---

Department Updates

HUMAN RESOURCES

State of West Virginia Public Service Recognition Week (May 5-11, 2024) 

Since 1985, the United States has designated the first full week of May as Public Service Recognition Week (PSRW) to honor the men and women who serve our nation as federal, state, county, and local government employees. 

The State of West Virginia Public Service Recognition Week is a time to honor and thank WV public employees for their service, beginning with 20 years of service (and proceeding in increments of five years). For 2024, WVNET will have one employee reaching their years of service milestones for the State of West Virginia: 

Additionally, we are celebrating our wonderful employees’ service milestones (5 years +) at WVNET:  

 

Promotions

John Taylor to Telecommunications Network Specialist III

John’s promotion to Telecommunications Network Specialist III is a testament to his remarkable professional growth since joining WVNET in 2022.  John previously worked for the Federal Bureau of Prisons as an Electronics Technician and Atlantic Broadband LLC.  He holds an associate’s degree in Information Technology with a specialization in Routing and Switching, bolstered by a CCNA certification.  His technical proficiencies encompass telephone PBX, VOIP, fiber optic cabling, and Cisco routers and switches.  Prior to his civilian career, John served with distinction in the U.S. Marine Corps for four years as a Field Radio Operator, showcasing his dedication and commitment to honorable service.   

Business and Finance

The summer is packed full of major deadlines for the WVNET business office.  We have quite a few contracts up for renewal effective July 1 as well as preparing for the FY24 Financial Audit which takes place in late summer/early fall.  So please keep an eye out for emails from the business office regarding renewals specific to your organization, such as for your Microsoft licenses through Crayon, as well as emails requesting information from and/or providing information to you for the audit.      

So if you need to contact anyone in the WVNET Finance-Business Office, you may reach the appropriate party at the following: 

• Accounts Receivable – Libby Cress: lcress@staff.wvnet.edu or 304-225-0451 
• Accounts Payable – Buffy Vehse: evehse@staff.wvnet.edu or 304-225-0487 
• Manager of Business Operations and Procurement – Phil Snitz: psnitz@staff.wvnet.edu or 304-225-0483 
• Chief Financial Officer – Donna Meadowcroft: dmeadowcroft@staff.wvnet.edu or 304-225-0472 

Client Services

The West Virginia Statewide Technology Conference is slated to return in 2025. In order to provide the best conference experience possible, we are conducting a survey to assess how to best meet the needs of our attendees. Take the WVSTC 2025 Pre-Planning Survey 

Banner Support Team

How Are We Doing?

DEVELOPMENT TEAM

The Development Team continues to make progress on various projects and professional development certifications.  

TELECOM UPDATE

Systems Update

Using Yubikeys for Two-factor Authentication (2FA) 

Safeguarding your online assets in today’s digital world is crucial. Relying solely on passwords often isn’t sufficient anymore because hackers are becoming increasingly adept. That’s where Two-Factor Authentication (2FA) steps in to provide an additional layer of defense. Think of it as adding a secondary lock to your door for extra security. When it comes to implementing 2FA, YubiKeys stand out as a top-notch option. 

In short, a YubiKey is a small device that you can put on your keychain. It can be plugged into a computer or phone as an additional step to proving it’s really you logging into your accounts.  

YubiKeys help make your accounts super safe. They’re better than codes sent by text because tricky hackers can’t fool them. Every time you log in, you must use your connected YubiKey to prove that it is you. So, even if someone knows your password, they can’t get in without your YubiKey. 

After you connect a YubiKey to your accounts, you just plug it in or tap it on your phone when you want to log in. It’s way easier than typing long codes or dealing with juggling multiple tricky duo authentication apps. You can take them with you wherever you go without any hassle since they are built to be small and durable. 

A YubiKey can hold up to 25 secret passkeys on the device. These are unique and only on that specific YubiKey. 

YubiKeys are great because they’re compatible with a lot of websites and apps. Whether you’re checking your emails, logging into work accounts, or online shopping, YubiKeys add an extra layer of security. They can even be used with apps like Bitwarden, where you can store your important passwords securely. 

YubiKeys might require an initial purchase, but they’re definitely worth it in the long run. If someone managed to hack into your accounts and steal your information, fixing that mess could cost you a fortune. But with YubiKeys, you’re adding an extra layer of security that could save you from dealing with all that trouble and expense later on. 

In conclusion, think of YubiKeys as your personal bodyguards for keeping your accounts secure. They’re easy to use, super safe, and can be used with many different online services. By using YubiKeys, you’re ensuring that even if someone figures out your password, they won’t be able to access your accounts without your special key. It’s a smart move to protect yourself in today’s digital world. 

