Technology Development Council
Minutes
Wednesday, February 24, 2016, 3:00 p.m.
E-112
Members 2015-2016
Name
Representing
Present
Absent
Dave Phillips
Administration Interim VP (P)
x
Mark Sanchez
Renata Funke
Administration (P)
Administration (P)
x
Vacant
Antonio Alacron
Administration (P)
Manager
Mary Davis
Faculty (2-yr)
x
Marnie Glazier
Faculty (2-yr)
x
Jim Riley
Deborah Stephens
Faculty (2-yr)
Faculty (2-yr)
Joe Welch
Faculty (2-yr)
Ann Wright/Gabriel Bravo
Faculty (2-yr)
x
Dawn Henry
Classified – CSEA (2-yr)
x
Adrian Flores
Mark Shelor
Associated Students (1-yr)
Associated Students (1-yr)
x
x
x
x
x
x
x
Others (Non Voting)
Name
Laura Lark
Title or Representing
Instructional Technologist
Present
x
Paul Chen
Computer Tech
x
CALL TO ORDER & INTRODUCTIONS
Meeting called to order at 3:09 p.m.
Absent
Dave Phillips
ACTION ITEMS
1. Consideration of Approval of Minutes for October 28, 2015 meeting and
and December 16, 2015. Motion: Minutes approved.
Dave Phillips
HARTNELL COLLEGE VISION STATEMENT
Hartnell College will be nationally recognized for the success of our students by developing leaders who will contribute
to the social, cultural, and economic vitality of our region and the global community.
HARTNELL COLLEGE MISSION STATEMENT
Focusing on the needs of the Salinas Valley, Hartnell College provides educational opportunities for students to reach
academic goals in an environment committed to student learning, achievement and success.
Technology Development Council
Page two
1. AREA REPORTS/REQUESTS/QUESTIONS
Students – Student Reps
The student representative talked about credit card information begin entered on the cat card
page in an insecure manner, i.e., the page is not using the https protocol. Dave said that even through
the web page is not a secure page, the “frame” where the CC is entered is indeed secure, and the
information is sent securely to our third party CC provider. Students are concerned because they
cannot tell that their information is being sent securely. Dave will ask our webmaster James Fitch to
change the way that page operates, so that students can tell that their information is securely
transmitted.
Small groups of students are testing the new student planner. ASHC members and Veterans
Club members have volunteered for the testing. Students can use the planner to track their degree
progress, perform what-if scenarios, and register for classes. The college will be able to use the planner
data for reporting and what classes will be needed in upcoming semesters.
The mobile application is ready to roll out. Modules include course schedules, faculty/staff
directory, events, and historical transcripts and grades.
Faculty – Faculty Reps
Deborah Stephens reported that the CATCard system needs to be changed, so that when
adding cash to the CatCard account using the cash machines, it is applied to both the printing system
and the cafeteria system. Dave said that they are trying to change the system but it is a large
migration and funds are needed to replace the machines. A vendor’s promise that the system would
work with both systems was a failed promise. Students can use credit cards, but don’t know if the
Business Office/Cashier can handle cash to add? The cashier can be trained and adjust as a temporary
fix.
Academic Standards – Probation. Level I probation happens when a student completes less
than 50% of attempted courses, or their GPA falls below 2.0. Level II probation occurs if this continues
for another semester. A third semester of probation results in dismissal. Any probation level will cause
the student to lose eligibility for state financial aid. Last date to appeal is 3/18/16 and depending on
status cannot register for summer/fall.
Antonio Alacron asked about the printing default B/W + Color. The PC it is secured B/W. Need
to check with Lab Coordinator in what areas may be of concerned. Laura Lark said it is totally a
preference. May need to place sign re: the default and Title VII Copyright Laws on all MDFs.
Staff – Nothing to report.
Functional Areas (Student Affairs, Academic Affairs, Admin Services) – Nothing to report.
2. INFORMATION/DISCUSSION/PRESENTATIONS
1. Tech Minute – Ransomware
There is a new ransomware strain that is amateurishly called “Locky”, but this is a
professional grade malware. The major headache is that this flavor starts out with a
Microsoft Word attachment which as malicious macros in it, making it hard to filter out.
HARTNELL COLLEGE VISION STATEMENT
Hartnell College will be nationally recognized for the success of our students by developing leaders who will contribute
to the social, cultural, and economic vitality of our region and the global community.
