Columbus State University Print Logo

Office of Information Security

Office of Information Security

Security Archives

Alerts

uscert

   

 

 2017 Alerts:

Google Releases Security Updates for Chrome

Mozilla Releases Security Update

TA18-004A : Meltdown and Spectre Side-Channel Vulnerability Guidance

TA17-318B : HIDDEN COBRA – North Korean Trojan: Volgmer

TA17-318A : HIDDEN COBRA – North Korean Remote Administration Tool: FALLCHILL

TA17-293A : Advanced Persistent Threat Activity Targeting Energy and Other Critical Infrastructure Sectors

TA17-181A : Petya Ransomware

TA17-164A : HIDDEN COBRA – North Korea's DDoS Botnet Infrastructure

TA17-163A : CrashOverride Malware

TA17-156A : Reducing the Risk of SNMP Abuse

TA17-132A : Indicators Associated With WannaCry Ransomware

TA17-117A : Intrusions Affecting Multiple Victims Across Multiple Sectors

TA17-075A : HTTPS Interception Weakens TLS Security

 

Newsletters


 sans

2017 Newsletters:

December:   Lock Down Your Login

November:   Shopping Online Securely

October:      Helping Others Secure Themselves

September:  Password Managers

August:        Backup & Recovery

July:            Gaming Online Safely & Securely

June:           Lessons From WannaCry

May:            Securing Today's Online Kids

April:           Passphrases

March:         Securely Using Mobile Apps

February:     Staying Secure on the Road

January:      Social Engineering

 

ms

2017 Newsletters:

December:    Avoiding Holiday Scams

November:    Shopping Safely Online

October:       National Cyber Security Awareness Month

September:   Staying secure on Social Media

August:        Connected Home Devices: The Internet of Things

July:           Identifying and Reporting Common Scams

June:          Sun, Sand, and Cybersecurity

May:           Are You Really Being Secure Online?

April:           Digital Spring Cleaning

March:       Common IT Wisdom That Keeps You Secure

February:   Staying Safe From Tax Season Scams

January:      Looking Forward: 2017's Top Threat Prediction

 

Tips

Security tips of the week

 

Bitcoin + Online Chain Referral = Illegal Scheme

Ever get a chain letter in the mail or online? If the letters keep going, you're supposed to make money as your name moves up the list. In fact, most people are guaranteed to lose money.

Chain letters have been around for decades. Today's twist: online chain referral schemes involving cryptocurrencies like bitcoin and Litecoin. Today the FTC announced a complaint against four people — Thomas Dluca, Louis Gatto, Eric Pinkston, and Scott Chandler — for promoting deceptive cryptocurrency schemes online.

For more information check out The FTC's Blog.

Stopping Unwanted Calls

Why are you getting so many calls? Odds are, many of the calls you're getting are from scammers. The FTC has a few tips on how to stop unwanted calls.

Downloading a Call blocking app on your mobile device and adding the callers number to a block list on your phone are just a few of your options to help stop annoying Robo-callers from interrupting your day trying to scam you.

For more information check out the FTC's Infographic here!

FTC Cracks down on student loan scams

A lot of us have student loans – and some of us have trouble paying them every month. Some companies claim to resolve that issue by saying they can help you pay them down quicker, cheaper or get them forgiven altogether. Be cautious – some of these companies are running scams. Check out The FTC's Tips to avoid student loan repayment scams so you don't fall victim!

Spring Break Vacation Tips

Cyber Security should not be limited to the home, office, or classroom. It is important to practice safe online behavior whenever we travel, as well.

This Spring Break CSU and the Department of Homeland Security have a few tips to help keep your information yours!

Check out The Department of Homeland Security's Tips Sheet

Peer-To-Peer Tips

Online peer-to-peer, or P2P, payment systems let you send money to people quickly. The use of these
services is a growing trend, with estimates predicting peer-to-peer transactions reaching over $700 billion in 2018.

With all this convenience, users can be easily taken advantage of if they aren't careful.

For more information, check out the FTC's Article

Online Dating Scams

Looking to start a new relationship? For some, that may mean meeting a new love interest online. Word to the wise: sometimes it's best to lead with your head and not your heart.

