Home

University of Texas RSOC
Cybersecurity Services

Cybersecurity Services

We deliver cutting-edge cybersecurity solutions designed to detect, respond to, and mitigate threats in real time.

Customer Benefits

Customer Benefits

Public-Sector Expertise: Solutions designed to meet the unique cybersecurity needs of government and educational institutions.

Student Employment

Student Employment Program

Paid opportunities allow University of Texas students to develop real-world cybersecurity skills while supporting active operations

new about

About UT-RSOC

Operating under UT Austin and funded by the State of Texas, we are part of a statewide network of Regional Security Operations Centers.

UT-RSOC News

"Prove you're human" just became the attack

July 6, 2026
Fake Google and Cloudflare verification pages are tricking visitors into pasting malicious commands into their own computers — and the campaign has already hijacked 700+ education and tech websites.

The exploit was real. The trap was hiding in its dependencies

July 2, 2026
A new malware campaign called ChocoPoC hides inside the Python package dependencies of fake GitHub proof-of-concept exploits, targeting the very researchers who test vulnerabilities. Texas IT security teams that clone PoC code should take note.

UT-RSOC Welcomes New Partners

July 1, 2026
UT-RSOC Welcomes New Partners

A Mac security tool that quietly turns itself off and any student could trigger it

June 29, 2026
A newly disclosed macOS flaw, CVE-2026-39118, let standard non-admin users silently disable CrowdStrike and Kandji endpoint protection. Here's what Texas institutions running Mac fleets need to know.

A free GitHub account was all it took to hijack Microsoft and Google's code pipelines

June 25, 2026
The "Cordyceps" vulnerability let anyone with a free GitHub account hijack CI/CD pipelines at Microsoft, Google and Apache. Texas campuses running their own GitHub Actions workflows should check for the same misconfiguration.

A hidden hand in the research lab: How Chinese hackers spied on a U.S. medical university for 14 months

June 22, 2026
Google and Mandiant disclosed that a China-aligned group known as UNC6508 spent over a year undetected inside a U.S. medical research university's network, stealing REDCap credentials and quietly forwarding sensitive emails through a manipulated compliance rule.

'FortiBleed' leak exposes credentials for nearly 74,000 firewalls. Is yours one of them?

June 18, 2026
A massive credential-harvesting campaign against Fortinet FortiGate VPN devices has exposed working logins for roughly 74,000 firewalls worldwide, and CISA says education is among the top-hit sectors. Here's what Texas IT teams need to do now.

The security tool became the attack: a new Windows Defender flaw with no fix in sight

June 17, 2026
A researcher published a working exploit for a critical Windows Defender privilege-escalation flaw hours after June's Patch Tuesday, and fully updated Windows 10 and 11 systems remain vulnerable with no patch yet available.

A two-week head start: how one Oracle bug became a crisis for U.S. universities

June 15, 2026
A zero-day flaw in Oracle PeopleSoft let the ShinyHunters extortion group breach more than 100 organizations before a patch existed, with universities bearing the brunt. Texas institutions running PeopleSoft should check exposure now.

ShinyHunters targets Oracle PeopleSoft at 100-plus universities and colleges

June 11, 2026
The ShinyHunters extortion gang has compromised Oracle PeopleSoft servers at more than 100 organizations, with the education sector identified as the primary target. An emergency patch for a critical 9.8 CVSS vulnerability is now available and should be applied immediately.

UT-RSOC Events

Event Status
Scheduled
Date and time: Thursday October 1, 2026, 10:00 am - 1:00 pm
The UT Regional Security Operations Center celebrates the opening of its new facility on October 1, 2026 at Gregory Plaza, UT Austin