We’re excited to share that after a year-long, university-wide effort, URI ITS has successfully implemented a DMARC policy of p=reject. This is a major milestone in our commitment to protecting the University from email-based threats like phishing and domain spoofing.

Why this matters:

With full DMARC enforcement, we have:

  • Eliminated unauthorized use of URI’s .edu domain and subdomains
  • Reduced phishing risks for our community and external partners
  • Strengthened URI’s brand reputation by ensuring only legitimate URI emails are delivered
  • Improved email deliverability through greater trust with major providers

The results speak for themselves:
📈 DMARC pass rates have increased from 47% last April to 99.85%, covering over 5 million emails in the past month alone.

This success would not have been possible without the dedication of Caleb Seekell, Tanya Roberts, Jake Fonseca, and Brad Jasperson. Their outstanding contributions were critical to this achievement—thank you!

We’ll continue monitoring and improving our defenses to stay ahead of evolving threats. Thank you all for your support in making URI more secure!

How to Report a Phishing Email Using PhishAlarm

Phishing emails are one of the most common cyber threats – and they often appear more convincing than you might expect. These messages may come from unfamiliar senders, use urgent or alarming language, contain unexpected attachments, or ask for sensitive information like your username, password, or financial details.

At URI, the easiest and most effective way to report suspicious emails is through PhishAlarm, a tool integrated into your URI Gmail account.

Watch the video below to learn how to use PhishAlarm:

When you report a message through PhishAlarm:

  • It’s sent directly to the ITS Information Security Office for review.
  • If confirmed as phishing, the message will be blocked and automatically removed from other inboxes across campus.

Why it matters:

Reporting phishing attempts helps protect your personal information, prevents the spread of malicious content, and strengthens security for the entire URI community.

If you’re ever unsure whether an email is legitimate – don’t click it. Report it.

To ensure all University computers continue to operate smoothly and securely, ITS will begin implementing periodic automatic updates on a weekly basis, or as needed.

To ensure your system is ready for these updates, please follow these steps:

  1. Keep your University computer powered on and connected to the internet (ideally through VPN).
  2. Approve any update prompts when they appear.
    • Mac Users: Enter your computer login username and password (not the admin password). See the image below for reference:

Important Notes:

  • If updates have not been installed regularly, this process may require multiple reboots and could take longer than usual.
  • For a detailed overview of what happens during updates and the steps you need to take, please refer to the Qualys patching Knowledge Base article.
  • These updates are critical to ensure your system runs smoothly and securely.

How Often Will Updates Occur?

Updates will be deployed on a weekly basis, or as needed, to maintain system performance and security. You’ll receive prompts when action is required, and minimal intervention is needed beyond approving the updates when prompted.

If you need assistance or encounter any issues, please contact the ITS Service Desk at helpdesk@uri.edu.

Thank you for your cooperation in keeping our systems secure and efficient.

We’re proud to highlight the contributions of Jill Rasmussen, a member of ITS’ Security team, who makes a significant impact in the field of cybersecurity and identity management.

Past Success: EDUCAUSE Learning Lab

In December 2024, Jill facilitated the EDUCAUSE Learning Lab: Identity and Access Essentials: Securing Higher Education’s Treasure. This prestigious event focused on equipping participants with a solid understanding of Identity and Access Management (IAM) fundamentals—key to securing higher education’s innovative research and resources. Jill’s expertise guided attendees through best practices, challenges, and strategies for shaping modern IAM programs in higher education institutions.

Learn more about the December Learning Lab through EDUCAUSE.

Exciting News: September Repeat

Due to the overwhelming success of the December Learning Lab, Jill has been invited to facilitate the program again in September 2025. Dates for the live sessions are to be determined, but this repeat session promises to provide another opportunity for participants to engage with Jill’s expertise and explore the critical role of IAM in higher education. Stay tuned for more details about registration and session topics as they become available!

Additional Faculty Role

In addition to the IAM Learning Lab, Jill will be serving as faculty for the EDUCAUSE Cybersecurity and Privacy Managers Institute, an online program running from March to May 2025. This institute offers intensive professional development for higher education leaders, further showcasing Jill’s dedication to cybersecurity excellence.

Explore the EDUCAUSE Cybersecurity and Privacy Managers Institute.

Looking Ahead

Congratulations to Jill for representing URI and contributing to the advancement of cybersecurity in higher education! Stay tuned for updates on her September Learning Lab and other initiatives.