Security alerts
Use this page to stay up-to-date with UM information security alerts, important announcements and reminders. Additional resources regarding national information security threats are listed as well.
IST alerts, announcements and reminders
IST will regularly communicate important, and sometimes critical, information to you about information security.
-
Active exploitation
March 6, 2025
A newly discovered critical vulnerability in Kibana, identified as CVE-2025-25012, exposes organizations to the risk of arbitrary code execution through prototype pollution. -
Advisory: Vulnerability
March 6, 2025
A newly discovered critical vulnerability in Kibana, identified as CVE-2025-25012, exposes organizations to the risk of arbitrary code execution through prototype pollution. -
Zero Day vulnerabilities
October 16, 2024
Microsoft has released its October 2024 patch Tuesday updates, addressing 118 vulnerabilities including 5 zero-day vulnerabilities from which 2 are actively exploited. -
OpenClaw vulnerability notification
February 4, 2026
In late January 2026, security researchers at DepthFirst discovered a flaw in OpenClaw – formerly known as Moltbot and Clawdbot – only a few months after the platform’s rapid rise in popularity.
Canadian Centre for Cyber Security alerts and information
Learn more about national security threats, cyber security technical terms, and how patches affect security vulnerabilities.
Contact us
Call or chat
Monday to Friday, 8 a.m. to 8 p.m.
Call 204-474-8600 or use the 'Chat with us!' button for a faster response via text or call. To report a critical system outage after hours or on weekends and holidays, call 204-474-8600 and press 2.
IST Service Desk walk-in service
123 Fletcher Argue
University of Manitoba, Fort Garry
Hours: Monday to Friday, 8 a.m. to 6 p.m.
Join the queue: Fort Garry WaitWell
230 Neil John Maclean Library
University of Manitoba, Bannatyne
Hours: Monday to Friday, 8 a.m. to 4:30 p.m.
Join the queue: Bannatyne WaitWell