 |
 |
Data Breaches Are Real
Data breaches do occur whether you hear about them or not, and security tips should be taken seriously both in your work environment as well as in your personal life. According to statistics, 60% of organizations pick and choose which data breaches they decide to report on; in addition, despite legal requirements for reporting, only 10% will report breaches they are required by law to do. more . . . |
|
Have You Truly Deleted Those Files?
When you delete a file, the file is transferred to your trash or recycle bin which is a "holding area" just in case you accidentally deleted a file. Does your recycle bin include credit card information, passwords, medical, personal, or sensitive work-related information? Empty the trash or recycle bin on a regular basis to ensure that deleted information stays deleted. Learn more about how to effectively erase files from your computer more . . . |
|
What is the cloud?
Cloud computing is a general term for anything that involves delivering hosted IT services over the Internet. The name was inspired by the cloud symbol that's often used to represent the Internet in flowcharts and diagrams. So, what does the university have to say about cloud computing? more . . . |
|
How much do you know about the Piratedrive?
The Piratedrive is a virtual file folder that resides on the ECU network for electronic file storage. Every faculty, staff, and student has a "personal" folder, and departments have the option to create "departmental" folders. The Piratedrive has many uses and advantages. Learn more . . . |
|
October is National Cyber Security Awareness Month
National Cyber Security Awareness Month (NCSAM) is a national public awareness campaign to encourage everyone to protect their computers and our nation's critical cyber infrastructure. Protecting your online identity is the focal point for the ECU campus this year. Stay tuned this month for security tips and additional resources. more . . . |
|
Social Media @ ECU
With the growing use of social media tools like Facebook, Yammer and YouTube in the workplace as well as in the classroom, it is best practice to provide some guidelines on how to properly use these tools and to protect yourself as well as the university. more . . . |
|
Protect Your Mobile Device
With the increased theft of mobile devices and the exposure of their vulnerabilities, it is important to know and implement the best practices for securing devices such as storage media like USB flash drives, Smartphones like iPhones, and tablets like iPads. more . . . |
|
Laptop Security
Incidents of stolen laptops are on the rise. It is important that you follow some basic steps in securing your laptop and any other mobile device like Smartphones in addition to the data stored on them. more . . . |
|
Protecting Your Password
Passwords are like bubble gum; they are much better when used by only one person. And remember: Passwords shorter then 8 characters are easy to guess. So, what are the rules for creating and maintaining a strong password? more . . . |
|
Using Caution with USB Drives
USB flash drives (also known as jump drives, USB keys, memory sticks) are popular for storing and transporting data, but some of the characteristics that make them convenient also introduce security risks. more . . . |
|
Cyber Security Awareness Training Now Available in Blackboard!
This training is now available to all faculty and staff and is designed to assess your current understanding of security issues as well as increase your awareness of security issues such as protecting personal and professional confidential information. To access the course, go to https://blackboard.ecu.edu and log on using your Pirate Id and passphrase. more . . . |
|
What is Spear Phishing?
After the security breach at Epsilon, everyone is asking the question - what is spear phishing? It is an e-mail spoofing fraud attempt that targets a specific organization or group of people, seeking unauthorized access to confidential data. Messages appear to come from a trusted source; however, the apparent source of the e-mail is likely to be an individual within the company or a hacker that has created messages that appear to come from companies from whom the recipient is used to receiving emails. more . . . |
|
Your Social Security Number
Only give out your social security number when absolutely necessary. Many places use social security numbers for identification purposes but ask to use an alternate means of identification whenever possible. Your Social Security number is the key to your identity (including your financial information) which makes it a prime target for criminals. more . . . |
|
Common Cyber Security Myths
When it comes to information security, there's a lot of popular wisdom available, but much of it is unfounded and will not necessarily improve your personal online security. It's also important to keep in mind that today's online crooks have become very creative. Therefore, it is time to cut through the hype and separate fact from fiction. more . . . |
|
Stop.Think.Connect
Protecting yourself online is as simple as following the same precautions you would implement in order to protect your home from burglary or to protect your car from damage. It just takes some common sense steps. more . . . |
|
"Free" Stuff May Cost You
Today, scammers have found ways to create realistic but phony "security alerts" or "offers", though they look like they're being generated by your computer or your Internet service provider. So, always be cautious of "free" offers of music, games, videos, and security scans. They are notorious for including malware in the download. more . . . |
|
What is Vishing?
