%PDF-1.3 1 0 obj << /Type /Catalog /Outlines 2 0 R /Pages 3 0 R >> endobj 2 0 obj << /Type /Outlines /Count 0 >> endobj 3 0 obj << /Type /Pages /Kids [6 0 R 14 0 R ] /Count 2 /Resources << /ProcSet 4 0 R /Font << /F1 8 0 R /F2 9 0 R /F3 10 0 R /F4 11 0 R >> >> /MediaBox [0.000 0.000 612.000 792.000] >> endobj 4 0 obj [/PDF /Text ] endobj 5 0 obj << /Creator (DOMPDF) /CreationDate (D:20250718210551+00'00') /ModDate (D:20250718210551+00'00') /Title (Report 07-2025) >> endobj 6 0 obj << /Type /Page /Parent 3 0 R /Annots [ 12 0 R ] /Contents 7 0 R >> endobj 7 0 obj << /Length 10064 >> stream 0.702 0.800 0.816 rg 34.016 34.016 543.969 723.969 re f 1.000 1.000 1.000 rg 45.266 70.079 521.469 676.655 re f 0.773 0.773 0.773 rg 0.773 0.773 0.773 RG 45.266 746.734 m 566.734 746.734 l 565.984 745.984 l 46.016 745.984 l f 566.734 746.734 m 566.734 70.079 l 565.984 70.079 l 565.984 745.984 l f 45.266 746.734 m 45.266 70.079 l 46.016 70.079 l 46.016 745.984 l f 0.200 0.200 0.200 rg BT 61.016 693.716 Td /F1 14.4 Tf [(COMPUTER LITERACY AND DIGITAL LITERACY – NOT THE SAME )] TJ ET BT 61.016 676.134 Td /F1 14.4 Tf [(THING)] TJ ET 0.400 0.400 0.400 rg BT 61.016 647.326 Td /F2 9.0 Tf [(Posted on )] TJ ET BT 104.045 647.326 Td /F3 9.0 Tf [(July 06,2023)] TJ ET BT 157.082 647.326 Td /F2 9.0 Tf [( by )] TJ ET BT 171.590 647.326 Td /F3 9.0 Tf [(Amber Viviers)] TJ ET 0.153 0.153 0.153 rg BT 61.016 619.837 Td /F4 9.0 Tf [(Computer and Digital Literacy are two separate things, but they go together. For us to be effective, responsible technology )] TJ ET BT 61.016 608.848 Td /F4 9.0 Tf [(users, we need to have both. In this article we explore the difference between these two concepts, and why it is important )] TJ ET BT 61.016 597.859 Td /F4 9.0 Tf [(to develop digital literacy skills.)] TJ ET BT 61.016 577.870 Td /F1 9.0 Tf [(What is computer literacy?)] TJ ET BT 61.016 557.881 Td /F4 9.0 Tf [(Computer literacy is defined as the knowledge and ability to use computers and related technology efficiently, with skill )] TJ ET BT 61.016 546.892 Td /F4 9.0 Tf [(levels ranging from elementary use to computer programming and advanced problem solving. Those who are computer )] TJ ET BT 61.016 535.903 Td /F4 9.0 Tf [(literate have the ability to perform basic tasks on the computer. For example, switching on your computer, knowing how to )] TJ ET BT 61.016 524.914 Td /F4 9.0 Tf [(access the internet, navigating a browser, and operating software systems, and completing any other tasks that make it )] TJ ET BT 61.016 513.925 Td /F4 9.0 Tf [(possible to do your job.)] TJ ET BT 61.016 493.936 Td /F1 9.0 Tf [(What is digital literacy?)] TJ ET BT 61.016 473.947 Td /F4 9.0 Tf [(Digital literacy is the ability to navigate our digital environment using reading, writing, critical thinking and technical skills. )] TJ ET BT 61.016 462.958 Td /F4 9.0 Tf [(It’s about using technological devices such as a smartphone, laptop or tablet, to find, evaluate and communicate )] TJ ET BT 61.016 451.969 Td /F4 9.0 Tf [(information. So, digital literacy goes beyond computer literacy because it gives individuals the power to connect around )] TJ ET BT 61.016 440.980 Td /F4 9.0 Tf [(the world. )] TJ ET BT 61.016 420.991 Td /F1 9.0 Tf [(Why is digital literacy important?)] TJ ET BT 61.016 401.002 Td /F4 9.0 Tf [(Digital literacy skills are essential for participating in the modern economy. Digital literacy can play a powerful role in )] TJ ET BT 61.016 390.013 Td /F4 9.0 Tf [(helping people connect, learn, engage with their community, and create more promising futures. Simply reading articles )] TJ ET BT 61.016 379.024 Td /F4 9.0 Tf [(online does not address digital literacy, so it is important for everyone to understand the variety of content and possibilities )] TJ ET BT 61.016 368.035 Td /F4 9.0 Tf [(that are accessible online.)] TJ ET 0.153 0.153 0.153 RG 85.866 350.862 m 85.866 351.275 85.696 351.685 85.404 351.976 c 85.113 352.268 84.703 352.437 84.291 352.437 c 83.878 352.437 83.469 352.268 83.177 351.976 c 82.885 351.685 82.716 351.275 82.716 350.862 c 82.716 350.450 82.885 350.040 83.177 349.749 c 83.469 349.457 83.878 349.287 84.291 349.287 c 84.703 349.287 85.113 349.457 85.404 349.749 c 85.696 350.040 85.866 350.450 85.866 350.862 c f BT 91.016 348.046 Td /F1 9.0 Tf [(Efficient Communication: )] TJ ET BT 202.526 348.046 Td /F4 9.0 Tf [(Digital literacy improves