User's are reporting issues accessing Banner 9. One workaround that has proved successful in certain instances involves the following steps:

1. Visit unmvpn.unm.edu in a web browser and login

2. Click Go to URL

3. Type my.unm.edu, and login once again

4. Click the link for Banner 9 forms

That has provided limited success, and can be attempted to restore service.

IT Technicians are aware of this outage. They are working to resolve it promptly. 

We are receiving reports of users unable to access specific Formstack forms. UNM IT is currently aware of the issue and are working on a prompt resolution. 

Listserv isn’t running currently and has been down since 9pm on 1/15

Multiple users have reported issues logging into RightNow/Oracle Service Cloud. UNM IT is aware of the issue and are working on a resolution.  

To ensure continued security and stability, UNM IT will be applying Windows Updates and rebooting servers on 01/24, 4:00 AM - 6:00 AM.

This month's updates are listed here:

https://www.catalog.update.microsoft.com/Search.aspx?q=server+2021-01

The following services will be intermittently unavailable during the outage window:

AppXtender
Confluence
eVisions/FormFusion/Intellicheck
FAMIS
Help.UNM/Cherwell
Pinnacle Reports
TMA Work Order System

Other Windows servers and services (not listed above) will be intermittently unavailable during the standard patching window described at http://it.unm.edu/availability/ (under "Hosted Windows Servers").

In light of Solarigate, UNM is taking precautions to reduce the attack surface of our M365/Azure environment. The following changes will be implemented on Tuesday, January 26, 2021:

• Disable Exchange Online PowerShell access for all non-privileged users
• Disable the ability of non-privileged users to create App Registrations in Azure AD
• Disable Azure Admin Portal access for all non-privileged users
• Disable the ability for non-privileged users to view other users' details using PowerShell

No outage or impact is expected. Log analysis suggests these features are rarely (if ever) legitimately used by non-privileged users in the UNM environment.

Access to these features will remain available by request for users requiring it and privileged (service) account access will be left intact. To request/restore access to these features (if needed), you may do one of the following anytime:

• Restore Exchange Online PowerShell access: https://goto.unm.edu/exonline-powershell
• Restore the ability to create App Registrations in Azure AD: https://goto.unm.edu/aad-app-developer
• Restore Azure Admin Portal access: Submit a Help.UNM ticket requesting assignment to "Platforms - WES"
• Restore the ability to view other users' details using PowerShell: Submit a Help.UNM ticket requesting assignment to "Platforms - WES"

Please refrain from requesting access if it is not required. Each account with these privileges increases the attack surface of our environment in M365/Azure.

Thank you for your patience and understanding as we work to improve and harden our services.

The UNM IT Customer Support Service Desk and the UNM Information Security & Privacy Office (ISPO) have received many reports of fraudulent/phishing emails sent to UNM community members.

Extortion Emails

There does not appear to be any evidence of automatic downloads, malware, or other malicious software associated with the email samples provided.  Any credentials (usernames, passwords, etc.) associated with these emails appear to have been the result of high-profile data breaches of parties external to UNM.

For more information regarding extortion email schemes please reference the following PSA from the Federal Bureau of Investigation (FBI):

https://www.ic3.gov/media/2018/180807.aspx

Impersonation Emails

All email accounts associated with the impersonation attempts have been hosted by third-parties external to UNM.  As with the extortion emails referenced above, there does not appear to be any indication of compromised UNM accounts associated with these types phishing/spoofing campaigns.  Additionally, there is no evidence automatic downloads, malware, or other malicious software associated with the email samples provided.

For more information regarding extortion email schemes please reference the following PSA from the Federal Trade Commission (FTC):

https://www.consumer.gov/articles/imposter-scams

What you can do

UNM community members are encouraged to report suspicious activity to the University Information Security & Privacy Office at the address security@unm.edu.  Where possible, ISPO staff encourage users to submit samples ‘as an attachment’ so the full message headers can be analyzed.  For information on providing an email as an attachment please visit the following:

https://ispo.unm.edu/frequently-asked-questions.html

Spam:

These messages typically have one or more of the following attributes/characteristics:

• The messages are unsolicited and are sent from unfamiliar addresses
• Contain ‘[SPAM?? #%]’ in the subject line
• Contain advertising in the message body

What you should do:  Forward the Spam sample (as an attachment) to spamdrop@unm.edu

Phishing:

These messages typically have one or more of the following attributes/characteristics:

• The messages are unsolicited and are sent from unfamiliar addresses
• The message body encourages you to take any action such as responding to the original message or clicking a link, or contains otherwise suspicious text

What you should do:  Forward the Phishing sample (as an attachment) to security@unm.edu

To stay updated with the latest phishing attempts and major security alerts visit the ISPO’s Phish Bowl and Advisories page:

https://ispo.unm.edu/phish-bowl/index.html

https://ispo.unm.edu/advisories/index.html

For more information regarding phishing/spoofing email schemes please reference the following PSA from the Federal Bureau of Investigation (FBI):

https://www.ic3.gov/crimeschemes.aspx#item-14

If you feel you have been the victim of a crime please file a report with UNM PD or visit https://police.unm.edu.

Lobo Check-In (including daily screening surveys) is unavailable. We are looking into the issue. Thank you for your patience.

The University of New Mexico has identified that there was an intrusion into the IT environment at the UNM School of Law on June 27. School of Law email and file-sharing services were affected. Based on current findings we believe the issue is isolated to the School of Law and isn’t linked to other systems at UNM. 

School of Law Students, Faculty and Staff should use their @unm email account until further notice and access email at lobomail.unm.edu. 

If you need assistance accessing your @unm email account, please contact the UNM IT Service Desk at 277-5757.

A support email lawhelpdesk@unm.edu has been set up for those in need of any additional Law School IT support services.

The School of Law’s IT department and UNM’s central IT team are working together to restore services. 

To ensure continued security UNM IT is performing maintenance on the voice mail system on Thursday, January 28th beginning at 7:00 pm. During the two hour window the voice mail system will be intermittently unavailable. Critical departments with auto attendants will be temporarily re-routed.

If users experiences any issues with their voice mail services after the maintenance window please contact the IT Support Center at 277-5757.

Kronos will be performing an Operating System Upgrade to services supporting the Production environment. There is no anticipated service interruption during the three-hour service window. The application and servers are expected to remain online during the maintenance activity.

From Friday night, January 22nd at 10 pm, to Saturday morning at 4 am, Kronos will perform system maintenance on their hosting environment. This is not an upgrade to our LoboTime application, it is the vendor maintaining their infrastructure.

Over the scheduled 6 hour period, there will be an outage from 15 to 30 minutes on LoboTime; we just do not know exactly when. We do not expect there to be an issues with LoboTime after the vendor’s maintenance is completed. Moreover, this will not impact the Kronos clocks. 

To ensure adherence to the vendor's release schedule, UNM IT is upgrading Banner applications tonight, Jan. 22th, starting at 5:00 pm and ending at 6:00 pm. The date was moved up from 1/25/21. There will be no outage for this patch.

IT wireless services will be down for about 15 minutes this evening between 7:00 and 8:00 PM for the following buildings, due to a software upgrade. 

Below are the impacted locations: