<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 14 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
        {font-family:Cambria;
        panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
        {font-family:Calibri;
        panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
        {font-family:Verdana;
        panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
        {font-family:"Trebuchet MS";
        panose-1:2 11 6 3 2 2 2 2 2 4;}
@font-face
        {font-family:ArialMT;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
        {margin:0in;
        margin-bottom:.0001pt;
        font-size:11.0pt;
        font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
        {mso-style-priority:99;
        color:blue;
        text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
        {mso-style-priority:99;
        color:purple;
        text-decoration:underline;}
span.EmailStyle17
        {mso-style-type:personal-compose;
        font-family:"Calibri","sans-serif";
        color:windowtext;}
.MsoChpDefault
        {mso-style-type:export-only;
        font-family:"Calibri","sans-serif";}
@page WordSection1
        {size:8.5in 11.0in;
        margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
        {page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="blue" vlink="purple">
<div class="WordSection1">
<div style="mso-element:para-border-div;border:none;border-bottom:solid windowtext 1.5pt;padding:0in 0in 6.0pt 0in">
<p class="MsoNormal" style="border:none;padding:0in"><b><i><span style="font-size:10.0pt;font-family:&quot;Cambria&quot;,&quot;serif&quot;;color:#5F497A">Today on the</span></i></b><b><i><span style="font-family:&quot;Cambria&quot;,&quot;serif&quot;;color:#5F497A"> ETNews Listserv<o:p></o:p></span></i></b></p>
</div>
<p class="MsoNormal"><b><span style="font-size:10.0pt;color:#76923C">ITEM:&nbsp; </span>
</b><b><span style="font-size:10.0pt;color:#E46C0A;mso-style-textfill-fill-color:#E46C0A;mso-style-textfill-fill-alpha:100.0%">Cyber Alert - Potential for Increased Targeting of Educational Institutions</span></b><b><span style="font-size:10.0pt;color:#E46C0A;mso-style-textfill-fill-color:#E46C0A;mso-style-textfill-fill-alpha:100.0%"><o:p></o:p></span></b></p>
<p class="MsoNormal" style="text-autospace:none"><b><span style="font-size:13.0pt;font-family:ArialMT">&nbsp;</span></b><o:p></o:p></p>
<p class="MsoNormal" style="text-autospace:none"><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">For your situational awareness, the Center for Internet Security<sup>US entity
</sup>(CIS) is alerting you to a potential increase in targeting of educational institutions by malicious actors.<o:p></o:p></span></p>
<p class="MsoNormal" style="text-autospace:none"><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&nbsp;<o:p></o:p></span></p>
<p class="MsoNormal" style="text-autospace:none"><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">On April 3, 2014, the hacktivist collective Anonymous announced &#8220;OpSafeEdu&#8221; targeting educational institutions. The announcement outlines Anonymous&#8217;
 issues with &#8220;lax security on educational websites,&#8221; the violation of student&#8217;s civil liberties, and abuse of students, specifically mentioning pedophilia. Anonymous does not list specific targets, but does mention the Department of Education. It is highly
 likely that Anonymous will not distinguish between public and private educational institutions when identifying targets in this operation. Of note, anyone can claim to be a member of Anonymous and anyone, member or not, may suggest targets and operations.
 Individual participants choose which operations they want to support, currently resulting in numerous operational suggestions and limited activity.<o:p></o:p></span></p>
<p class="MsoNormal" style="text-autospace:none"><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&nbsp;<o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;In March 2014, Anonymous targeted a private university, purportedly to raise awareness about the university&#8217;s lack of cyber security. The operation resulted in Anonymous compromising one
 of the university&#8217;s servers and releasing information. Anonymous also attempted to engage individuals at the university, via a phishing email, with the hope they would confirm the breach and the university&#8217;s security issues.<o:p></o:p></span></p>
<p class="MsoNormal" style="text-autospace:none"><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&nbsp;<o:p></o:p></span></p>
<p class="MsoNormal" style="text-autospace:none"><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">In addition to potential Anonymous targeting, CIS observed the following activity regarding educational institutions in 2014:<o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Network Time Protocol (NTP) Distributed Denial of Service (DDoS) attacks.
