Security Tip of the Week
From the desk of Christian Payton Hinton
Office of Information Security Student Assistant
The information contained in this website is for general information purposes only. The information and articles provided by CSU Office of Information Security and while we endeavor to keep the information up to date and correct, we make no representations or warranties of any kind, express or implied, about the completeness, accuracy, reliability, suitability or availability with respect to the website or the information, products, services, or related graphics contained on this website for any purpose. Any reliance you place on such information is therefore strictly at your own risk. In no event will we be liable for any loss or damage including without limitation, indirect or consequential loss or damage, or any loss or damage whatsoever arising from loss of data or profits arising out of, or in connection with, the use of this website.
Spring Break Vacation Tips
Cyber Security should not be limited to the home, office, or classroom. It is important to practice safe online behavior whenever we travel, as well.
This Spring Break CSU and the Department of Homeland Security have a few tips to help keep your information yours!
Online peer-to-peer, or P2P, payment systems let you send money to people quickly. The use of these
services is a growing trend, with estimates predicting peer-to-peer transactions reaching over $700 billion in 2018.
With all this convenience, users can be easily taken advantage of if they aren't careful.
For more information, check out the FTC's Article
Online Dating Scams
Looking to start a new relationship? For some, that may mean meeting a new love interest online. Word to the wise: sometimes it's best to lead with your head and not your heart.
The Federal Trade Commission receives thousands of reports each year about romance scammers who create fake online relationships only to steal their victims' money.
For more information check out the FTC's InfoGraphic
Prepaid Card Scam
An Old scheme from 2016 is on the rise in Columbus,
Scammers all calling businesses and citizens informing them about debt or IRS fees that need to be paid. They are also requesting them in an odd way, Pre-paid credit cards. The scammer will inform you about a serious or urgent manner and try to get you to pay the amount by asking you to buy a pre-paid card and read them off the numbers. No legitimate business will ask you to pay in this way.
Please be safe this year. Exercise common sense and spread the word about this scam!
If you become the victim, or are contacted about this scam the FTC urges you to contact them: HERE
Tax Season Could Bring New Surge in Phishing Scheme
This tax season be extra weary of Phishing emails. The IRS has released a warning about the Form W-2 scam that jumped in victims last year from 100 incidents to over 900. Always remember to validate your senders by calling them and never giving your personal information to anyone. For more information: Tax Season Phishing scam
Cyber Criminals Don't Just Target Your Phone
Technology is only half the story. When cyber crooks launch their assault on your devices and data they don't target just the security holes on your system. They also aim to prey on your weaknesses. For more information: The Hackable Human - 6 Psychological Biases That Make Us Vulnerable
This week the U.S. Department of Homeland security reported an increase in cybercrime attempts directed to government agencies.
Sadly, just yeasterday we were apprised by the Georgia Technology Authority (GTA) that a state agency was also the target of an attack.
To address these increases in cybercrime, additional measures to protect against attack include the following:
· Be wary of unsolicited phone calls, visits or email messages from unknown individuals who are inquiring about internal information or information about you or other employees.
· Do not disclose information about our organization to individuals who are not authorized to have the information.
· Do not disclose personal or financial information through email, nor respond to requests for this information via email.
Always remember PURLS when evaluating emails for their legitimacy:
Pretend - Scams may use real logos or appear to originate from people we know and pose as legitimate messages.
Urgency - Scams often convey a sense of urgency or a threat of action if ignored.
Resemblance - Many scams use email addresses resembling familiar legitimate businesses.
Links - By resting your mouse pointer over but not clicking on a link, you can determine if the link matches the text.
Spelling - Many scam emails contain spelling and grammar errors.
Monday, December 4th - Is our CSU Critical Document Shredding Campaign on Main Campus
Faculty & Staff we need you to start gathering your outdated sensitive documents and submitting an eQuest for pick up.
For safety precautions it is best to have outdated official university records destroyed based on the University Records Disposal Guidelines.
Please review your documents and participate in the campaign!
