Category Archives: Information Security

Encrypting External Storage Drives

This article reviews how to encrypt external storage drives such as hard-drives and USB drives.

Looking to encrypt an email?
Check out our Encrypting Emails in Office365 tech doc.

 

When & Why

Encryption is required if you must store files containing financial or personal information (i.e. credit card or Social Security numbers) on an external storage drive.

Why encrypt?

Encryption ensures that, if the device is lost or stolen, the data contained is inaccessible to any unauthorized users.

 

How to Encrypt

 

Questions?

If you have any additional questions or problems, don’t hesitate to reach out to the Help Desk!

Phone: 610-526-7440
Email: help@brynmawr.edu
Location: Canaday Library 1st Floor


Encrypting Emails in Office365

This article reviews how to encrypt emails in Office365.

Looking to encrypt an external drive?
Check out our Encrypting External Storage Drives tech doc.

 

When & Why

Encryption is required if you must send emails containing financial or personal information (i.e. credit card or Social Security numbers).

Why encrypt?

Encryption ensures that, if the email or account is compromised, that the data contained is inaccessible to any unauthorized users.

 

How to…

Encrypt an email (Click me!)

Include the text [ENCRYPT] in the email subject line like so:

illustration of how to use the subject line to encrypt a message

Encrypted emails can be sent to both College and external email addresses.

If you try to send an unencrypted email containing what appears to be sensitive information, you may see a warning message.

View an encrypted email (Click me!)

Follow the instructions in the email you received:

illustration highlighting in-message instructions for opening an encrypted email

  • Have a Bryn Mawr account? click Sign In
  • Don’t have a Bryn Mawr account? Click Use a one-time passcode

illustration highlighting Sign-in and One time passcode options

Replies to encrypted emails will be automatically encrypted.

 

Questions?

If you have any additional questions or problems, don’t hesitate to reach out to the Help Desk!

Phone: 610-526-7440
Email: help@brynmawr.edu
Location: Canaday Library 1st Floor


Password Managers: Overview


Table of Contents:

 

What is a Password Manager?

A service or feature that stores and autofills your credentials.

LITS highly recommends using a dedicated password manager service, rather than one built-in to a browser.
Why? How are they different? (Click me!)

 

Dedicated password managers typically make their Security Model clear, advertising that your passwords are thoroughly encrypted both during storage and usage.

Additionally, they come with a multitude of other security features such as automatic logout, two-factor authentication, password generators, and more. Some even have mobile apps!


Read more at NYTimes.com.

Common Features

  • Securely store usernames, passwords, and other information
  • Automatically store newly created accounts
  • Securely autofill credentials when logging in
  • Generate unique, complex, secure passwords

 

How do I use a Password Manager?

The following is a generalization and may not apply to all managers.
The following screenshots were taken from LastPass.
  • Passwords are stored in a centralized Vault
  • The Vault is accessed via desktop

    …or mobile
  • The Vault is unlocked with a master password
  • Logging into a new website prompts the manager to automatically store the credentials
  • Stored credentials will autofill when you login into that site

 

Popular Options


LastPass

1Password

Dashlane

Bitwarden

See how they compare

 

Questions?

If you have any additional questions or problems, don’t hesitate to reach out to the Help Desk!

Phone: 610-526-7440
Email: help@brynmawr.edu
Location: Canaday Library 1st Floor


Software for Personal Devices

The following article applies to personal devices. For College computers, see current Software Configurations and Software Center.


Before you start, you will need access to the following:

  • a Bryn Mawr College account
  • a laptop or desktop w/ internet access
Access to some of the following software is dependent on your current enrollment/employment status.

Table of Contents:

 

Remote Software

All software available in campus computer labs can be accessed remotely on personal computers. Instructions are linked below.

 

Downloadable Software

Microsoft Office
(all BMC Community Members)

Microsoft Windows
(Faculty & Staff only)


Sophos Home Antivirus
(instructions below)

Malwarebytes

ChemDraw

Kaleidagraph (Win, macOS)
(For license info: contact the Help Desk)

Mathematica

Read&Write
Sophos Home (Windows, macOS) (Click me!)
For more information, see the Sophos Home landing page.
  1. Navigate to the Sophos Home download page
  2. Enter your College email address
  3. Click Submit
  4. In the email you receive, click Create Account
  5. Enter the following information:
    First & Last Name
    Personal Email Address*
    Password
    Coupon Code (pre-filled)

    *Ensure the accuracy of your personal email
    as Coupon Codes are one-time use.
  6. Click Create Account
  7. In the email you receive, click Confirm email
  8. Login with the credentials created at Step 5
  9. Follow the prompts to download Sophos Home

 

Don’t see what you’re looking for?