<i>(For more information, refer to the CIS Cyber Alert &#8220;Increase in NTP DDoS Attacks Targeting Schools&#8221; disseminated on March 5, 2014.)</i><o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Website defacements<o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Content Management System (CMS) vulnerabilities<o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:32.0pt;text-autospace:none"><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&nbsp;<o:p></o:p></span></p>
<p class="MsoNormal" style="text-autospace:none"><b><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">RECOMMENDATIONS:</span></b><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;"><o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;CIS will continue to monitor for potential threats to SLTT governments and notify entities of potential targeting. However, if you are aware of Anonymous targeting or threats within your
 jurisdiction, you should report the activity to CIS.<o:p></o:p></span></p>
<p class="MsoNormal" style="text-autospace:none"><b><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&nbsp;</span></b><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;"><o:p></o:p></span></p>
<p class="MsoNormal" style="text-autospace:none"><b><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">UPDATED RECOMMENDATIONS:</span></b><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;"><o:p></o:p></span></p>
<p class="MsoNormal" style="text-autospace:none"><i><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">In addition, CIS recommends the following:</span></i><i><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;"><o:p></o:p></span></i></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<i><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Use up-to-date anti-virus, anti-spyware, and anti-adware protection software and deploy a firewall.<o:p></o:p></span></i></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<i><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Apply appropriate patches and updates to all computers.<o:p></o:p></span></i></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<i><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;If you are using a CMS such as WordPress, Joomla, or Drupal, make sure the application is updated, patched, and secure.<o:p></o:p></span></i></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<i><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;If you are using PHP on your webservers, make sure the system is running the most recent version of PHP.<o:p></o:p></span></i></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<i><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Monitor log files, especially proxy server logs, for unauthorized or suspicious Internet connections.<o:p></o:p></span></i></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<i><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Do not use the same login name or password from work-related systems for any other website. Passwords should be complex and at least 10 characters long.<o:p></o:p></span></i></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<i><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Install a spam filter and block phishing emails based on known malicious subject lines.<o:p></o:p></span></i></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<i><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Educate employees about phishing emails and advise them not to open suspicious emails, not to click on links contained in such emails and to never provide usernames and/or passwords to
 any &nbsp; &nbsp; unsolicited requests.<o:p></o:p></span></i></p>
<p class="MsoNormal" style="margin-left:48.0pt;text-indent:-24.0pt;text-autospace:none">
<i><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&middot;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Conduct vulnerability scans of Internet facing systems and applications.<o:p></o:p></span></i></p>
<p class="MsoNormal" align="center" style="text-align:center;text-autospace:none">
<b><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">&nbsp;</span></b><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;"><o:p></o:p></span></p>
<p class="MsoNormal" align="center" style="text-align:center;text-autospace:none">
<b><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">TLP: WHITE</span></b><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;"><o:p></o:p></span></p>
<p class="MsoNormal" align="center" style="text-align:center;text-autospace:none">
<b><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;">Traffic Light Protocol (TLP): WHITE information may be distributed without restriction, subject to copyright controls.</span></b><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;"><o:p></o:p></span></p>