communication that creates a more efficient workflow. It )] TJ ET BT 91.016 337.057 Td /F4 9.0 Tf [(allows employees to communicate with each other through various platforms, such as email, instant messaging, )] TJ ET BT 91.016 326.068 Td /F4 9.0 Tf [(video conferencing, and social media.)] TJ ET 85.866 317.895 m 85.866 318.308 85.696 318.718 85.404 319.009 c 85.113 319.301 84.703 319.470 84.291 319.470 c 83.878 319.470 83.469 319.301 83.177 319.009 c 82.885 318.718 82.716 318.308 82.716 317.895 c 82.716 317.483 82.885 317.073 83.177 316.782 c 83.469 316.490 83.878 316.320 84.291 316.320 c 84.703 316.320 85.113 316.490 85.404 316.782 c 85.696 317.073 85.866 317.483 85.866 317.895 c f BT 91.016 315.079 Td /F1 9.0 Tf [(Enhances Problem-Solving Skills: )] TJ ET BT 239.066 315.079 Td /F4 9.0 Tf [(With digital literacy, employees can access vast amounts of information )] TJ ET BT 91.016 304.090 Td /F4 9.0 Tf [(through the internet, which allows them to research solutions to complex problems, find relevant data, and make )] TJ ET BT 91.016 293.101 Td /F4 9.0 Tf [(informed decisions.)] TJ ET 85.866 284.928 m 85.866 285.341 85.696 285.751 85.404 286.042 c 85.113 286.334 84.703 286.503 84.291 286.503 c 83.878 286.503 83.469 286.334 83.177 286.042 c 82.885 285.751 82.716 285.341 82.716 284.928 c 82.716 284.516 82.885 284.106 83.177 283.815 c 83.469 283.523 83.878 283.353 84.291 283.353 c 84.703 283.353 85.113 283.523 85.404 283.815 c 85.696 284.106 85.866 284.516 85.866 284.928 c f BT 91.016 282.112 Td /F1 9.0 Tf [(Increases Efficiency:)] TJ ET BT 180.557 282.112 Td /F4 9.0 Tf [( Digital tools such as automation, online collaboration platforms, and project management )] TJ ET BT 91.016 271.123 Td /F4 9.0 Tf [(software can increase efficiency in the workplace.)] TJ ET 85.866 262.950 m 85.866 263.363 85.696 263.773 85.404 264.064 c 85.113 264.356 84.703 264.525 84.291 264.525 c 83.878 264.525 83.469 264.356 83.177 264.064 c 82.885 263.773 82.716 263.363 82.716 262.950 c 82.716 262.538 82.885 262.128 83.177 261.837 c 83.469 261.545 83.878 261.375 84.291 261.375 c 84.703 261.375 85.113 261.545 85.404 261.837 c 85.696 262.128 85.866 262.538 85.866 262.950 c f BT 91.016 260.134 Td /F1 9.0 Tf [(Improves Creativity: )] TJ ET BT 180.044 260.134 Td /F4 9.0 Tf [(Digital literacy can also foster creativity in employees by providing access to various digital )] TJ ET BT 91.016 249.145 Td /F4 9.0 Tf [(tools that can unleash their creative potential and produce high-quality content.)] TJ ET 85.866 240.972 m 85.866 241.385 85.696 241.795 85.404 242.086 c 85.113 242.378 84.703 242.547 84.291 242.547 c 83.878 242.547 83.469 242.378 83.177 242.086 c 82.885 241.795 82.716 241.385 82.716 240.972 c 82.716 240.560 82.885 240.150 83.177 239.859 c 83.469 239.567 83.878 239.397 84.291 239.397 c 84.703 239.397 85.113 239.567 85.404 239.859 c 85.696 240.150 85.866 240.560 85.866 240.972 c f BT 91.016 238.156 Td /F1 9.0 Tf [(Better Time Management: )] TJ ET BT 203.534 238.156 Td /F4 9.0 Tf [(Digital literacy can help employees manage their time more effectively.)] TJ ET 85.866 229.983 m 85.866 230.396 85.696 230.806 85.404 231.097 c 85.113 231.389 84.703 231.558 84.291 231.558 c 83.878 231.558 83.469 231.389 83.177 231.097 c 82.885 230.806 82.716 230.396 82.716 229.983 c 82.716 229.571 82.885 229.161 83.177 228.870 c 83.469 228.578 83.878 228.408 84.291 228.408 c 84.703 228.408 85.113 228.578 85.404 228.870 c 85.696 229.161 85.866 229.571 85.866 229.983 c f BT 91.016 227.167 Td /F1 9.0 Tf [(Online Security: )] TJ ET BT 162.539 227.167 Td /F4 9.0 Tf [(Digital literacy skills help individuals understand the importance of securing their online )] TJ ET BT 91.016 216.178 Td /F4 9.0 Tf [(information and the potential risks of cyber-attacks.)] TJ ET 85.866 208.005 m 85.866 208.418 85.696 208.828 85.404 209.119 c 85.113 209.411 84.703 209.580 84.291 209.580 c 83.878 209.580 83.469 209.411 83.177 209.119 c 82.885 208.828 82.716 208.418 82.716 208.005 c 82.716 207.593 82.885 207.183 83.177 206.892 c 83.469 206.600 83.878 206.430 84.291 206.430 c 84.703 206.430 85.113 206.600 85.404 206.892 c 85.696 207.183 85.866 207.593 85.866 208.005 c f BT 91.016 205.189 Td /F1 9.0 Tf [(Artificial Intelligence \(AI\): )] TJ ET BT 202.040 205.189 Td /F4 9.0 Tf [(Digital literacy skills are crucial for leveraging AI’s benefits.)] TJ ET 85.866 197.016 m 85.866 197.429 85.696 