Students: Need access for a course? (Click me!)

Please contact the course instructor or visit your Moodle course for access instructions.

Want access for use outside of a course? (Click me!)

Please contact the Help Desk to inquire about the specific piece of software you’d like access to.

Other discounted software is available via JourneyEd.com

 

Questions?

If you have any additional questions or problems, don’t hesitate to reach out to the Help Desk!

Phone: 610-526-7440
Email: help@brynmawr.edu
Location: Canaday Library 1st Floor


Setup & Update Your College Password


Before you start, you may need access to the following:

  • a laptop/desktop computer with internet access
  • an email from help@brynmawr.edu with your College username

 

First-time Account Setup

Receive an email from help@brynmawr.edu with your College username Call the Help Desk at 610-526-7440 or drop by Canaday Library Login with your new account, setup Duo, and review our Welcome guide

 

Changing your College Password

Off-Campus and using a Windows College computer?
(Click me!)
  1. Open the Pulse Secure VPN client
  2. Connect to the VPN and double-check you are connected
  3. Navigate to password.brynmawr.edu
  4. Enter your College username, click Submit
  5. Enter your current College password, click Submit
  6. Enter a new password and re-enter it to confirm
    Be sure your password fits length & complexity requirements!
  7. Click Submit
  8. Disconnect from the Pulse Secure VPN
  9. Connect to the Pulse Secure VPN with your new password
  10. Verify you can login to College resources (e.g. Webmail or Moodle) with your new password
  11. Click the Windows Start Menu, your Profile icon, and Lock

  12. Login with your new password
  13. Skip the instructions listed below
  1. Navigate to password.brynmawr.edu
  2. Enter your College username, click Submit
  3. Enter your current College password, click Submit
  4. Enter a new password and re-enter it to confirm
    Be sure your password fits length & complexity requirements!
  5. Click Submit

 

Questions?

If you have any additional questions or problems, don’t hesitate to reach out to the Help Desk!

Phone: 610-526-7440
Email: help@brynmawr.edu
Location: Canaday Library 1st Floor


Two-Factor: Getting Started with Duo


Before you start, you will need access to the following:

  • a Bryn Mawr College account
  • a laptop or desktop computer w/ internet access

Table of Contents:

 

What is Duo?

Duo is used alongside your College email and password to provide Two-Factor Authentication security to all College accounts. This ensures your account is secure, even in the event of a password compromise.

Once enrolled, you can manage your Duo account devices and settings at duo.brynmawr.edu.

 

Enroll in Duo

  1. Navigate to any Duo-protected resource
    (i.e. Webmail or Moodle)
  2. Enter your College email and password
  3. Follow the instructions on the Duo welcome screen to enroll

Several authentication methods are available — pick what’s best for you!

 

Adding a Device


LITS strongly recommends having multiple authentication methods enabled to ensure you always have access to your account(s).


  1. Navigate to the Duo Device Management Portal
  2. Login with your College email and password
  3. Authenticate with Duo
  4. Select Add another device
  5. Follow the instructions provided

For more information see Duo’s Adding a New Device guide.

 

Activating or Reactivating Duo Mobile


The following instructions apply to you if:

  • You got a new smartphone, and retained the same phone number
  • You performed a factory reset on your Duo-enrolled device
  • You added your smartphone to Duo, but didn’t setup Duo Mobile

  1. Navigate to the Duo Device Management Portal
  2. Login with your College email and password
  3. Authenticate with Duo
  4. Identify the device on which you’d like to activate/reactive Duo Mobile — select Device Options
  5. Click Reactivate Duo Mobile
  6. Follow the instructions provided

For more information see Duo Mobile on iOS & Duo Mobile on Android.

