This Week in Security

Twitter announced today that it has discovered unauthorized attempts to access user data, including usernames, email addresses and passwords.  The attackers may have gained access to information on approximately 250,000 users.  Twitter has reset the passwords of affected users, and notified them via email.

ITS expects that phishers may attempt to take advantage of this event.  Do not reply to or click links in any email you may receive requesting that you update your account or change your Twitter password.  Instead, open a new browser window, navigate to directly, and change your password there.

For more information about this event, visit Twitter’s blog at

Also today, Oracle released its February 2013 Critical Patch Update, which includes 50 security fixes for Java SE.  Originally scheduled for later this month, Oracle released it early to address active exploitation of vulnerabilities in the Java Runtime Environment.  For more information, visit Oracle’s security alert site.

On Monday, Apple released the latest version of its mobile operating system, iOS 6.1.  The update sees a number of improvements and bug fixes, and includes 4G LTE support for 36 more iPhone carriers and 23 more iPad carriers.  Users can update to 6.1 by selecting Settings, General, then Software Update on their iOS device.

ITS recommends that you apply the updates as soon as possible.