197.839 85.404 198.130 c 85.113 198.422 84.703 198.591 84.291 198.591 c 83.878 198.591 83.469 198.422 83.177 198.130 c 82.885 197.839 82.716 197.429 82.716 197.016 c 82.716 196.604 82.885 196.194 83.177 195.903 c 83.469 195.611 83.878 195.441 84.291 195.441 c 84.703 195.441 85.113 195.611 85.404 195.903 c 85.696 196.194 85.866 196.604 85.866 197.016 c f BT 91.016 194.200 Td /F1 9.0 Tf [(Big Data: )] TJ ET BT 133.019 194.200 Td /F4 9.0 Tf [(Digital literacy skills have become essential for individuals to interpret and analyse vast amounts of data )] TJ ET BT 91.016 183.211 Td /F4 9.0 Tf [(effectively.)] TJ ET 85.866 175.038 m 85.866 175.451 85.696 175.861 85.404 176.152 c 85.113 176.444 84.703 176.613 84.291 176.613 c 83.878 176.613 83.469 176.444 83.177 176.152 c 82.885 175.861 82.716 175.451 82.716 175.038 c 82.716 174.626 82.885 174.216 83.177 173.925 c 83.469 173.633 83.878 173.463 84.291 173.463 c 84.703 173.463 85.113 173.633 85.404 173.925 c 85.696 174.216 85.866 174.626 85.866 175.038 c f BT 91.016 172.222 Td /F1 9.0 Tf [(Social Media: )] TJ ET BT 151.037 172.222 Td /F4 9.0 Tf [(Digital literacy skills are essential for using social media safely and responsibly. It enables )] TJ ET BT 91.016 161.233 Td /F4 9.0 Tf [(individuals to identify potential risks associated with social media.)] TJ ET BT 61.016 141.244 Td /F1 9.0 Tf [(Start your digital literacy pathway)] TJ ET BT 61.016 121.255 Td /F4 9.0 Tf [(With the )] TJ ET 0.373 0.169 0.255 rg BT 96.530 121.255 Td /F4 9.0 Tf [(Microsoft Digital Literacy)] TJ ET 0.373 0.169 0.255 RG 0.18 w 0 J [ ] 0 d 96.530 120.104 m 194.549 120.104 l S 0.153 0.153 0.153 rg BT 194.549 121.255 Td /F4 9.0 Tf [( classes, you can gain skills needed to effectively explore the internet. )] TJ ET BT 61.016 101.266 Td /F1 9.0 Tf [(Sources:)] TJ ET endstream endobj 8 0 obj << /Type /Font /Subtype /Type1 /Name /F1 /BaseFont /Helvetica-Bold /Encoding /WinAnsiEncoding >> endobj 9 0 obj << /Type /Font /Subtype /Type1 /Name /F2 /BaseFont /Helvetica-Oblique /Encoding /WinAnsiEncoding >> endobj 10 0 obj << /Type /Font /Subtype /Type1 /Name /F3 /BaseFont /Helvetica-BoldOblique /Encoding /WinAnsiEncoding >> endobj 11 0 obj << /Type /Font /Subtype /Type1 /Name /F4 /BaseFont /Helvetica /Encoding /WinAnsiEncoding >> endobj 12 0 obj << /Type /Annot /Subtype /Link /A 13 0 R /Border [0 0 0] /H /I /Rect [ 96.5297 120.4228 194.5487 129.5803 ] >> endobj 13 0 obj << /Type /Action /S /URI /URI (https://www.microsoft.com/en-us/digital-literacy) >> endobj 14 0 obj << /Type /Page /Parent 3 0 R /Annots [ 16 0 R ] /Contents 15 0 R >> endobj 15 0 obj << /Length 1050 >> stream 0.153 0.153 0.153 rg 0.373 0.169 0.255 RG 0.18 w 0 J [ ] 0 d 0.702 0.800 0.816 rg 34.016 34.016 543.969 723.969 re f 1.000 1.000 1.000 rg 45.266 611.800 521.469 146.184 re f 0.773 0.773 0.773 rg 0.773 0.773 0.773 RG 45.266 611.800 m 566.734 611.800 l 565.984 612.550 l 46.016 612.550 l f 566.734 757.984 m 566.734 611.800 l 565.984 612.550 l 565.984 757.984 l f 45.266 757.984 m 45.266 611.800 l 46.016 612.550 l 46.016 757.984 l f 61.016 627.550 m 550.984 627.550 l 550.984 628.300 l 61.016 628.300 l f 0.153 0.153 0.153 rg BT 61.016 740.193 Td /F2 9.0 Tf [(YOTTABYTE)] TJ ET BT 61.016 720.204 Td /F2 9.0 Tf [(LinkedIn)] TJ ET BT 61.016 700.215 Td /F2 9.0 Tf [(Microsoft)] TJ ET BT 61.016 680.226 Td /F2 9.0 Tf [(Futurelab)] TJ ET 0.373 0.169 0.255 rg BT 61.016 660.237 Td /F4 9.0 Tf [(SU IT Digital Literacy in a nutshell)] TJ ET 0.373 0.169 0.255 RG 0.18 w 0 J [ ] 0 d 61.016 659.086 m 196.061 659.086 l S 0.400 0.400 0.400 rg BT 61.016 641.748 Td /F2 9.0 Tf [(Posted in:General,News,Security,Tips,Training | | With 0 comments)] TJ ET endstream endobj 16 0 obj << /Type /Annot /Subtype /Link /A 17 0 R /Border [0 0 0] /H /I /Rect [ 61.0157 659.4046 196.0607 668.5621 ] >> endobj 17 0 obj << /Type /Action /S /URI /URI (https://blogs.sun.ac.za/it/files/2023/06/SU-IT-Digital-Literacy.pdf) >> endobj xref 0 18 0000000000 65535 f 0000000008 00000 n 0000000073 00000 n 0000000119 00000 n 0000000312 00000 n 0000000341 00000 n 0000000479 00000 n 0000000561 00000 n 0000010678 00000 n 0000010790 00000 n 0000010905 00000 n 0000011025 00000 n 0000011133 00000 n 0000011260 00000 n 0000011360 00000 n 0000011444 00000 n 0000012547 00000 n 0000012674 00000 n trailer << /Size 18 /Root 1 0 R /Info 5 0 R >> startxref 12793 %%EOF General « Informasietegnologie
Language:
SEARCH