Cyber Tips for Holiday Shopping
Cheers to a cybersecure holiday season! Cyber Monday 2017 – less than two weeks away – is expected to be the biggest shopping day in U.S. history, and roughly 80 percent of adults purchase products online. Mobile has taken over holiday gift giving: last year, half of website visits and 30 percent of online sales were conducted via mobile devices. And technology ranks high on shopping lists, too – from new laptops and gaming systems to tablets, the latest phones and Internet of Things devices like video cameras, toys and appliances.
Whether you are giving the gift of connectivity or using it yourself, don't let hackers mess with the merriment. The National Cyber Security Alliance reminds everyone that all devices connected to the internet must be protected. Read more on Holiday Shopping Tips by StaySafeOnline.
NSCAM: The Internet of Things Wants You!
A career in Cybersecurity is about protecting the internet, a critical resource we all depend on.
If you haven't thought about a cybersecurity career, you'll be happy to know that you are probably more interested than you think.
There are job everywhere for Cybersecurity and not all positions require extensive technical skills
You can learn about Cybersecurity Careers by checking out this: Infographic provided by StaySafeOnline
NSCAM: Inside Your Connected Home
Every day, your house connects to the internet in ways you might not even realize – today's appliances, toys, lighting, TVs, cameras are rapidly advancing in technology. And outside your home, there's so much more that's connected – from your car to the roads you travel on to your whole city.
You can learn about how to protect your connected home by
checking out this: Infographic provided by StaySafeOnline!(PDF)
How Do I Detect an "ADP" Phishing Email?
The University System of Georgia Shared Services Center (SSC) wants to help you protect yourself from
possible "ADP" phishing attempts where people pose as a reputable entity with the purpose
of obtaining your sensitive information.
What Can Happen if My ADP Account is Compromised?
• Your direct deposit account information can be changed to a fraudulent account.
• If the pre-note option is not in place, funds may disperse to the fraudulent account.
• The fraudulent information has the potential to flow into other systems, such as PS Financials and could possibly effect expense reimbursements. Read More (PDF)
Wise giving in the wake of Hurricane Harvey
Consider these tips when asked to give:
- Donate to charities you know and trust.
- Be alert for charities that seem to have sprung up overnight in connection with current events.
- Designate the disaster.
- Never click on links or open attachments in e-mails unless you know who sent it.
- Don't assume that charity messages posted on social media are legitimate.
- When texting to donate, confirm the number with the source before you donate.
- Find out if the charity or fundraiser must be registered in your state.
Credit: Federal Trade Commission
A Costly Low-Cost Trial Offer
You've probably seen online ads with offers to let you try a product – or a service – for a very low cost, or even for free. Sometimes they're tempting: I mean, who doesn't want whiter teeth for a dollar plus
shipping? Until the great deal turns into a rip-off. That's what the FTC says happened in a case it announced
The defendants sold tooth-whitening products under various names, and hired other companies to help them market the products. These affiliate marketers created online surveys, as well as ads for free or
low-cost trials – all to drive people to the product's website. Read more about this scam (PDF)
Sources: Federal Trade Commission
"Free" Computer Scans
Messages telling you to install and update security software for your computer seem to be everywhere. So you might be tempted by an offer of a "free security scan," especially when faced with a pop-up, an email, or an ad that claims "malicious software" has already been found on your machine. Unfortunately, it's likely that the scary message is a come-on for a rip-off.
The free scan claims to find a host of problems, and within seconds, you're getting urgent pop-ups to buy security software. After you agree to spend $40 or more on the software, the program tells you that your problems are fixed. The reality: there was nothing to fix. And what's worse, the program now installed on your computer could be harmful.
Criminals use undetectable "Shimmers" in new credit card scam
Shimmers are thin skimmers that fit inside where you swipe your Credit Card. These devices scan your Credit Cards chip and stores its data
Remember these tips to try and avoid them
- Use the contactless tap-and-go feature on your credit or debit card in stead of swiping or inserting your card.
- Use contactless mobile services such as Apple Pay or
- Samsung Pay to tap and pay.
- If you're withdrawing cash at a bank, go inside to a teller.
- Use ATMs in banks rather than a more vulnerable standalone machine.
- Cover the keypad with your hand when entering your PIN.
- Don't proceed with a transaction if your card encounters resistance when it is inserted.
- Contact the bank, merchant and your card issuer is you suspect your card has been compromised.
References: Fox19 , Themerkle, WTVM, CBS