Pretexting is when the bad guys create a false scenario using a made-up identity or pose as someone you know. They can even pose as employees of bank or credit card companies to manipulate you into divulging personal or sensitive information. How it Works: Common Tactics of Influence The bad guys will try to persuade you into giving them sensitive information. Oftentimes, the information that they need is not specific to your organization. Below are examples of two common tactics used to influence victims in pretexting scenarios: Pretexting with Authority You receive a call at work from someone demanding immediate assistance. They are speaking in an aggressive and authoritative tone. This person establishes their authority by using an executive-level or official-sounding job title. They may even insult you for not being familiar with “who they are”. These scare tactics often persuade victims into giving away sensitive information or complying with the cybercriminal’s request. It’s human nature to act in a responsive manner around someone of authority, but don’t fall victim to false claims of authority!    Pretexting with Obligation You receive a call from someone posing as a member of your IT department. The bad guy tells you they’ve found malicious activity on your work computer and begin questioning your recent browsing history. The fake IT employee implies that you’ve accessed a malicious website and have put the company in danger as a result. They demand you update your password with a more “secure” password which they provide. Would you feel obligated to comply with their instructions? Many unsuspecting people would, but don’t fall victim to a false sense of obligation! How Can I Avoid Falling Victim to Pretexting Scenarios? Use the tips below to help protect your organization against pretexting scenarios: Never give out sensitive information over the phone, online, or in email, unless you are absolutely sure you know who you’re dealing with, or you initiated contact with the individual. If the caller claims to be an employee but their request seems suspicious, verify their identity through a trusted party and let them know you’ll call them back. If the caller questions the need for your verification efforts, explain that you’re following the process required for sharing the type of information they are requesting. Maintain a respectful but forceful attitude. Make sure you’re familiar with your organization’s protocols for handling requests for information or ask your supervisor if you need assistance.

The KnowBe4 Security Team KnowBe4.com

Many organizations use platforms such as Microsoft Teams, Google Drive, or Zoom to stay connected. Unfortunately, these trusted communication tools can lead to a false sense of security. Just like with traditional email, bad guys can use these platforms to launch a cyber attack. Below are three examples of how cybercriminals use these platforms for phishing—and what you can do to keep your organization safe Lurking Recently, a cybercriminal gained access to an organization’s Microsoft Teams channel, which is similar to a group message or a chat room. The scammer lurked in the channel for nearly a year, reading messages, collecting data, and waiting for the perfect time to strike. Finally, someone asked that a file be shared to the channel and the bad guy used this opportunity to send a malicious ZIP file. When opened, the file installed malware that gave the scammer full access to the victim’s computer. Remember: If someone sends you a link or an attachment, verify that you know and trust the sender before you click. Playing Tag On Google Drive, anyone can be tagged in a file, so long as their Gmail address is valid. This means that if a bad guy tags you in a Google document, you will receive a legitimate notification from Google that includes a link to the bad guy’s file. If you view the bad guy’s file, you’ll likely find that it tells you to click another link. This second link is actually a malicious attempt to steal your sensitive information. Remember: If you receive a suspicious notification, contact your IT department or follow the specific security procedure for your organization. Phony Notifications Attending meetings on Zoom is as simple as clicking a button within an email. Unfortunately, getting phished is just as easy. Cybercriminals send out fake Zoom notifications that claim you missed an important meeting. They use a sense of urgency to get you to click on a link to view the meeting schedule. But don’t be fooled! The link actually sends you to a phony login page designed to steal your username and password. Remember: If an email asks you to log in to an account or online service, log in to your account through your browser—not by clicking the link in the email.

The KnowBe4 Security Team KnowBe4.com

For over 45 years, WVNET has strived to connect the people of West Virginia. For decades we’ve worked hard to stay at the forefront of bringing fast, reliable internet across the state. We take pride in managing the networks that link West Virginia’s schools, universities, agencies and non-profits.

In this winter newsletter, we’re excited to update you on new strides we’re making to expand connectivity in the Mountain State. We’ve outlined major infrastructure upgrades that will increase available bandwidth and accelerate speeds – critical advances to meet our state’s growing digital needs. As our Executive Director Steven White explained, “Our continuous network evolution showcases our enduring commitment to the students, educators, agencies and residents who rely on us.”

However, greater connectivity also brings greater vulnerability. We’re working hand-in-hand with state and national cybersecurity leaders to anticipate emerging threats and harden defenses. As threats like phishing and ransomware attacks grow in scale and sophistication globally, we urge our customers to join us in remaining vigilant. Please consider implementing protocols like DKIM and DMARC to secure email domains, conduct phishing awareness training, and require multifactor authentication. Together we can keep West Virginia safe.

