Update - 4:15pm
Dear MSU Denver faculty, staff and students,
This morning, several Microsoft Windows computers in the Administration Building were infected with what appears to be a previously-unknown malicious application. Unfortunately, standard and advanced antivirus and endpoint protection software solutions are unable to detect the signature of this Trojan application.
To prevent the spread of this malicious software, the Administration Building’s primary networks have been isolated from the rest of campus while Information Technology Services (ITS) investigates and tries to resolve the issue. Additionally, VPN access for all MSU Denver accounts will be unavailable until the infection has been fully eliminated.
MSU Denver faculty, staff and students must exercise extreme caution to prevent further spreading of this malware. Please do the following until further notice:
All computers (University-provided and personal) that have been connected to the MSU Denver network in the Administration Building should be treated as though they are quarantined. Moving these machines to another building or home will most likely spread the infection to the new location.
Although the source of the intrusion has not yet been determined, phishing emails are suspected. Be more vigilant than normal when deciding whether or not to open or click on an email. When in doubt, just delete it.
Any computers that are not in use should be powered-off completely.
If you notice any suspicious activity with your MSU Denver accounts – email or computer – please contact the ITS Helpdesk at 303-352-7548 immediately.
The outbreak seems to have been contained in the Administration Building, however ITS is monitoring all MSU Denver networks. Also, currently only Microsoft Windows computers have been infected, but we cannot guarantee that Apple OS computers are not affected.
If you have any questions or concerns, please contact the ITS Helpdesk at 303-352-7548 or support.msudenver.edu.
Information Technology Services @ MSU Denver
Jun 18, 16:33 MDT
Update - We are continuing to investigate this issue.
Jun 18, 12:15 MDT
Investigating - Due to an active malaware event, the ITS Sercurity team is requesting that all clients in the Administration Building power-off any devices connected to the physical network. ITS techicians are actively canvassing the AD building to assist in removal of the malware.
Jun 18, 12:12 MDT