In the last 7 days, 1471 users have logged in from computers running Windows XP, which reached end-of-life on April 8, 2014. If you're one of them, please migrate your machine to an operating system with current support as soon as possible. Supported versions of Windows can be obtained at no cost for Stanford-owned machines. See the Essential Stanford Software page for more details.
You've probably heard chatter about the Heartbleed bug. Click here to read about how it affects Stanford.
If you've just come from watching our security awareness video, you can find follow-up information on the welcome page.
Hackers scan computers accessible to the Internet approximately one million times/day in order to break into them. As an open research and education organization connected to the Internet, Stanford's network is accessible to almost anyone, including hackers.
If your computer is not properly secured or has weak passwords, hackers can:
- Delete, change, and/or steal your data
- Install spyware to monitor your keypresses, emails, IMs, or anything else (sometimes even microphone and camera)
- Use your computer as part of a 'botnet' to recruit other hacked computers and perform mischief like sending spam or attacking other computers (making you look like the attacker)
- Steal enough information to impersonate you for fun or profit (i.e., identity theft)
The front line defenses include:
- Strong passwords
- Proper security configuration(s) on your computer
- All security updates for your computer
The steps below will help you have a safe and happy computing experience at Stanford.
The Three A's of Computer Security
- Keep your computer up to date: BigFix
- Securing your desktop
- Securing your smart phone and tablet
- Qualys Network and Web Application Vulnerability Scanner
- Splunk Operational Intelligence
- International Travel: ISO Recommendations
- Essential Stanford Software (antivirus, patch management, and so on)
- Third Party Security Requirements
- Secure email
- Requirements for Email servers and clients at Stanford
- Computer equipment transfer and disposal guidelines