We’re also excited to share the work our development team is doing to make our online systems more accessible across generations. As more services and learning shift digital, we aim to ensure all Mountaineers can stay connected.

The past four decades have seen immense technological change. But our mission remains the same – serving the people of West Virginia through technology. We at WVNET take pride in the pivotal role we play in empowering education, powering government, and connecting communities across the Mountain State.

JOIN OUR TEAM!

WVNET is seeking to hire a new TELECOMMUNICATIONS NETWORK SPECIALIST 3 (on-site work required, hybrid eligible) to analyze, design, configure, install, deploy and troubleshoot LAN, WAN, Campus networks (mainly Cisco routers, switches, firewalls), associated wireless infrastructure (Extreme, Meraki), VOIP solutions (CUCM, SIP trunks, UCaaS), System Monitoring (SolarWinds NPM) and remote access (VPN ASA, AAA, TACACS, RADIUS), cloud (OCI, Azure, AWS) and associated ongoing maintenance and updating of related hardware and software.  Salary range is $70,000 – $80,000 and commensurate with experience. For full job details, qualifications, etc. and to apply, visit: https://wvnet.edu/news/careers/telecommunications-network-specialist-3/  

---

Schedule of Rates

Effective July 2023, WVNET has a new schedule of rates.
Visit https://wvnet.edu/resources/schedule-of-rates/ to find out more.

---

Department Updates

Client Services

How Are We Doing?

The Client Services department at WVNET is here to help you with Banner, DegreeWorks, Brightspace, Web and Development services. Our dedicated staff is here to answer questions, as well as to solve problems. We strive to provide a high level of service. To ensure we are doing our best, we have a survey available to enable you to share your experience with us and let us know what we are doing well and what we could be doing better.

Brightspace Creator+

As the new year gets under way, the Distance Learning team is launching a new tool in Brightspace called Creator +. This tool is a seamless add-in to the Brightspace Learning Management System (LMS). As many of our Brightspace schools prepare for this implementation, we are excited for the opportunity to work with our customers to transform course content into dynamic content that will boost student engagement. Between now and June 30th, we will be holding working sessions for faculty to learn to use the new tools included in Creator +. For additional information, please contact Harmony Garletts at hgarletts@staff.wvnet.edu.   

DEVELOPMENT UPDATE

Serving Older Users: Why Web Accessibility Matters for Education and Government  

When providing online services and web-based learning, education and government institutions must ensure they don’t exclude older adults. Age-related declines in vision, hearing, dexterity, and cognition can pose barriers to accessing digital content, and the 65+ demographic continues to grow rapidly as people live longer.  

Following web accessibility standards proactively makes websites, applications, and authoring tools usable for more people.   

It is vital for public services like healthcare, taxes, and social welfare, to consider these segments of the population in digital systems design. All taxpayers should be able to utilize government resources online regardless of ability or age.  

Similarly, education strives for inclusion. Distance learning continues to expand and offer greater opportunities throughout the state; however, ensuring learning management systems and online content follow accessibility principles enables older students to participate fully. Designing accessible websites and authoring tools allows older guest lecturers, teachers, and professors to contribute their expertise and remain professionally active.  

Age diversity strengthens industries and communities. Following web accessibility guidelines helps education and government sectors live up to commitments to serve all citizens, making communities richer. Prioritizing accessibility for older users isn’t just considerate – it’s sound policy and practice.  

Here are some helpful tips tailored for assisting age-related disabilities: 

Support Aging Vision  

• Allow font size customization up to 200% without loss of content or function  
• Use high contrast colors and avoid purely visual cues  
• Provide adequate color contrast (WCAG conformant)  
• Design simple, clean page layouts that reduce visual clutter  

Accommodate Declining Dexterity  

• Make clickable elements large and spaced apart  
• Ensure forms and other functionality work with keyboard access  
• Provide adequate time limits and ways to request more time  

Compensate for Reduced Hearing  

• Allow audio and multimedia content volume control up to 200%  
• Provide transcripts for prerecorded audio content  
• Don’t rely solely on audio cues; use captioning and other redundancies  

Address Cognitive Changes  

• Avoid long paragraphs and blocks of text  
• Break up complex processes into clear, logical steps  
• Use plain language and provide guidance within text  
• Minimize distractions and avoid crowding pages  
• Remind users of previous steps to aid memory  

The Web Accessibility Initiative’s (WAI) guidelines address functional limitations associated with both disabilities and aging. Implementing criteria from Web Content Accessibility Guidelines (WCAG), User Agent Accessibility Guidelines (UAAG), and Authoring Tool Accessibility Guidelines (ATAG) improves access for older cohorts.  