 

Duo & Email Syncing


The following applies to you if:

  1. You sync your College email to your mobile device
    AND
  2. You did so prior to enrolling in Duo

If the above applies to you, please remove your College email account from your mobile device (iOS, Android) and then re-add it.

 

Generating Duo Passcodes

These 6-digit codes can be generated without a wireless or cellular connection, ensuring you’ll always be able to authenticate with Duo.

  1. Open the Duo Mobile app
  2. Tap the (down carrot) next to DUO-PROTECTED Bryn Mawr College

Note: To generate a new passcode, tap the refresh icon next to the old passcode.

 

Questions?

If you have any additional questions or problems, don’t hesitate to reach out to the Help Desk!

Phone: 610-526-7440
Email: help@brynmawr.edu
Location: Canaday Library 1st Floor


Backing Up: Why, Where, and How


Table of Contents:

 

Why do I need to back up?

Backups are critical to the integrity of your data, and ensure you’ll never lose valuable files in the event of a device failure.

  • 3-2-1: ensures your backup is redundant

 

Where can I store my backup?

Size Accessibility
Home Drive (H:)¹ 1TB
OneDrive¹ 1TB
Alternative
Cloud Storage
²
Various Various
USB/External
Storage
8GB-2TB via USB port
Code42
(Faculty/Staff only)
Unlimited via Software Center
(College computers only)

¹Access to College-provided resources is revoked after departure from the College.
²Faculty/Staff: College-related files should ONLY be stored on College-provided resources.

 

How do I back up using…

It’s best to back up at least once per quarter. Learn how to schedule automated backups using Code42 (faculty/staff only).
…Home Drive (H:)
via mapping to Windows
  1. Map your BMC Network Drive
  2. Open File Explorer
  3. On the left-hand pane, click username (\\home.brynmawr.edu\home) (H:)
  4. Right-click > New > Folder
    title your folder appropriately (i.e. Backup MM-DD-YYYY)
  5. On the left-hand pane, click This PC
  6. Navigate to Windows (C:) Usersusername
  7. Right-click and copy the file(s)/folder(s) you’d like to back up
  8. On the left-hand pane, click username (\\home.brynmawr.edu\home) (H:)
  9. Open the folder you created in Step 4
  10. Right-click and paste the file(s)/folder(s) you copied
via mapping to macOS
  1. Map your BMC Network Drive
  2. Open Finder
  3. On the left-hand pane, click username (//home.brynmawr.edu/home/username)
  4. Ctrl-click > New > Folder
    title your folder appropriately (i.e. Backup MM-DD-YYYY)
  5. Navigate to the file(s)/folder(s) you’d like to back up
  6. Right-click the file(s)/folder(s) and select copy
  7. On the left-hand pane, click username (//home.brynmawr.edu/home/username)
  8. Open the folder you created in Step 4
  9. Right-click and paste the file(s)/folder(s) you copied
via ingress.brynmawr.edu
  1. Navigate to ingress.brynmawr.edu
  2. Login with your College email and password
  3. Click Home Directory
  4. If prompted, authenticate with your College email and password
  5. Click the folder with your College username
  6. Click Upload Files…
  7. Navigate to, and select the file(s)/folder(s) you’d like to back up
…OneDrive
via OneDrive Online
  1. Navigate to webmail.brynmawr.edu
  2. If prompted, login with your College email and password
  3. Clickin the top-left
  4. Select OneDrive
  5. Click NewFolder
    title your folder appropriately (i.e. Backup MM-DD-YYYY)
  6. Open your newly created folder
  7. Click Upload, select either Files or Folders
  8. Navigate to, and select the file(s)/folder(s) you’d like to back up
via OneDrive for Business
…Code42
  1. Install via Software Center
  2. Setup your backup (skip to Step 2)

…USB/External Drive
via Windows
  1. Connect your USB/External drive
  2. Open File Explorer
  3. On the left-hand pane, click the USB/External drive
  4. Right-click > New > Folder
    title your folder appropriately (i.e. Backup MM-DD-YYYY)
  5. On the left-hand pane, click This PC
  6. Navigate to Windows (C:) Usersusername
  7. Right-click and copy the file(s)/folder(s) you’d like to back up
  8. On the left-hand pane, click the USB/External drive
  9. Open the folder you created in Step 4
  10. Right-click and paste the file(s)/folder(s) you copied
via macOS
  1. Connect your USB/External drive
  2. Open Finder
  3. On the left-hand pane, click the USB/External drive
  4. Ctrl-click > New > Folder
    title your folder appropriately (i.e. Backup MM-DD-YYYY)
  5. Navigate to the file(s)/folder(s) you’d like to back up
  6. Right-click the file(s)/folder(s) and select copy
  7. On the left-hand pane, click the USB/External drive
  8. Open the folder you created in Step 4
  9. Right-click and paste the file(s)/folder(s) you copied

 

Questions?