  • Recent Posts

  • Categories

  • Archives

General

« Older Entries
Newer Entries »

Getting to know SUNLearn

Wednesday, February 22nd, 2023

The first few weeks of being a first-year student at Stellenbosch University (SU) can be overwhelming. Getting to know how SUNLearn, the university’s electronic learning management system works – and familiarising yourself with the terminology that goes with it, can be daunting. We want to encourage you to stay calm and to reassure you that help and support are at hand!

SUNLearn has been in operation since 2014 and, through the years, it has been improved to make it increasingly accessible and user friendly for both staff and students to navigate. On top of that, the SUNLearn learning technology support team is in place to help students with all their queries.

In this article, we asked the people responsible for SUNLearn to take students on a welcome journey to understand the system so that they are able to use it and are better prepared for their academic year. We picked the brains of Dr Lianne Keiller – Manager: Learning Technology Systems and Morris Samuels – E-Learning Technical Officer at SU to answer some of the most frequently asked questions related to onboarding.

According to Dr Keiller and Mr Samuels, an important thing students need to note is that only students who have completed their registration process will have access to SUNLearn.

“We have found that sometimes students forget to complete their registrations at the beginning of the year; and then they start classes and realise they cannot get into SUNLearn and cannot access their content or their modules. So you have to be registered first before you will have access to SUNLEearn,” Dr Keiller said.

Below are some of the more common questions asked by first-year students at Stellenbosch University.

What, in a nutshell, is SUNLearn?

LIANNE KEILLER: SUNLearn is the name of the learning management system we use at Stellenbosch University. A learning management system (LMS) is an online space where a student can manage their learning and their interactions with their lecturers and with each other.

SUNLearn is where lecturers will upload all the content for a lecture, or they might even conduct a lecture on SUNLearn if they are doing it virtually. SUNLearn also allows the creation of spaces where students can talk to each other on discussion boards and can send private messages within the LMS. If a student is registered for a module, there is a SUNLearn space for it and the lecturer is the one who decides how to put things onto the module.

A number of lecturers make use of the SUNLearn system for tests or exams for the students to do online.

From an IT perspective, the SUNLearn system is supported by a small team which is dedicated to making sure that the student and lecturers’ experiences are as simple and easy as possible.

What is your message to students who are feeling overwhelmed at the thought of using the SUNLearn system?

MORRIS SAMUELS: Students should not be overwhelmed. Using SUNLearn is as easy as accessing any web page on the internet.

How do students access SUNLearn?

MORRIS SAMUELS: SUNLearn can be accessed via any web browser on a computer, mobile phone or tablet. In the address bar of the browser, type in learn.sun.ac.za and press ‘ENTER’. On the SUNLearn homepage, click on the ‘Log in’ link that is located in the top righthand corner to navigate to the ‘Single Sign-on login page where you will need to enter your username (student number) and the password set for it.

Alternatively, you can also access SUNLearn via the MY.SUN entry page by typing in my.sun.ac.za in the address bar of the browser. When the page opens you will be prompted to enter your network login credentials. Once you are logged in, locate the shortcut link for SUNLearn and click on it to open the SUNLearn Dashboard page where you should see all your registered modules. Most students access SUNLearn and other university systems via the MY.SUN entry page.

What should students do if they need support in using SUNLearn, or if they encounter problems?

MORRIS SAMUELS: The important thing for students to understand is that the IT help desk is there for general IT information and support, but, in terms of SUNLearn, there is a dedicated support team which falls under my leadership.

The SUNLearn learning technology support team deals with any queries related to SUNLearn. For example, if a student finds that a registered module is not listed on their course overview page or if, for some reason, they cannot access a module on SUNLearn, then the SUNLearn learning technology team is your port of call to report that.