<p class="MsoNormal" align="center" style="text-align:center;text-autospace:none">
<span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;"><a href="http://www.us-cert.gov/tlp/"><b><span style="text-decoration:none">http://www.us-cert.gov/tlp/</span></b></a><o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:12.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;;color:#0F243E"><o:p>&nbsp;</o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#0F243E"><o:p>&nbsp;</o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#0F243E">Get even more
</span><b><span style="font-size:10.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#5F497A">ET News</span></b><span style="font-size:10.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#0F243E"> on the
</span><b><span style="font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#0F243E"><a href="http://nhoetnews.wordpress.com/"><span style="color:blue">ET News blog</span></a></span></b><span style="font-size:10.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#0F243E">.<o:p></o:p></span></p>
<div style="mso-element:para-border-div;border:none;border-bottom:solid windowtext 1.0pt;padding:0in 0in 0in 0in">
<p class="MsoNormal" style="border:none;padding:0in"><span style="font-size:10.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#0F243E"><o:p>&nbsp;</o:p></span></p>
</div>
<p class="MsoNormal"><b><span style="font-size:8.0pt;font-family:&quot;Verdana&quot;,&quot;sans-serif&quot;;color:#5F497A">ET News</span></b><span style="font-size:10.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#0F243E">
</span><span style="font-size:8.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#0F243E">is a service of the</span><span style="font-size:10.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#0F243E">
</span><b><span style="font-size:8.0pt;font-family:&quot;Verdana&quot;,&quot;sans-serif&quot;;color:#5F497A">Office of Educational Technology</span></b><b><span style="font-size:8.0pt;font-family:&quot;Verdana&quot;,&quot;sans-serif&quot;;color:#632423">&nbsp;
<o:p></o:p></span></b></p>
<p class="MsoNormal"><span style="font-size:8.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#404040">NH Department of Education&nbsp;&nbsp;&nbsp; 101 Pleasant Street&nbsp;&nbsp;&nbsp; Concord, NH&nbsp;&nbsp;&nbsp; 03301<o:p></o:p></span></p>
<p class="MsoNormal"><i><span style="font-size:8.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#404040">For more information, contact
<o:p></o:p></span></i></p>
<p class="MsoNormal"><b><span style="font-size:8.0pt;font-family:&quot;Verdana&quot;,&quot;sans-serif&quot;;color:#5F497A">Stan Freeda<o:p></o:p></span></b></p>
<p class="MsoNormal"><span style="font-size:8.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:#404040">603.271.5132&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span><span style="font-size:8.0pt;font-family:&quot;Trebuchet MS&quot;,&quot;sans-serif&quot;;color:navy"><a href="mailto:sfreeda@ed.state.nh.us"><span style="color:blue">Stanley.Freeda@doe.nh.gov</span></a>&nbsp;&nbsp;&nbsp;&nbsp;
<a href="http://www.education.nh.gov/instruction/ed_tech/index.htm"><span style="color:blue">www.education.nh.gov/instruction/ed_tech/</span></a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
<a href="http://www.opennh.org/"><span style="color:blue">www.opennh.org</span></a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
<a href="http://www.nheon.org/"><span style="color:blue">www.nheon.org</span></a>&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp;<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:8.0pt;font-family:&quot;Verdana&quot;,&quot;sans-serif&quot;;color:#4F6228"><o:p>&nbsp;</o:p></span></p>
<p class="MsoNormal"><span style="font-size:8.0pt;font-family:&quot;Verdana&quot;,&quot;sans-serif&quot;;color:#5F497A">&#8220;The need to know the capital of Florida died when my phone learned the answer.&#8221;
<i>~ Anthony Chivetta, high school student in Missouri</i></span><span style="font-size:8.0pt;font-family:&quot;Times New Roman&quot;,&quot;serif&quot;;color:#5F497A"><o:p></o:p></span></p>
<p class="MsoNormal"><i><span style="font-size:8.0pt;font-family:&quot;Verdana&quot;,&quot;sans-serif&quot;;color:#E36C0A">The contents of this message are confidential. Any unauthorized disclosure, reproduction, use or dissemination (either whole or in part) is prohibited. If
 you are not the intended recipient of this message, please notify the sender immediately and delete the message and any attachments from your system.
</span></i><span style="font-size:8.0pt;color:#E36C0A"><o:p></o:p></span></p>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
</div>
</body>
</html>