sign in and review policy updates. It contains a link to log in.
- March 8th
- Subject: New
- The email looks as though it's from a student at BSC and states that we have upgraded or server. It asks you to verify your account within 48 hours and contains a link for "email update".
- February 26th
- Subject: Password Update:
- The email looks as though it’s from someone at at NDSU and states that they have detected some unusual activity on your account and are upgrading to a new server and your password is expiring. It contains a link to change your password.
- January 29th
- Subject: Your Office Email Storage Space Low
- The email looks as though it’s from MS Storage Setup and states you are out of storage space. It contains a link to Enable more space.