September 27, 2006
All Staff and Users,
There was a DOE cyber security test of JLab's computer and network systems last week. Many of you became aware of the testing from having experienced strange pop-ups on your computer screens as well as antivirus notifications. While many of the JLab cyber security systems performed very well, there are a number of improvements that we will be making to address deficiencies found from the testing. These improvements are also needed to respond to the increasing sophistication of cyber attacks. The changes being announced over the next few weeks are considered to be best practices and are already implemented at most other DOE science labs.
At this time, please change your password. Instructions are available at http://cc.jlab.org/docs/services/cue/password.html. If your password has not been changed by COB Monday, October 9, 2006, your password will automatically expire and you will need to contact the helpdesk to access your account.
We greatly appreciate your support. If you have any questions, please let me know.
Roy Whitney, CIO
Cyber Security tip: If you are on travel and login to your JLab account using a hotel's PC or a conference PC, immediately change your password upon return to the Lab. A number of those systems have devices installed that record your key strokes, called key stroke loggers, that would capture your username and password, therefore compromising it.