Dear Members of the UCSF Community:

Recent cyber attacks in the news are striking closer to home. These incidents can be detrimental on both an institutional and individual level. They require continued diligence by everyone within the university. I need each of you to take immediate action to assist in further securing the IT assets and data that you use and create at UCSF.

The following steps are mandatory and require your immediate action:

• Any computer (laptop or desktop; UCSF-owned or individually owned) that you use to conduct UCSF business must have the BigFix program installed on it immediately. BigFix is a tool that allows us to track a computer to determine if a system meets UCSF minimum IT security requirements.
  • For instruction about installation or to confirm that BigFix is installed, go to https://it.ucsf.edu/services/bigfix-endpoint-manager
  • Or call the UCSF IT Service Desk at 415-514-4100.
• Individuals or departments who independently manage their own servers are required to immediately update security patches.
  • If an application will not operate with up-to-date critical security patches you are required to contact the application vendor immediately for resolution.
  • Per UCSF policy, unpatched computers will be subject to removal from the UCSF network.

While our Information Technology and Security teams continue to work diligently to secure our...