[Important Information for Employees] Cyber-security is everyone's job

[Mark Mastrean]

To all students, faculty, and staff:



Recent cyber-attacks on local health-care networks underscore the
challenges our campus community faces with regard to information security.


It remains critical that all students, staff, and faculty develop the
skills needed to keep personal information and the college's data safe from
threats.


One especially big tip to remember: NEVER enter your campus password on a
form you receive through email.


Here are 10 additional cyber-security reminders:

   1. *Protect yourself against email phishing scams*. Phishing is the
   fraudulent practice of sending emails purporting to be from reputable
   companies in order to induce individuals to reveal personal information,
   such as passwords and credit card numbers. Be suspicious of unknown
   senders, and never click links or download any attachments in suspicious
   email.
   2. *Think BEFORE you click*. Malicious links can do serious damage, so
   take time to ensure they’re from trusted sources before clicking them in
   emails, web pages, or pop-ups on your devices.
   3. *Stick to your own devices.* Avoid using the devices of others. Never
   share your credentials, and never give anyone remote access to your
   computer.
   4. *Be aware of your device AND your surroundings.* Keep an eye on your
   device. Lock it when you step away. Never leave sensitive items unattended
   (e.g., notes with your password written on them or USB drives).
   5. *Keep track of your digital footprint*. When you monitor your
   accounts, you can ensure you catch suspicious activity.
   6. *Keep up with updates.* Software patches are often issued when
   security flaws are discovered.
   7. *Connect securely.* Weigh the consequences before connecting to an
   unsecured connection. Never connect to them when handling college or other
   sensitive information.
   8. *Secure your mobile device.* Use strong passwords and biometric
   features. Turn off Bluetooth. Don’t automatically connect to any public
   Wi-Fi. Download with caution.
9. *Beware Social Engineering. *This attack is a non-technical strategy
   used by cyber criminals. It relies heavily on human interaction and often
   involves tricking people into breaking standard security practices. With
   all of the public information available online and over social media, cyber
   criminals are able to come up with very creative ways to fool users.
10. *Back up your data.* Use a physical location or the cloud so that you
   have an ultimate recovery tool.

*Have a cyber-security concern or question? *Contact the LITS Helpdesk (t.
518-564-4433 / email: helpdesk at plattsburgh.edu).
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://ls.plattsburgh.edu/pipermail/critical-employees/attachments/20201030/1ad2a606/attachment.htm>