Week of Nov 1
Network Security Update
This week, our network experienced a series of spam attacks that raised significant concerns regarding our security protocols. Early in the week, we detected suspicious activity indicating that an external party was attempting to access our Onelogin platform using the default password.
Upon gaining access, this unauthorized user began resetting staff members' passwords and subsequently logged into their email accounts. The intention behind this malicious activity appeared to be an attempt to steal sensitive information by sending deceptive messages.
In response to this security breach, the district took immediate action by enforcing a mandatory password reset for all users. We also changed the default password for both staff and students to enhance security measures. Additionally, we removed all users in the Onelogin system who had the capability to perform password resets until we could verify that they had changed their passwords to something more secure.
Since implementing these security enhancements, we have not encountered any further attempts to breach our network. However, it is important to note that this malicious activity initially flagged our network as a threat, resulting in our being placed on several blacklists across the internet. This situation caused users to experience 502 error messages when attempting to access certain sites, including Soundtrap, WIDA, and others.
Fortunately, after instituting stricter security measures, we have been able to rectify our standing. Our network has since been removed from those blacklists, and we are pleased to report that internet traffic is now flowing freely once again.
We appreciate your understanding and cooperation during this critical time as we continue to prioritize the safety and security of our network.
High School
How to submit a tech ticket
No comments:
Post a Comment