Information related to computer security of the School

Hello everyone,

We are writing to you with a message that we consider IMPORTANT and which you can consult here.

We have detected (and have already blocked) unusual access to our systems from suspicious IPs that has accessed 0.65% of all the data kept by our institution. Despite this, the School is fully operational and with all services fully guaranteed. Although the amount of data accessed is very small in relation to the total amount of data, we have taken all necessary measures to stop this incident at its root and prevent it from happening again in the future.

Specifically, our systems administrator has activated the contingency protocol and we have created a monitoring committee made up of the General Directorate, Management, the IT director, the Data Protection officer, and legal advice. The commission has been and continues to be in permanent contact with Deloitte Cybersecurity (Cyber Emergency Management - First Response), the company in charge of providing us with assistance in incidents of this nature.

Likewise, the commission, on a preventive basis, has activated the cyber risk policy that the organization has contracted with the insurer HISCOX. We have also given notice of the incident and are in contact with all competent bodies and experts in the field, including the State Agency for Data Protection (AEDP), the Catalan Cybersecurity Agency, and the National Cybersecurity Institute (INCIBE).

Given all the foregoing, and following the provisions of current regulations and our code of action, we wish to inform our community that this action has potentially been able to access basic data, identification and contact data, and information about the products and services contracted. There is no evidence that such data has been exploited. Despite this, we continue working to prevent these situations from recurring in the future, no matter how little impact they may have.

If you have any questions or need any clarification, you can contact us through the following email: IT Security UPF-BSM itsecurity@bsm.upf.edu

We would like to take this opportunity to share with you our latest guidance notice on computer security, which can help you both personally and professionally:

  • In recent weeks you may have heard news about the attacks that are taking place on the computer systems of educational institutions.
  • In most cases, these are "ransomware" attacks in which user documents or system files are encrypted and a financial ransom is requested to be able to recover them.
  • The most common form of infection is through malicious email messages similar to "phishing" attacks, aimed at stealing financial data or identity data.
  • These campaigns can use very elaborate means to gain the trust of the user. From the use of names or logos of companies that may be known to us to taking advantage of our email message threads, stolen in attacks on one of our suppliers or regular interlocutors, in order to send us messages related to a real issue and attach documents (Word, Excel) with malicious content or seemingly correct links.
  • Prevention is key to minimizing risk. For this reason we remind you that it is essential that you take every precaution and carefully read the information that we send below on this subject.

Be wary of emails with strange content, unknown senders, and which contain links or attachments.

How do you identify malicious emails?

https://www.rac1.cat/programes/tot-es-possible/20190917/47427496673/missatges-maliciosos.html

https://support.microsoft.com/es-es/windows/prot%C3%A9jase-del-phishing-0c7ea947-ba98-3bd9-7184-430e1f860a44

In the event that you receive a suspicious email, do not click on its contents and notify IT Support: itsup@bsm.upf.edu

Always save documents in corporate spaces: SharePoint, OneDrive or to network drives O: and S:.

If you save documents on your computer's hard drive, a hardware or software failure, or a "ransomware" attack could make them permanently unusable. Corporate spaces are protected by recovery systems that allow them to be restored in the event of loss.

If you need help to locate your documents in corporate spaces, contact IT Support: itsup@bsm.upf.edu