How do students access the SUNLearn learning technology team to get help with a problem?

MORRIS SAMUELS: The correct way to get support is to log a ticket on the SUNLearn service desk. This should by using the portal at www.learnhelp.sun.ac.za. Alternatively, you can call the support desk on 021 808 2222.

If, for some reason, students struggle to log a ticket via the learnhelp.sun.ac.za portal, they can also send an email to learn@sun.ac.za to automatically log a ticket on our service desk.

What do students do if they’ve logged into SUNLearn but there is no content in the module or there are no notes or any activities in the module?

MORRIS SAMUELS: Lecturers are responsible for uploading the content and for the visibility of content in their modules on SUNLearn. Students with this problem should first contact the lecturer directly about uploading notes if there is nothing there and they expected to see something.

What does a student do if they are unable to log into SUNLearn; in other words, they are registered but unable to log in to SUNLearn.

MORRIS SAMUELS: If this happens, there may be a problem with your password or it needs to be updated on www.sun.ac.za/password.

On which of my devices can I access SUNLearn?

MORRIS SAMUELS: You can access SUNLearn on any device – your mobile device, your laptop or your tablet. There is also an app for the learning management system you can download from the Apple app store or Google Play store. SUNLearn is zero-rated. This means that it doesn’t use any of your mobile data to access the Moodle app (the system SUNLearn is built on) or the LMS via your mobile browser.

In a final word of advice to students, Mr Samuels had this to say: “First-year students, don’t call your mother, call us! We’ve had a few phone calls from mothers or fathers on behalf of students, who are sitting in class, struggling with SUNLearn. Don’t ask your parents to call us – rather call us yourselves. Our support services are easy to use and we are here to help.”

The online learning support page contains the full range of tips on logging in, loading print credits and other tips.

Also on the technology onboarding page, students can find information on how to connect to wifi on campus. Here is the direct link to that information: https://tech.sun.ac.za/faq/#step-11-apps-to-download. It is located under the frequently asked questions (FAQ) section on that page.

Email

Posted in General, Students, sunlearn | Comments Off on Getting to know SUNLearn

Tidy up your tech before you leave

Thursday, December 15th, 2022

We are all looking forward to escaping for a well-deserved break over the December holiday season. But before you leave, there are a few things you can do now to ensure that your return is seamless.

Here are a few tips: 

  1. Activate your Out of Office function on your sun.ac.za Outlook mailbox and indicate in the message when you will be available again in case someone needs to contact you. Also, indicate who will be responsible during your time away and add their email address to your Out of Office.
  2. Make sure that your relevant work-related data is accessible for usage by your colleagues while you are away. However, do NOT give your password to colleagues when as this poses a security risk.
  3. If your sun password might expire during your holiday, rather change it before you go. If it expires while you are away you will be locked out of your account and it will cause unnecessary stress to deactivate it in January. 
  4. If you receive a phishing email on your sun account over the holiday and clicked on links or typed in your username and password, your account may be compromised. Immediately change your password at www.sun.ac.za/password and log a service request on the ICT Partner Portal. Your device will then be checked and scanned after the holiday. Remember that you can also report spam directly to Microsoft by using the handy Report Message function in Outlook.
  5. IT will be on skeleton staff between 15 December – 15 January 2023, even by saying that we will continue to deliver our services without any delays or disruption. Please log all requests on the Service Desk Portal.
Email

Posted in General | Comments Off on Tidy up your tech before you leave

SU takes great leap forward into cloud era

Monday, October 24th, 2022

hand touching visual screen with icons floating above it

Stellenbosch University is currently in the process of taking a “great leap forward” into the “cloud” era, which will see the new finance and student systems, SUNFin and SUNStudent, operating in the cloud.

This is not only going to make all the difference to security against cyber threats but will also make the university’s systems more efficient and accessible, in a number of ways, for students and staff. The move into the cloud, which is the culmination of years of work, will take SU into an entirely different risk profile, said Marc-Allen Johnson, acting director IT Institutional Software Systems at SU.

“This is a big step in the right direction, as the threat of cyber fraud at universities is growing all the time, all over the world,” Mr Johnson said in an interview. To date, most of the university’s administrative systems have been housed on premises, in a data centre on campus. “But now they will be housed in the cloud, running in data centres in Johannesburg and Cape Town, and according to the latest standards in technology, to ensure that the personal information of both students and staff remains secure,” Mr Johnson said.

“At the same time, once fully operational, it will be possible to access the systems from anywhere without having to be affected by loadshedding or interrupted internet connectivity on the Stellenbosch campus. So, we are providing a much-improved service, while ensuring a secure system.”

Elaborating on the two new systems, SUNFin and SUNStudent, Mr Johnson said SUNFin refers to the university’s new financial system. “It is an Enterprise Resource Planning (ERP) system that SU will use to manage day-to-day business activities of the Finance capability within the organisation. It manages all the key financial requirements that a university has to fulfil to ensure that the books balance, that people get paid and that we manage our finances well. The implementation of the SUNFin project has been under way for the last two to three years.”

“SUNStudent refers to the new system that supports the Student Administration capability and all the related student services. The SUNStudent system will usher in a modern, integrated and cloud-based solution that will allow key university capabilities like Registration, Bursary Awards, Assessment and Degree Audits to be supported in a secure way. Although the staff and students have always had access to self-service functionality, the modernised interface provides it all levels. The new Application and Admission process went live in 2021 and facilitated a significant jump in the number of applicants and demographic.”

