HeartBleed SSL Vulnerability

By now you may have heard about the Heartbleed security flaw that affected Open SSL version 1.0.1.  This security flaw allows for the leaking of private information from otherwise secure websites/servers.   IC has been working diligently to verify our own security to ensure the safety of SU students, faculty and staff. Here is what you need to know…

FAQ’s About HeartBleed & SU

What is the IC doing about this problem?

IC has been analyzing all University systems to determine if there are any security vulnerabilities relating to HeartBleed.

Do I need to change my university password?

You do not need to change your SUnet Password.  Core SU sites are secure. (WebAdvisor, Blackboard, Datatel, etc…) If you are using your SU password at other sites, you should change it now to something unique.

Do I need to change my SU email password?

Google Apps and Google services were vulnerable to this security flaw.  While Google has stated that users do not need to change their password, it is recommended that you do so. Many times we reuse the same password for multiple accounts, so if you used your Google password on a site that has been breached, you could be at risk. Click the following link to be taken to the Google Password change page.
Google Password Change

Should I change my passwords for other sites?

Some sites used by SU faculty, staff and students have been compromised. It is recommended that you change your password for the following sites…

SoftChalk Cloud – Click Here for Instructions on Resetting
Canvas – Click Here to go to Login Page – Click Forgot Password to reset.

Many other sites online have been affected by this security breach. You should check other sites  in which you have logins for their statement on the HeartBleed vulnerability.

Sites like Yahoo, Facebook, Tumblr, Pinterest, Dropbox, Prezi, TurboTax, etc… have been affected.  You should take this opportunity to create strong, unique passwords for all the different sites that you have to update.

This website from Mashable has a good list of sites that have been affected.
Mashable - HeartBleed HitList

You can also go to and check other websites that aren’t listed on the Mashable Site.  While this isn’t 100%, it is better than doing nothing!

IC recommends that you bookmark this page and check back frequently.  You can use the links above to check other sites for updates to their vulnerability status.

Source XKCD

If you have any questions, do not hesitate to call the IC Help Desk at ext. 5555


Make Your InfoGraphics and Web Media POP with Canva!

Canva is a really cool tool that allows you to create awesome infographics, posters, FaceBook covers and so much more.  You can create visually stunning media that is sure to catch the eye of the beholder.  Not only is it extremely easy to use, its quick too. The image below took 3 minutes to create!  The pre-made layouts are great, but you can get as creative as want with all of the elements that this site provides. It is that easy! A lot of the content that you can use is free, so there is no need to pay unless you want to use some of their premium images.  These are clearly marked with a $1.00 sign on the image!New Site Design-



If you want to see Canva in action, check out this quick YouTube promo video!


Google Drive Logo

Google Drive App – Track Changes

Last week’s update to Google Drive provided a huge list of new features to Docs and Sheets.  One of my favorites so far is the Track Changes app from Letter Feed.  Similar to the same function in MS Word, Track Changes in Google Drive allows you to see all recent edits made to a document as well as who made those changes.  As the owner of the document, you can approve or reject the changes as you see fit!  This is a great tool to increase collaboration on a Google Doc.

Want to give it a try?  Go here to install.

Check out this quick video detailing how this new add-on works.


PushBullet Now on IOS


One of my favorite Android Apps has made its way over to the IOS platform.  Pushbullet, which allows you to see your phone notifications on your computer, now works on iPads and iPhones.  Not only that, but the service also now works with, which is a great service!  Want to give it a go?  Check out this video from Pushbullet and then decide for yourself!

Pushbullet Website -

Pushbullet IOS -

Google Drive Logo

Google Docs and Sheets Get a Huge Update

Google Docs and Google Sheets got a huge update this week with the addition of “Add-ons”.  These are additional applications that work within Google Drive to give you extra functionality to your documents and spreadsheets.  Things like mail merges, label creation, tracking changes, and more!  Check out the video and then go to Drive to check out the new features and apps that are available to you now.

More info?

Changes to Email Login Page

Google has made a change to the, they changed it from our branded web page to the “normal” Google login page. They have done this to all Google Apps domains not just us.

