Notice: Instructure Security Incident & Canvas Updates
Yale ITS is monitoring a reported cybersecurity incident affecting Instructure, the vendor behind Canvas. At this time, there is no known significant impact to Canvas services at Yale, and updates will be shared as more information becomes available.
Critical vulnerability in all versions of Linux.
Critical vulnerability in all versions of Linux. Please check with your vendor for updates and plan to apply patches as soon as possible. For more information, see: https://xint.io/blog/copy-fail-linux-distributions
Welcome to Yale's Application Security (AppSec) Program!
Yale's Application Security Program
The AppSec Program aims to promote secure software engineering practices at Yale. The program focuses on web applications run by Yale ITS and University constituents.
We're excited to share that the AppSec Program is now underway! Our goal is to immediately improve the security of web applications for Yale. This security must balance the technical flexibility Yale requires to support its mission. To ensure this balance, we leverage the Open Web Application Security Project (OWASP). OWASP represents a broad consensus about critical security risks to web applications. We will use OWASP to strategize Yale's steps toward more secure coding.
For more information, please visit the AppSec Program's Sharepoint Site.