Mr Johnson said the university is planning to be fully operational with both systems by the end of next year. The application and admissions functionality of SUNStudent have already been live for two years.

He said that, for the IT team at the university, the new moves address “quite a few risks”. “We have legacy administrative systems of between 20 and 30 years old at the university. Through the years, the demands on these systems have been continuously growing and the world continues to throw security challenges our way. We’ve responded by making changes ourselves, but the technical debt has grown untenable over the years. Coupled with a technology that the industry is not actively pursuing anymore and people who have been part of building these systems retiring, it was necessary to make a leap.

“So, it is a great relief for me to see us moving into a new era where we are implementing software solutions that will last another 30 years. It is also exciting to know that, from now on, our system will be continuously improving and remain up to date.”

Part of the improved efficiency, he said, was the fact that the IT Division will work in close partnership with vendors like Oracle and Serosoft “to ensure that we have security by design”.

“We also know that we are not their only client, which means that we benefit from the collective. For instance, if they implement enhanced security measures, or conduct vulnerability tests for one client, they implement it for all of us. That is one of the benefits of going to the cloud –the vendor takes responsibility to keep the system up to date and secure according to a contract.”

Mr Johnson said that in the past many institutions bought software “off the shelves from a vendor” and then tried to maintain their systems themselves.

“But then they fall behind the latest versions and patches which opens them up to security risks. By moving to the cloud, Stellenbosch University will receive regular updates and be assisted regularly, and we will not fall behind as new functionalities are released.”

Mr Johnson said that the mechanisms implemented by the new systems will be a great deterrent to the ever-present cybersecurity threats.

“I recall a quote, often attributed to Thomas Jefferson, – “The price of freedom is eternal vigilance” – and it really rings true. With these new systems, we have invested in a solution that will continuously be kept up to date. Yes, along with the vendors, our team will have to be continuously vigilant, but it means newly discovered vulnerabilities will be quickly patched by our partners. We are contractually partnered with our vendors to provide that level of surety.”

Mr Johnson said once the system is up and running, “we will all sleep easier”.

“As the research shows, one of the most difficult IT challenges at any institution is to implement a new system. It involves a lot of change and the switchover from the one system to the other is a risk that can be easily exploited by people wanting to do harm.

“For instance, if cyber criminals know that a new system is being implemented, they could send out an email to a student or staff member and invite them to click on a link to be “onboarded” on the new system – potentially leading to compromised credentials. During this period of transition, we have to promote a heightened awareness and ensure we educate all students and staff about the risks. Our teams monitor and respond to phishing attacks like these that target our users. One of the measures that counter the reach of these attacks is to implement multi-factor authentication. For instance, when you log into the system, you receive a prompt to either supply a one-time PIN or approve the log in using a mobile app. For many staff and students, it feels like a burden, but that simple act is an important deterrent, because if someone gets hold of your username and password it makes it much harder to get past that hurdle.

“We can try to put in place as many security measures as we can, but if the attacker manages to use phishing techniques to trick a student or staff member to disclose their username or password, it could give the attacker access to sensitive information. This is a critical threat to administrative systems and something we are obviously concerned about, hence measures like Multi-factor Authentication.”

Mr Johnson continued: “SUNFin and SUNStudent will not only provide better functionality, to enable us to become a more modern and efficient university, but they will also make us more resilient to cyber-attacks. However, we really need everyone’s help to be vigilant by educating oneself and being on the lookout for suspicious messages. All students and staff are encouraged to reach out to us if they have any doubts or queries about suspicious emails or notifications they receive. Our IT support desks and relationship managers are there to assist, especially during this transition period to final implementation of SUNFin and SUNStudent.”

Email

Posted in General, News | Comments Off on SU takes great leap forward into cloud era

Risks of cybersecurity have become massive in higher education sector globally

Monday, October 24th, 2022

hacker phishing scam

Universities around the world are facing ever increasing cybersecurity risks, particularly in the post-pandemic world – and Stellenbosch University is not immune to these threats. Even before Covid-19 struck, higher education institutions were already gathering vast amounts of data from students and staff – and now, with more hybrid and remote offerings, requiring even more information, the risks of cybersecurity have become massive.

The risks for these data rich institutions are wide ranging and include ransomware attacks, business email compromises, data and privacy breaches, as well as adversary-in-the-middle attacks, said Brian Mhembere, the Cybersecurity and Technology Risk Specialist in the ICT division at Stellenbosch University.

Brian, who has a background in IT in the banking, mining, health and financial services sectors, has seen and heard it all when it comes to cybercrimes. With his finger on the pulse of global cyber trends, and with first-hand experience of the havoc that cyber fraud can create, he has, in the past, been asked to share his expertise in interviews on television and on radio. He was even interviewed on the 8pm news on ETV ahead of Black Friday, where he warned South Africans of all that can go wrong when shopping online.

Now, as a key cyber “sleuth” at Stellenbosch University, he’s determined to ensure that the valuable student and research data stay safe.

“There have been a lot of data breaches in higher education institutions mainly through phishing attacks – attacks aimed at compromising personal identifiable data or to reveal personal sensitive information like credit card numbers, bank information or passwords,” he said in an interview.