The Federal Trade Commission receives thousands of reports each year about romance scammers who create fake online relationships only to steal their victims' money.

For more information check out the FTC's InfoGraphic

Prepaid Card Scam

An Old scheme from 2016 is on the rise in Columbus,

Scammers all calling businesses and citizens informing them about debt or IRS fees that need to be paid. They are also requesting them in an odd way, Pre-paid credit cards. The scammer will inform you about a serious or urgent manner and try to get you to pay the amount by asking you to buy a pre-paid card and read them off the numbers. No legitimate business will ask you to pay in this way.

Please be safe this year. Exercise common sense and spread the word about this scam!

If you become the victim, or are contacted about this scam the FTC urges you to contact them: HERE

Tax Season Could Bring New Surge in Phishing Scheme

This tax season be extra weary of Phishing emails. The IRS has released a warning about the Form W-2 scam that jumped in victims last year from 100 incidents to over 900. Always remember to validate your senders by calling them and never giving your personal information to anyone.

For more information: Tax Season Phishing scam

Cyber Criminals Don't Just Target Your Phone

Technology is only half the story. When cyber crooks launch their assault on your devices and data they don't target just the security holes on your system. They also aim to prey on your weaknesses. For more information: The Hackable Human - 6 Psychological Biases That Make Us Vulnerable

Cyber Criminals Don't Just Target Your Phone
human

Technology is only half the story. When cyber crooks launch their assault on your devices and data they don't target just the security holes on your system. They also aim to prey on your weaknesses.

For more information: The Hackable Human - 6 Psychological Biases That Make Us Vulnerable

Cybercrime Attempts
This week the U.S. Department of Homeland security reported an increase in cybercrime attempts directed to government agencies.
Sadly, just yeasterday we were apprised by the Georgia Technology Authority (GTA) that a state agency was also the target of an attack.

To address these increases in cybercrime, additional measures to protect against attack include the following:

· Be wary of unsolicited phone calls, visits or email messages from unknown individuals who are inquiring about internal information or information about you or other employees.

· Do not disclose information about our organization to individuals who are not authorized to have the information.

· Do not disclose personal or financial information through email, nor respond to requests for this information via email.

Always remember PURLS when evaluating emails for their legitimacy:

Pretend - Scams may use real logos or appear to originate from people we know and pose as legitimate messages.

Urgency - Scams often convey a sense of urgency or a threat of action if ignored.

Resemblance - Many scams use email addresses resembling familiar legitimate businesses.

Links - By resting your mouse pointer over but not clicking on a link, you can determine if the link matches the text.

Spelling - Many scam emails contain spelling and grammar errors.

Monday, December 4th - Is our CSU Critical Document Shredding Campaign on Main Campus
Faculty & Staff we need you to start gathering your outdated sensitive documents and submitting an eQuest for pick up.

For safety precautions it is best to have outdated official university records destroyed based on the University Records Disposal Guidelines.

Please review your documents and participate in the campaign!

Cyber Tips for Holiday Shopping
Cheers to a cybersecure holiday season! Cyber Monday 2017 – less than two weeks away – is expected to be the biggest shopping day in U.S. history, and roughly 80 percent of adults purchase products online. Mobile has taken over holiday gift giving: last year, half of website visits and 30 percent of online sales were conducted via mobile devices. And technology ranks high on shopping lists, too – from new laptops and gaming systems to tablets, the latest phones and Internet of Things devices like video cameras, toys and appliances.

Whether you are giving the gift of connectivity or using it yourself, don't let hackers mess with the merriment. The National Cyber Security Alliance reminds everyone that all devices connected to the internet must be protected. Read more on Holiday Shopping Tips by StaySafeOnline.

NSCAM: The Internet of Things Wants You!
A career in Cybersecurity is about protecting the internet, a critical resource we all depend on.

If you haven't thought about a cybersecurity career, you'll be happy to know that you are probably more interested than you think.

There are job everywhere for Cybersecurity and not all positions require extensive technical skills
You can learn about Cybersecurity Careers by checking out this: Infographic provided by StaySafeOnline