If you have any additional questions or problems, don’t hesitate to reach out to the Help Desk!

Phone: 610-526-7440
Email: help@brynmawr.edu
Location: Canaday Library 1st Floor


Ransomware: A Quick Guide to Reduce Risk

What is ransomware?

Ransomware is a class of malicious software that holds your data hostage by blocking access and demanding payment. In some instances, the software may even threaten to leak your data unless you pay.

Did you know?

Even if you do pay (Which you should not!), the bad actor will still keep your data and may continue to request additional payments.

 

What are some ways ransomware infects computers?

Most commonly, ransomware infections come from successful phishing attempts in which the victim downloads or opens a fraudulent attachment. Sometimes, infections can occur when a victim starts a download from a fraudulent website.

 

What do I do if I suspect a ransomware infection on my computer?

Stop what you are doing, shut down your computer, and call the Help Desk at 610-526-7440. If you encounter this issue outside of Help Desk hours, please shut down the affected computer immediately and call the Help Desk when it opens or email help@brynmawr.edu from a different device.

 

How do I prevent a ransomware infection?

Have healthy information security habits!

  1. Be wary of fraudulent emails.
  2. Restrict file downloads to senders and websites you trust. Know it’s safe before you download!
  3. Run a virus scan every two weeks.
  4. Be adept at identifying and avoiding fraudulent emails and websites by completing your Information Security Education program at https://www.brynmawr.edu/lits/projects-partnerships/information-security/information-security-education
Did you know?

Sometimes links on legitimate websites can redirect you to a fraudulent website. This most commonly happens on websites for organizations with low funding and, therefore, a small budget for website security. So, always check your website address before starting a download!

Encrypting a College-Owned Computer (macOS)

Before you start, you will need access to the following:

  • a stable internet connection
  • an eligible college-provided Mac

Want to encrypt an email? See Using Email Encryption in Office 365.


Table of Contents:

 

FileVault Encryption — What and Why

Not all devices are eligible to be encrypted. To determine if yours is, check if Disk Encryption is present in Step 2: Encrypt.
  • What: FileVault is Apple’s built-in encryption program for Macs.
  • Why: Encryption is critical to the security of your device, and ensures your data is protected in the event its lost or stolen.

 

Encrypting your Mac

Follow the steps below to ensure your device is encrypted properly.

Note: The screenshots used below were taken on a device running macOS Big Sur. Prior macOS versions may look different.
Step 1: Back up (Click me!)
  • Option 1: via your Home Drive (H:)*
    *Simply move any locally stored files to your mapped H:
  • Option 2: via Code42
Step 2: Encrypt (Click me!)
  1. Open Software Center
  2. On the left-hand pane, click the Featured tab
  3. Find Disk Encryption, click Encrypt
    If Disk Encryption isn’t present:

    Your device may not be eligible to be encrypted.

    Please reach out to the Help Desk if this is the case.

  4. Wait for the Disk Encryption policy to complete
  5. Click the Apple Icon () > Log Out
  6. Log back in
  7. In the top-center of your screen, click Enable Now
  8. If prompted*, enter your College username and password
    *If you’re not prompted for credentials, skip this step.
  9. Allow your device some time to complete the process.
Step 3: Verify Encryption (Click me!)
  1. Click the Apple Icon () > System Preferences
  2. Click Security & Privacy
  3. Click the FileVault tab
  4. Ensure you see:
    • “Turn Off FileVault…”
    • “A recovery key has been set.”

 

Questions?

If you have any additional questions or problems, don’t hesitate to reach out to the Help Desk!

Phone: 610-526-7440
Email: help@brynmawr.edu
Location: Canaday Library 1st Floor