Body
The ITS Department at Hancock College is implementing Microsoft Attack Surface Reduction (ASR) policies during Summer 2025 to enhance the security of district computers and protect institutional data from malicious threats. These policies prevent untrusted applications from running, reducing the likelihood of security breaches caused by unauthorized or potentially harmful software. While the majority of applications commonly used by staff will remain unaffected, some applications may trigger warnings or be blocked.
Initial Implementation: Warn-Only Mode
To ensure a smooth transition, the ASR policies will initially be enforced in a warn-only mode for the first few weeks. This means that if an application is deemed untrusted or suspicious, users will receive a notification but will still be able to launch the software. The goal of this phase is to identify applications that may be incorrectly flagged and allow users to report any essential software that should be exempt from blocking.
Full Enforcement: Blocking Untrusted Applications
After the initial period, the policies will transition into full enforcement mode, where applications deemed untrusted will be prevented from running. By restricting the execution of untrusted applications, the ITS Department minimizes security risks, helping to protect sensitive institutional data and ensure compliance with cybersecurity best practices.
Support & Exemptions
If a staff member encounters a warning for an application they need for their work, they should contact the ITS Help Desk for assistance. The Help Desk team will review requests and determine whether certain applications should be re-enabled.
Security Benefits & Long-Term Protection
Implementing Attack Surface Reduction policies in Intune significantly strengthens Hancock College’s cybersecurity posture. By preventing unauthorized applications from running, the district reduces its exposure to malware, ransomware, and other cyber threats. These policies help maintain the integrity of sensitive data and ensure a secure computing environment for all staff members.
For any questions or concerns regarding this implementation, please reach out to the ITS Help Desk. Your cooperation in this security initiative is greatly appreciated as we work to enhance the safety and reliability of our district’s digital infrastructure.