91´ÎÔª

Strength in Security: 2025 Cyber Wins

December 3, 2025

TLDR

Key points:

• 2025 brought major cybersecurity improvements, including the launch of MFA (multi-factor authentication) and the move to Windows 11.
• MFA now protects more than 15,000 accounts with 147,000 secure logins each month.
• New practices strengthened awareness: TLDR summaries, maintenance schedules, department introductions, the Phish Alert button, and Cybersecurity Student Orientation through Brightspace.
• In 2026, 91´ÎÔª (MCC) will focus on optimizing systems and strengthening everyday cybersecurity practices.
• As a Texas state agency, MCC must complete annual cybersecurity training. opened on October 1st and was due October 31st. Complete ASAP if you have not done so.

TLDR END

2025 was a landmark year for cybersecurity at MCC. From stopping ransomware in its tracks to launching MFA campus-wide. The year marked significant progress towards a more secure digital environment. Together we built strong digital habits, rolled out smarter defenses, and explored new possibilities with Artificial Intelligence (AI).

New Best Practices

• Introduced the TLDR section for quick highlights in the IT Cybersecurity Newsletter.
• Implemented a regular maintenance schedule to boost cybersecurity and keep systems secure and reliable.
• Conducted cybersecurity team introductions with departments across campus to promote a culture of security awareness and strengthen our security posture.
• Enabled the Phish Alert button (KnowBe4) to the desktop Outlook email application. With one click, users can report suspected phishing emails to cybersecurity and KnowBe4.
• Beginning in 2026, MCC will introduce a Cybersecurity Orientation for all new students as part of onboarding and digital readiness. This brief, practical module will help students understand how to protect their accounts, secure personal devices, and recognize common online threats they may encounter in higher education.

Strength in Security

MFA Launch

After months of preparation, MFA launched on August 11 ^th. An incredible milestone for MCC! This additional layer of protection nearly doubles account security, improves compliance and resilience, and prevents 99% of automated hacking attempts.

Students and employees embraced MFA as part of everyday security, with minimal Help Desk impact. MFA now protects over 15,000 accounts with over 147,000 secure logins each month.

Windows 11 Update

Microsoft announced that, as of October 14, 2025, Windows 10 would no longer receive security updates. To project MCC systems, all employees were successfully upgraded to Windows 11 before the deadline.

Cyber Awareness

• Raised awareness about fraudulent student applications, including ghost students and Pell Grant scams, and their impact on higher education.
• Introduced password managers such as Microsoft Authenticator and iCloud Keychain to support strong password practices. MFA and strong passwords continue to be our best defense.
• Reminded everyone to lock computers when stepping away (Win + L).
• Celebrated Cybersecurity Awareness Month with the theme “Level Up Your Security”, featuring a cyber balloon hunt and required annual training.
• Explored AI tools, including ChatGPT and Microsoft Copilot, to support evolving ways of working, studying, and collaborating.

Cybersecurity Awareness Training 

Education remains one of the top sectors targeted by cyberattacks. As a Texas state agency, MCC must complete annual cybersecurity training. opened on October 1 ^st and was due October 31 ^st.

As of December 3 ^rd, the completion rates are listed below:

Supervisors should ensure their employees complete training as soon as possible. If you receive reminders for individuals no longer in your department, please contact Human Resources so records can be updated.

Looking Ahead to 2026

2026 will focus on optimization and strengthening everyday cybersecurity practices across campus. Our priority is to enhance our foundation, so systems are safer, more reliable, and easier to use.

This includes improving login protection, retiring outdated technology, and addressing known security risks. We will also enhance monitoring to detect issues earlier and streamline tools such as Office 365 and Teams. Overall, the goal is to reduce risk, modernize systems, and support a secure, dependable technology environment.