WCAG compliance tackles many barriers introduced by age-related disability. But consciously addressing common vision, motor, hearing and memory issues older adults face takes websites a step further in accessibility, ensuring education and government sites don’t leave them behind.  

Reference: https://www.w3.org/WAI/older-users/  

TELECOM UPDATE

Internet Speeds through the Years

Since 1975, WVNET has played a pivotal role in providing centralized computing services to all public higher education campuses throughout West Virginia. Later expanding to support K12, state and local government bodies as well as non-profits; the evolution of WVNET Telecommunications continues to mirror the broader advancements in networking technologies. 

In the 1970s, the landscape of networking underwent a significant transformation with the proliferation of Local Area Network (LAN) and Wide Area Network (WAN) technologies utilizing packet-switched methodologies. https://en.wikipedia.org/wiki/Packet_switching  

LANs were initially designed to interconnect computers and peripherals within confined areas like schools, offices, or campuses. The subsequent connection of LANs through WAN technologies paved the way for the integration of these networks into the burgeoning Internet. 

During this period, various LAN technologies vied for standardization, but Ethernet, developed around the same time as the Internet in 1973-74 at Xerox PARC, emerged as the dominant and ubiquitous LAN standard. https://en.wikipedia.org/wiki/Ethernet  

For nearly 50 years, as technology advanced, WVNET Telecommunications adapted to the changing landscape and escalating data transmission speeds. In the early days, bandwidth and throughput was measured in bits per second (bps), and typical home and small office modems operated at speeds ranging from 300 to 56,000 bps. To serve WV’s rural communities, WVNET established a distributed statewide dialup modem pool, accessible to anyone with a telephone land line. At its height this modem service had over 18,000 customers. K12, College and University staff and students were, for the first time in history, able to access the Internet and school/work-related resources. This was truly the beginning of The Information Age for most West Virginians. 

Technologies such as T1 through T5 (1.544 to 400Mbit/s) were created to push more and faster data across telephone lines, with DSL (Digital Subscriber Line) allowing up to 140 Megabit per second to home users. Channeling and multiplexing were introduced as methods to send multiple signals or streams of information over a single, shared medium. Eventually, phone lines were abandoned for dedicated point-to-point circuits using coaxial cables and fiber optics.  

Today, the average WVNET customer typically connects via a 1 Gigabit per second (Gbps) connection (1,000,000,000 bps), with some utilizing multiple 10 Gbps (10,000,000,000 bps) connections. 

To meet the ever-growing demand for bandwidth and improved throughput, WVNET is on the verge of completing its Transit Ring upgrade. This upgrade signifies a shift from multiple bundles of 10 Gbps circuits to multiple 100 Gbps circuits. This enhancement will ensure more bandwidth availability and faster throughput for data transmission. Having these larger data ‘pipes’ available will also mean increasing bandwidth to and from our dual upstream ISPs will take just hours instead of weeks.  

The continuous evolution of WVNET’s infrastructure showcases its commitment to meeting the ever-expanding connectivity needs of its customers in West Virginia. 

Systems Update

Cybersecurity Awareness 

Phishing continues to be the top choice for cyber attackers.  

Phishing involves deceiving people online to gain access to information. It tricks them into giving sensitive details using fake messages, often pretending to be important people or falsifying urgent situations. There are many different types of phishing but here are some top threats to look out for:  

• Spear Phishing: Spear phishing targets a specific group or type of individual such as a company’s Human Resources department.  
• Whaling: Whaling is like spear phishing but is an even more targeted type of phishing that goes after the “whales” of an organization such as the CEO, CFO, or any other CXX employee.   
• Smishing: Smishing is an attack that uses text messaging to execute the attack.   
• Search Engine Optimization Poisoning: With this method, hackers work to become the top result on a search engine. Clicking the link within the search engine then directs you to the hacker’s website where they can then steal your information as you interact with the site and/or enter sensitive information.  

Some ways you can protect yourself:  

• Don’t rush to click on links or files. Review all links and files carefully.  
• Double-check messages with another means of verification such as contacting the supposed sender via another means of communication.  
• Don’t post too much information online.  
• Be very careful with emails you believe are suspicious.  
• Visit websites directly instead of clicking links received by email.  
• Use multi-factor authentication wherever possible.  
• Use a password manager for generating and storing unique passwords.  

At WVNET we utilize a few additional methods for helping to keep ourselves protected from phishing attacks such as a robust email filtering system as well as doing regular simulated phishing attacks and training for all staff.   

Have some fun with WVNET on National Trivia Day!