Brian explained that ransomware attacks take place when a cybercriminal threatens to use technology to either publish or permanently block a victim’s personal data unless a ransom is paid. A data breach is a security violation, in which sensitive, protected or confidential data is copied, transmitted, viewed, stolen or used by an individual unauthorized to do so.

An adversary-in-the-middle attack is when an adversary intercepts communication channels between two components, with the aim of either altering the message or data, or compromising the integrity of the data a person is trying to transmit, with the result that the message reaches the intended recipient with altered information or configuration.

Brian was responsible for the recent cybersecurity maturity assessment and report on cybersecurity at the campus. The analysis was done using the ISO27001 standard and the National Information Security Technology (NIST) cyber-security framework, which uses a Capability Model Maturity (CMM) tool to analyse where the weaknesses lie in the whole IT environment. The CMM tool guides the analysis of the entire IT environment with controls mapping and scoring exposing gaps, in accordance with the ISO/IEC27001 standards.

“The report did not find anything out of trend with most universities around the world,” Brian said. “Our university falls in line with the current state of cybersecurity maturity of most other South African universities. There is still some work to be done to improve the cybersecurity of all these institutions. Our maturity is very low compared to universities in the UK and America, but better than that in some other countries in Africa.”

He said the audit was conducted during April and May 2022 and the report has not yet been published or made public.

“Even if we knew the findings, we would not make them public, because anyone who reads this article would know what our weaknesses are,” he said. “Even if SU had ever had an attack, we would not speak about it in the public domain. There have been attempts but we are able to monitor and protect most attacks.”

Brian said the issue of cybersecurity at the university keeps him on his toes, but this is nothing new. “When I was working as head of IT in one of the major private hospital groups, we had an incident with ransomware called Wanacry. One of our managers’ PC was encrypted by the hackers as she clicked on an attachment sent by email which contained some malicious code. Luckily, my office was right next to hers. I was able to run through and I saw her computer countdown times which said they were encrypting all her data on the computer unless she sent an amount in Bitcoin.

“We managed to quickly isolate her workstation and to disconnect it from the Internet, but it was too late to avoid the encryption on that workstation. However, we managed to prevent it from propagating through the network. We lost all the data on her machine, but because we had a good business continuity plan, we restored the data on her machine from our backups.”

In a humble deflection of his own vital role, Brian said: “This colleague saved the day. She followed all the awareness products we were pushing which is a major thing, as users are first and last in the line of defence. I have always placed a huge emphasis on user awareness and on campaigns to create what we call the the human firewall against cyber fraud.”

Brian, who grew up in Harare, Zimbabwe, has always been intrigued with information systems. He completed a Bachelor of Science, Honours degree in Information Systems, Diplomas in Telecoms Engineering, and Networking whilst working in various sectors. He is a Certified Information Security Manager from Information Systems Audit and Control Association (ISACA) and has since completed a range of other cybersecurity certifications and, in 2018, completed a Masters in Information Systems from the University of Cape Town.

“This is really very interesting work, as well as being very important,” he said. “In the age of digital transformation, everything is moving online and onto the cloud. It’s exciting to be part of this huge transformation and to educate users on best practices.

“Of course it keeps me up at night,” he said, of his role at Stellenbosch University. “But thankfully, our current chief director of IT has prioritised cybersecurity at the campus. We both recognise how important it has become in today’s world, especially for universities relying on remote working which was necessitated by the pandemic.”

He said the IT division is assessing the findings of the university’s audit into cybersecurity and is now working on implementing the recommendations from the report so as to strengthen their security and control in the digital sphere.

Brian said he tries to keep up to speed on cybercrimes, locally and internationally. “Recently, Uber was hacked. There were data breaches, and the matter is still under investigation. Each incident teaches us lessons. We learn how they were compromised, what their vulnerabilities were – and we compare this with ourselves. We ask ourselves, ‘if this happened to us would we be able to defend ourselves?”

He also cited numerous recent articles on the subject of cybersecurity, particularly in higher education. Part of his job, he said, is to keep up to speed on all developments in cyber fraud, which involves reading research, articles and journals on the subject. During the interview, he gave figures and case studies from various studies, including the Bank of America, Checkpoint, Sophos and Verizon.

“For example, the IT security company, Sophos recently published its report, The State of Ransomware in Education 2022 in which they gave insights into the ‘ever more challenging attack environment’ in which the education sector finds itself,” he said.

“Key findings are that ransomware attacks on education have increased – 64 percent in higher education were hit in 2021. Education is the sector least able to stop data being encrypted in an attack – higher education reported the highest data encryption rate of all sectors at 74%.

“The study also found that … education has below average cyber insurance coverage rates – only 78% of education organisations have cyber insurance coverage against ransomware compared with the global average of 83%. Many education organisations are choosing to reduce the financial risk associated with such attacks by taking cyber insurance.”

Cybersecurity should be a priority project for SU, Brian said. “So much could go wrong when a university is targeted. For example, when data breaches happen with student admissions and other personal data, a university can be fined by the regulator in terms of the POPI act. If our systems are compromised, the university could be forced to pay a breach fine of up to R10 million – or ten years in jail.

“We need to be always searching for the gaps. Hackers work 24/7 and always come up with new ways to compromise and breach systems for corporate espionage, financial gain, or national security espionage. We have to keep abreast with what’s happening in the world as it filters back to us.