The biggest impact for YOU is that you  now have to enter your full e-mail address to login. In the old page you could just enter username, now you have to enter  Here is what the new page will look like.

google sign in page


You may also see something online the lines of this.

Screen Shot 2014-02-26 at 8.59.23 AM

If you have any questions or problems, call the IC Help Desk at ext 5555


Perform these Stretches to Avoid Back Pain

Sitting at a desk all day can have serious consequences on your body.  Back pain, leg pain, poor posture, etc… all can be caused from not sitting at your desk properly or from sitting to long without movement.  To help relieve some of those consequences, there are a few desk exercises that you can do to help prevent some of these consequences.  Check out the video for a quick stretching technique that will help prevent back pain associated with sitting.

Glute Stretch from Performance Based Ergonomics on Vimeo.


Know the Signs – Be Safe Online!

The internet is a wonderful place.  You can find just about any information on any topic that you can think of.  You can connect with friends and co-workers via email, social channels, video chat… the list could go on and on.   While all this is well and good, the internet is not a happy-go-lucky playground.  There are people out there who want to know all about you.

For starters, lets look at Email.  Email scams are abundant.  Below are some of the common signs that you should look for when trying to determine if an email is a scam or not.

Missing email in the To: field – lots of time scammers send out emails to massive amounts of people, not really knowing for sure who they are sending to.  This is one way that this missing To: field can occurr.  Always click the dropdown to see the details about who the message is from and who it was sent to!

Missing Email




Misspelled words are also a clue in spotting a fake email.  If you already suspect an email, and it includes misspellings and simple errors, this should be a warning sign to stop and investigate further.  You will also notice in the picture below that the from email and the name do not match.  This is another sign that something is amiss!



More often than not, phishing emails will have some form of link included in the email.  If you get a email from “your bank” telling you that you need to reset your password due to a security breach, and to do so you just need to click HERE…lookout!  Scammers can fake a website quite easily, so always take a closer look at the link before you click!  If you hover over a link and see that the address is different than what the link should be, do not click!



If you do happen to click on one of these links, or any link for that matter, always make sure before you log in to any site that you are on the REAL site and not a fake one.  There are a few things you can look for on a website to help ascertain if it is real or not.

First off, any reputable site online that asks you to log in will be secured using HTTPS.  You can look for this in your browsers navigation bar.  Many browsers will show a lock symbol or have a bright green HTTPS at the beginning of the website address.  Here is the secure sign on page for SU email.  As you can see, there is a green lock and green https: at the top.

Secure Sign on

Now scammers can easily fake what the website looks like, but they may not be able to fake that address at the top.  Always look at the address bar to make sure you are on the site you actually should be on.  Look out for random characters or phrases that do not match the website.  Here is an example.

Fake Site


Sometimes, even if you are the safest person in the world, you end up on a legitimate site that itself was compromised and spams you while you are on the page.  For these types of scams and spam, you may think that all is well and that downloads are to be trusted b/c this site is a good site.  Not so fast!  Check out this video about a hack that caused popular video site, dailymotion, to push spam to everyone who stopped by the site!  Always pay attention to any popup that asks you to download or install any software.  If you have any doubts whatsoever, call the help desk

Google Drive Logo

Notification Rules for Google Sheets

Notification rules are a must when using Google Sheets for collaborative work as well as for survey responses.  The rules that you can setup allow you to be notified whenever a change has been made to your spreadsheet.  Not only are these extremely useful, they are also extremely easy to set up!  Here it is in two steps!

Step 1 – In your spreadsheet, click on the tools menu and select notification rules

Notification Rule 1

Step 2 – Set up the type of notification you would like to have.  There are multiple options in this step, so use the one that works best for you!

Notification Rule 2

That’s it!  Now you will be notified via email when changes have been made to your sheet.

Note – this only works for Google Sheets, there is no option for this in Google Documents at this time.  You would need to view the Drive Activity stream to see what documents have been edited recently!

If you have any questions, don’t hesitate to ask.