Ransomware continues to plague higher education and the State of Georgia and the Information Security & Network Services unit of IT has identified weaknesses in the configuration of employee computers that may allow this particularly malicious form of software to spread across the GHC network once a device becomes infected. In order to reduce the […]

GHC Information Security and Network Services has received notice from the USG Cybersecurity office of a recent, high-impact ransomware attack at one of our agencies. The incident is still being analyzed, but it is very likely that this malicious software initially infected their network through a phishing message. While Duo helps protect our accounts from […]

The following IT policies have been updated: IT Data Classification and Security Policy (IT.PO.240) – This policy, formerly titled IT Information Sensitivity Policy, defines the classification and security requirements of data that Georgia Highlands College protects from unauthorized access and/or unintentional disclosure. Data covered by this policy includes information that is either stored or shared […]

      How to Manage Your Privacy in a Growing Internet of Me: Personal information is like money. Value it. Protect it. Be thoughtful about how your personal information is collected through apps and websites. This information can often be found in a company’s privacy policy. Own your online presence. Set the privacy and […]

The following IT policies have been updated: IT Incident Management Policy (IT.PO.230) | IT Incident Management Standard (IT.ST.230) – An information security incident is any questionable or suspicious activity that could threaten the security systems, data, and information technology resources at GHC. These events may violate established information security policies, state and federal information security […]

In accordance with the memo issued by Chancellor Wrigley concerning the requirement for all USG employees to participate in mandatory cybersecurity awareness training each October, GHC IT has provided the “AY2019 Cybersecurity” training module in D2L. Employee participation is mandatory and GHC will be required to report 100% compliance in November. To access this training: Go […]

In accordance with the memo issued by Chancellor Wrigley concerning the requirement for all USG employees to participate in mandatory cybersecurity awareness training each October, GHC IT has provided the “AY2019 Cybersecurity” training module in D2L. Employee participation is mandatory and GHC will be required to report 100% compliance in November. To access this training: Go […]

In accordance with the memo issued by Chancellor Wrigley concerning the requirement for all USG employees to participate in mandatory cybersecurity awareness training each October, GHC IT has provided the “AY2019 Cybersecurity” training module in D2L. Employee participation is mandatory and GHC will be required to report 100% compliance in November. To access this training: Go […]

In October, the University System of Georgia joins thousands of organizations observing the 16th annual National Cybersecurity Awareness Month. The overarching theme this year is “Own IT. Secure. IT. Protect IT.” Within the USG, cybersecurity incidents are far more likely to result from lapses of judgment when we let down our guard than from successful […]

Did you know? In 2017 the education industry (which includes K–12 and higher education institutions) had 7,837,781 records breached in 35 events. To put that into perspective, the healthcare industry had 6,058,989 records breached in 428 events, and the retail industry had 123,652,526 records beached across 33 events. (See Privacy Rights Clearinghouse Chronology of Data Breaches, 2017 […]