“I’m so glad that SU’s senior management has bought into the importance of cybersecurity. To have an organisation with a chief director of IT who gives her full support – from budgetary support to moral support – on the importance of cybersecurity is hugely valuable.”

Image credit: Thomaguery; Getty

 

 

 

 

 

 

Email

Posted in General, News, Security | Comments Off on Risks of cybersecurity have become massive in higher education sector globally

Habits to adopt to ensure safety against cyber-attacks

Monday, October 24th, 2022

Cybersecurity on laptop screen while looking over shoulder

A student is innocently going through her emails. She sees one from a person she’s never heard of. There are spelling mistakes, but she ignores them and clicks on an attachment in the email. Suddenly her PC locks down and she can’t access her files. A message comes up and tells her she has to pay money to get her PC unlocked. Her data is kept ransom.

A use case from another university is a payroll supervisor logging into a public network at a hotel to check his emails and finalise the payroll. Later that evening he checked his email only to discover replies and emails from individuals he didn’t contact. His credentials have comprised and when he tried logging in again, he could not, staff salaries, personal information about staff all in the hands of a criminal. He was the victim of key locking.

These are real life examples of what can go wrong when a university is subjected to a cyber-attack. According to Dr Zenobia Davidse, IT Director General Support Services at SU, research shows that there has been an increase of 485% in ransomware threat level (Consumer Threat Landscape Report) and cyber-attacks are the fastest growing crime.

“These are picked up by the advance threat protection that is in place to detect them, and, thanks to efficient systems in place, they are averted, but it is still critical for all students and staff to play their part in ensuring the university’s safety against cyber-attacks,” Dr Davidse said in an interview.

“There are practical habits which everybody on campus can adopt to ensure safety against cyber-attacks,” she added.

In her position as IT director, Dr Davidse is in charge of “providing a set of services to assist, coordinate and support IT activities across the broader ICT function of the university”. Part of the task is supporting strategic initiatives across the campus.

A key task in her portfolio is the communication across campus about IT developments and threats.

Dr Davidse said there are a number of things which staff and students do which can put the university at serious risk – and these are often inadvertent actions. “Leaving your student card lying around is an invitation to gain access to SU buildings; failing to protect the password for your computer is also a big mistake; responding to a suspicious email, SMS or whatsapp is a no go – and even downloading a recording of a Teams meeting sharing the file with someone who should not have access to the information, can be serious repercussions for the university,” she said.

“Cyber criminals are constantly on the prowl for student information, data that they can exploit, systems they can keep at ransom – and they have very clever ways of getting it.”

Dr Davidse said there are a few things students should know when using the systems on campus. “It is important to be cautious when they log into the university’s various systems. Our correspondence to students would not be a request to fill in their username and password. So, if you receive any email, SMS or whatsapp from someone saying they are a representative of the university, and they need your password from you, you should not respond.”

Elaborating, she said: “A student’s access card is like a bank card because it enables access to different buildings, it contains printing credits, washing quotas, meal subsidies, etc, so if you leave it lying around, you can enable criminals to get access to places where your card has been provisioned for or deplete the credit.

“Another no no is to type your password out and paste it against your screen; or to share your password with someone else. Another action which is potentially dangerous is when staff create a shared folder and give people access without understanding that there is confidential information in there which others are not allowed to see.”

Dr Davidse said the university has a system in place to inform students which emails come from inside the university and which come from outside. “People should not ignore the ‘external’ sign that pops up in an email. Sometimes, you get an email, and you don’t know the person who sent it, but, out of curiosity, you click the link, start filling in a form or something and it is only then that you think, ‘but, why would the university ask me these things?’ Often it’s too late.”

Asked for practical examples of how students and staff can help to cyber-secure the university, Dr Davidse said: “A practical example is to use very secure passwords. Use a combination of lower and upper case letters, as well as numerical and alpha numerical – and never use the same password across different platforms. Do not use your university email address for a social media platform.

“Phishing emails and installing malware are methods used to gain access, trick someone share the username and password.”

Asked how staff and students can report cybersecurity risks at SU, Dr Davidse said the university has two very effective mechanisms. “One is to report the risk to the email, csirt@sun.ac.za, which is an email we use specifically for cyber incidents for prioritisation by our team.

“We also have a reporting utility within our email client. If an email comes in, there is a reporting functionality, allowing you to ‘report this message’ which you can do.”

Dr Davidse, who finds her job both challenging and fascinating, loves what she does. “I started off studying engineering. The most fascinating thing about engineering is to see how software can bring an idea to life; you see the promises of technology coming to fruition and the beauty of how it can really make things better in the world. I love how the answer is never obvious. You must do quite a bit of work before you find the solution to an issue.”

The best part of the job – which also involves linking the latest technology to the realm of higher education – is that it is constantly changing. “You can be finished with implementing one technology and the next piece comes out making it more advanced and innovative, so it’s never boring.”

Her last word, on cybersecurity, to students and staff, is: “People are trying to hack into systems all the time. It is up to all of us to protect our institution from this by putting simple measures in place and being constantly vigilant.”

Image credit: Guvendemir; Getty

Email

Posted in General, News, Security | Comments Off on Habits to adopt to ensure safety against cyber-attacks

« Older Entries
Newer Entries »
 

© 2013-2025 Disclaimer: The views and opinions expressed in this page are strictly those of the page author(s) and content contributor(s). The contents of this page have not been reviewed or approved by Stellenbosch University.