CSU Clock Tower Link to CSU Home Page Columbus State University

Computer Information
and Networking Services

Logo
CSU Home > CINS > Information Security > Tip of the Week

Tip of the Week Archives

Avoid "Phishing" Scams

Someone who tries to lure you into giving them your personal information is “phishing”. Don’t get caught!

If you receive an email asking you for personal information:

  • Don’t respond. Even if it’s from your bank. It’s not your bank. It’s not E-bay or PayPal, either. And, no one is going to transfer millions of dollars into your account.
  • Don’t click on the links. The links will take you somewhere you don’t want to be and may even infect you with a virus.
  • Do contact the company directly if you are in doubt.

- top -

Use Strong Passwords

Be tougher than the hacker is. Make your passwords strong:

  • Use at least six characters
  • Use numbers and letters
  • Use special %^&* characters
  • Don’t write it down!
  • Don’t tell anyone else!
  • Change it regularly!

- top -

Reporting an Incident

An information security incident is:

Any real or suspected event affecting the security of a computer or computer network.

This may include unauthorized access, an account or password compromise, a policy violation, or any other suspicious activity.

Ways to report a campus incident:

  1. eQuest (faculty and staff only) - Choose "Info Security" under Computer Center

  2. Web Form

  3. Send an email to abuse@colstate.edu

- top -

E-mail Privacy

E-mail is like a postcard...anyone can read it along the way!

Contrary to popular belief, e-mail is not private, nor is it necessarily secure.

Never include confidential or private information like passwords, social security numbers, credit card numbers, etc. in messages or attachments.

Remember, anyone can read it!

- top -

Protect Your Identity on the Internet

  • Never put personal information such as pictures of yourself, where you live, work, go to school, etc. on your personal Web site. Predators can use this information to steal your identity or physically harm you.
  • Never put personal information such as social security or credit card numbers on a Web site unless you see a lock icon. The lock icon, typically found in the lower right or left corner of your browser, indicates a secure connection.
  • Never respond to e-mail messages attempting to "phish" for your information. "Phishers" want your information so they can steal your identity. Legitimate companies will never ask you to verify your information via an e-mail message!

- top -

E-mail Best Practices

Be suspicious of unsolicited e-mail. Don't respond to spam. Just delete it!

Be cautious about links in e-mail! Following a link to an illegitimate Web site may infect your computer.

Be cautious when opening attachments. Open only those that you are expecting from a trusted sender.

Be aware that some Web sites, online forums, contests, and "free" services (such as newsletters) collect e-mail addresses that are later used for spamming.

Be wary of phishing attempts! Legitimate companies don't send e-mail asking you to update your personal information. When in doubt, contact the company.

- top -

Protect Information at Your Workspace

  • Clear your desk of confidential papers.
  • Get printouts off the printer immediately.
  • Position your computer screen so it can't be seen from hallways or other public areas.
  • Before you go home, log off/shutdown your computer and lock drawers, cabinets and doors.

- top -

Dumpster Diving

"One man's trash is another man's treasure"

This is especially true in the case of "dumpster diving". Dumpster Divers search trash for information that might help them steal your identity, hack your system, or worse.

Don't let your trash be someone else's treasure!

Shred all documents containing personal or sensitive information and destroy diskettes, CDs and other media before discarding them.

- top -

StaySafeOnline

The National Cyber Security Alliance (NCSA) provides tools and resources to empower home users, small businesses and students of all ages to stay safe online.

Visit StaySafeOnline.org

Keep yourself and your family safe online!

- top -

Protect Your Home Computer, Too!

According to Symantec's semi-annual Internet Threat Report, home computer users are becoming the preferred target of cyber criminals.

The report noted an 81 percent jump in the number of phishing emails in the first half of 2006 over the previous six months.

Among home users surveyed, just 46.3 percent say their anti-virus software is up-to-date.

For more about Information Security: http://cins.colstate.edu/security
Send email to Information Security: abuse@colstate.edu
CINS Web site: http://cins.colstate.edu
CINS Help Desk: 706-507-8199

- top -

October is National Cyber Security Awareness Month

How safe are you? Take this quiz to find out:

http://staysafeonline.org/basics/quiz.html

For more about Information Security: http://cins.colstate.edu/security
Send email to Information Security: abuse@colstate.edu
CINS Web site: http://cins.colstate.edu
CINS Help Desk: 706-507-8199

- top -

Stop Spammers 101

Don't give your email address out arbitrarily!

Email addresses are so common that they are often asked for on any form that asks for your address—even comment cards at restaurants.

It seems harmless, but many people don't realize what could happen to that information.

For example, companies may keep your email address in a list for future reference. Unfortunately, those same companies may sell or share these lists with other companies, and suddenly you are receiving email that you didn't request.

For more about Information Security: http://cins.colstate.edu/security
Send email to Information Security: abuse@colstate.edu
CINS Web site: http://cins.colstate.edu
CINS Help Desk: 706-507-8199

- top -

Stop Spammers 201

Read the fine print!

When you sign up for online accounts or services, there may be a section (usually at the bottom) asking you if you want to receive email about other products and services.

Quite often "Yes" is checked by default. Remember to uncheck the boxes if you don't want to receive email from those lists as well.

For more about Information Security: http://cins.colstate.edu/security
Send email to Information Security: abuse@colstate.edu
CINS Web site: http://cins.colstate.edu
CINS Help Desk: 706-507-8199

- top -

Cell Phones and PDAs

Did you know that attackers can target your cell phone or PDA?

If you use text messaging or connect to the internet on your phone or PDA, attackers might be able to:

  • Abuse your service by flooding you with text messages, causing you to incur additional charges
  • Lure you to a malicious web site
  • Use your phone or PDA to attack others
  • Gain access to your account information

Protect yourself by following these US-CERT tips:

http://www.us-cert.gov/cas/tips/ST06-007.html

- top -

What's Wrong With This Picture?

Does your workspace look like this?

See if you can find what's wrong with this picture.

http://csoonline.com/read/030104/desk.html?source=nlt_csotechwatch

- top -

Spam Control

CSU's email gateway filters out a tremendous amount of spam each day. By design, gateways don't filter out absolutely all spam. If they did, they would very likely filter out legitimate messages as well.

The gateway assigns a score, based on a number of variables, to incoming messages. If the message score falls below a preset threshold, the gateway delivers it. Spam writers, knowing how gateways work, craft their messages in such a way as to render a low score and thus some spam makes it to your inbox.

In addition, spammers may spoof their own email addresses, making it impossible to trace back to the originator.

Never respond to spam or follow the links in spam messages. Delete spam immediately!

- top -

Computer Information and
Networking Services
CCT First Floor
706-507-8100
Fax: 706-569-3083

Text-only version

Questions/Comments?

Columbus State University
4225 University Avenue
Columbus, Georgia 31907

©2007 Columbus State University
Last Updated: 6/26/08