HARTNELL COLLEGE MISSION STATEMENT
Focusing on the needs of the Salinas Valley, Hartnell College provides educational opportunities for students to reach
academic goals in an environment committed to student learning, achievement and success.
Over 400,000 workstations were infected worldwide in a few hours when it was first
released.
Technology Development Council
Page three
The bad guys use social engineering twice to trick the user first into opening the
attachment, and then to enable the macros in the Word file.
When the Word document is opened, it looks like the content of the document is
scrambled and the document will display a message stating that you should enable the
macros if the text is unreadable. Once the victim enables the macros, the macros will
download an executable from a remote server and execute it. This executable is the Locky
Ransomware that when started will begin to encrypt the files on your computer and
network, At this time, there is no known way to decrypt files encrypted by Locky.
The attack flow is >> Attacker sends Spam E-Mail >> Spam Fliter Failed (IP,
reputation content not blocked) >> Inbox >> Anti-Virus Failed (New malicious
attachment) >> invoice_Feb- (User opens malicious attachment (Word document) >>
Microsoft Word >> Enable Macro (User enables macro) >> Create & Run Batch File
(Lah.bat) >> Run Windows Script (Cscript.exe) >> Download Binary (Fail.exe) >>
Web Filter Failed (Web address is not blocked) >> Anti Virus Failed (Binary is obfuscated
thus unknown) >> Run Fail.exe (ransomware) (Continues as svhost.exe) >> Negotiate
Encryption >> Web Filter Failed (Communication is not blocked) >> Encrypt Data >>
Encrypt Data >> Delete Shadow Copies (Removes local backups of files) >> Display
Ransom Notes
What to do about it – You cannot just disable all macros, end user would riot because
of a lot of legacy code relies on macros. A suggestion would to go hunt for this Group
Policy Setting in the Trust Center, and set it to “Disable all except digitally signed macros”.
Looks real
Will look to do something with firewalls
Social engineering works well
Boeing had a $50 million scam
Ransom ware and files get encrypted – no back up
2. Computer Replacement Plan
Dave Phillips said that there was no formal written plan on computer replacements, so
one is being written now. The plan is to replace at least 800 computers per year. It will
cost $200,000 to buy 300. Will move to a 3-yr cycle that will be for laptop + computer +
docking stations.
3. Wireless Authentication – All
With wireless authentication we will have to make a decision and make a
recommendation. We are testing trial equipment to handle 80 users; current equipment
can handle 15-20 users. Will set up trial equipment in Steinbeck Hall for event at end of
March, before Panther Prep on April 30, 2016 to have temporary access points.
Laura Lark did look into the authentication use at CSUMB, MPC, and MCOE. Everyone
logs in. Rolling out will have problems with network. What it connects to and if easier with
Id. Can correct and have flexibility and control. Can write policies and maintain password.
Can have guest access for 24hrs. Will have to decide on a policy. Wi-Fi has a lot of
options, but can be banned to save the bandwidth.
David Phillips asked the committee to think about authentication on number of devices
used.
HARTNELL COLLEGE VISION STATEMENT
Hartnell College will be nationally recognized for the success of our students by developing leaders who will contribute
to the social, cultural, and economic vitality of our region and the global community.
HARTNELL COLLEGE MISSION STATEMENT
Focusing on the needs of the Salinas Valley, Hartnell College provides educational opportunities for students to reach
academic goals in an environment committed to student learning, achievement and success.
Technology Development Council
Page four
OTHER ITEMS/BRIEF ANNOUNCEMENTS
Next Meeting(s):
 March 23, 2016 @ 3:00 p.m. in E-112
 April 27, 2016 @ 3:00 p.m. in E-112
 May 25, 2016 @ 3:00 p.m. in E-112
ADJOURNMENT
Meeting adjourned at 4:32 p.m.
HARTNELL COLLEGE VISION STATEMENT
Hartnell College will be nationally recognized for the success of our students by developing leaders who will contribute
to the social, cultural, and economic vitality of our region and the global community.
HARTNELL COLLEGE MISSION STATEMENT
Focusing on the needs of the Salinas Valley, Hartnell College provides educational opportunities for students to reach
academic goals in an environment committed to student learning, achievement and success.