Alert Information

 Yellow:  *Epic EMR Alert

Scheduled Epic Maintenance

Thursday, May 18, 2017 • 11:53 AM joreily

Production Epic will be in a Read-Only mode on 5/23/2017 from 22:00 until 23:00 during system maintenance.

 Yellow:  Application Alert

Amcom SmartSuite Scheduled Maintenance

Monday, May 22, 2017 • 10:24 AM joreily

On May 23 Information Services will be upgrading the Amcom SmartSuite paging and on call application. End users may experience a brief outage from approximately 11AM -12PM

 Yellow:  UPDATE - Network Security Threat

Global Cybersecurity Attack

Friday, May 12, 2017 • 6:40 PM hvsmith

On May 12, 2017, the Office of Information Security and Information Services received several media reports and government alerts informing us of a worldwide cyber-security attack targeting healthcare facilities. The payload of these attacks uses malicious software (Malware), typically referred to as ransomware, to encrypt files on end-user devices and servers. Reports suggest that as many as 150 countries have been impacted by this malware and continues to spread throughout Europe. There have also been several unconfirmed reports that U.S. facilities have been impacted as well.

To mitigate the risk associated with this threat, emergency security enhancements to UTMB's computing environment is currently underway. Approved enhancements include the following:

1. Emergency security patch application to affected end-user devices and servers. Microsoft released a patch March 14, 2017 to address vulnerabilities exploited by this malware. Information Services is identifying and applying the patch to all systems that were not previously patched. Impact to the user community is minimal. Patch application will force a reboot.

2. Microsoft’s Advanced Threat Protection (ATP) was enabled across the UTMB enterprise. Information Services had been testing this advanced capability for its own staff for the last several months and no issues were identified. ATP inspects all inbound internet email for malicious links and attachments. Malicious links will be blocked and users will be redirected to a warning webpage informing them of the hazard. Malicious attachments will be stripped away from the email and the body of the email will be delivered to the intended recipient without the attachment. This control is mostly transparent, however users may notice that internet links are pointing to microsoft.com instead of the original address. A slight delay in email delivery may occur as well. In addition to patching, this may be our best prevention solution because this is the primary attack vector used in the attacks on May 12th.

3. Forced update to Malwarebytes, our anti-malware software, is being applied. This update will include the installation of an anti-ransomware application to end-user devices. This enhancement is mostly transparent to the end-user, however a new icon will appear on their desktop. For Windows 7, 32 bit computer configurations, the installation of the anti-ransomware software has caused issues. Desktop support staff continue to remediate systems that were negatively impacted by the installation of the anti-ransomware software.

4. Firewall Intrusion Prevention Service (IPS) has been updated to block ransomware attacks and any attempts to exploit the vulnerabilities that is targeted by this malware. This service was previously in a monitor mode only and has been moved to a protect mode meaning automatic protections would be applied if anything were detected. We do not anticipate any impact to the user community but side effects could be possible.

In conclusion, these enhancements should have minimal impact to the UTMB population and will greatly reduce risk to our environment. Information Services and the Office of Information Security will continue to review the effectiveness of current controls and take the appropriate steps to enhance where needed.

For further information, contact the UTMB Service Desk at 409-772-5200 or the Office of Information Security at 409-772-3838.

Emergency Communications

Disaster/Weather Emergencies

In the event of a disaster or emergency weather conditions, please refer to the following lines of communication for more information:

  • Call the UTMB hotline at (409) 77-ALERT (772-5378); or
  • Call the UTMB main operator at (409) 772-1011.
  • Information is also available via the web at www.utmb.edu/alert. Should the UTMB web server go down, a second server is in place as a backup and will be available via UTMB's normal URL: www.utmb.edu.  Additionally, an informational site will be activated at www.utmbinfo.com.
  • See www.utmb.edu/emergency_plan for UTMB Health Emergency Operations Plans.
  • Monitor local television and radio stations including KPRC/950 AM, KTRH/740 AM and KIKK/96 FM in Houston.

Sign Up for UTMB Alerts
UTMB Alerts is a "reverse 911" system, the application augments existing emergency communication resources such as email, web and phone-based alerts. Stay informed.

Find out more »