UC San Diego Campus Notice
OFFICE OF THE CHIEF INFORMATION SECURITY OFFICER,
UC SAN DIEGO
February 23, 2022
Geisel library at sunset
ALL ACADEMICS, STAFF, AND STUDENTS AT UC SAN DIEGO (Including UC San Diego Health)

URGENT SECURITY UPDATE: VPN Now Required to Use Remote Desktop Protocols (ADP/RDP/VNC) 

As most of you are aware, universities and health systems across the country are suffering from ransomware attacks at an unprecedented scale and level of sophistication. As part of UC San Diego’s continuous effort to protect our community from ransomware attacks, effective March 1, 2022, remote access to campus resources using the Remote Desktop Protocol (RDP), Apple Remote Desktop (ADP), and Virtual Network Computing (VNC) will now require connection to the campus VPN.

Required Action:

Start the campus VPN before attempting to use these remote desktop protocols to connect to a campus computer.
What are these remote desktop protocols?
ADP, RDP, and VNC are a technology that provides you with access to macOS, Windows, and Linux computers from another computer. It presents you with the graphical desktop of the remote computer in a window on your local computer, allowing you to work as if you were physically sitting at the remote computer.
Why will we now need to use the VPN to run remote desktops?
Evidence from within the UC has shown that up to 80% of ransomware attacks begin by the hackers taking advantage of weak, unsecured or outdated remote desktop services. Furthermore, while the campus VPN requires the use of two-step login, by default remote desktop clients do not. By requiring users to use the VPN prior to running a remote desktop, hackers from off campus will no longer be able to attack campus computers through remote desktop services.
I use remote desktops regularly, will this force me to reconfigure or change how I use it?
No. You will simply need to start the campus VPN before attempting to connect with ADP/RDP/VNC to any campus resource.

More Information and Support

More information on remote desktop access and how to securely access campus resources remotely can be found at blink.ucsd.edu/go/remotedesktop.
Please reach out to the ITS Service Desk for assistance or questions.
Web: support.ucsd.edu/its
Email: servicedesk@ucsd.edu
Phone: 858-246-4357

Michael Corn
Chief Information Security Officer
UC San Diego

University of California San Diego, 9500 Gilman Drive, La Jolla, CA, 92093