Vishing, like phishing, uses e-mail as an initial contact point, but is designed to have you call a fake, automated answering system, and get you to enter your account number and other sensitive information. Vishing attacks are on the rise; so, please become aware of how they work and protect yourself. more . . . |
|
Happy New Year!!
It is a new year but the message is still the same...stay safe online. It may sound like a broken record but it is worth repeating. In this new year, make a resolution to better protect your computer, your personal information and your work or school related resources. more . . . |
|
Beware This Holiday Season!
The Internet Crime Complaint Center (IC3) warns against cyber scams such as phishing, smishing and vishing this holiday season. As retailers maximize their Internet-based efforts during the holidays, so do cyberthieves, who attempt to scam shoppers with malicious links, credit card fraud and phishing attacks. more . . . |
|
Cyber Stalking 101...Part 2
All fifty states have stalking laws but only roughly one-third of the states have incorporated language relating to stalking through electronic means into their statutes. more . . . |
|
Cyber Stalking 101...Part 1
Stalking impacts 3.4 million people annually and about 25% of victims report some use of technology, including e-mail, instant messenger, blogs and chat rooms. more . . . |
|
October is National Cyber Security Awareness Month
National Cyber Security Awareness Month (NCSAM), conducted every October since 2001, is a national public awareness campaign to encourage everyone to protect their computers and our nation's critical cyber infrastructure. Understanding and properly using social media is the focal point for the ECU campus this year. Stay tuned this month for security tips and additional resources. more . . . |
|
Protect Your Passphrase: It's a Matter of Life and Theft.
Occasionally, your passphrase might expire before you get a chance to change it, or you might get locked out of your accounts due to a technical glitch, so you need your passphrase reset. Since you use your ECU PirateID and passphrase to access accounts―like e-mail and OneStop―that house important and confidential information, you want to be sure that no one but YOU can request a change to your passphrase.
more . . . |
|
Protecting Mobile Devices
The recent Apple iPad security breach has once again shined the light on the vulnerability of mobile devices as well as online security and privacy practices. Devices like the iPhone, iPod Touch and iPad tablet are used by so many ordinary consumers as well as government officials that they have become a challenge to security experts. more . . . |
|
The Internet Is NOT Private
This is the Information Era! There has been a huge information explosion, and the popularity of the Internet puts huge amounts of information right at our fingertips. Are you concerned about how much of this information is about you? more . . . |
|
Attention: Supervisors of Student Employees
Student employees - just like the University employees with whom they work - are accountable for ensuring the privacy and security of the University's data regardless of its form (electronic, oral, written) while conducting University business. These guidelines are extended to volunteers, interns and others who might access the University's administrative data. more . . . |
|
Fighting Identity Theft
You've heard all of the warnings about preventing identity theft - don't reply to email messages that ask for personal or financial information, protect your social security number and passwords, watch out for "shoulder surfers". But what do you do when your personal information has been stolen or accidentally divulged? What are your rights? more . . . |
|
Encryption
As more users come to understand the Internet's open nature and its dangers, applying data encryption to common communication methods such as email and instant messaging have become critical to online safety. Without this security mechanism, information transferred over the Internet can be easily captured and viewed by anyone; therefore, compromising the data in a number of ways. more . . . |
|
Use Cybercafe Computers With Caution
Cybercafes offer a convenient way to use a networked computer when you are away from home or office. But be careful. Since anyone can use them for anything, they have probably been exposed to viruses or other malicious software. They are okay for casual web browsing, but NOT for connecting to your email or your bank, nor for shopping online. more . . . |
|
Protect Your Privacy Online
Limit the amount of personal information you post about yourself, your friends, and your family. As a general rule, don't post anything you wouldn't want the world to see or know about. Think of social networking sites like MySpace as giant billboards. more . . . |
|
Backup...Backup...Backup!
Backup important files on a regular basis and store the backups in a safe place, preferably off site. Unfortunately, it's not a matter of "if" you'll lose files one way or another; it's a matter of "when". more . . . |
|
Recovering Departmental Data
Access to departmental data is critical to the efficient operation of each department. It is imperative that departments implement procedures to store departmental data centrally to provide access to those who require it. It is also imperative that access to that data is available if the person entering the data is no longer with that department. The following steps will ensure the availability of department data. more . . . |
|
Real World Warnings
Everyone has heard these phrases at some point in their lives - "If it sounds too good to be true, it probably is" or "Have a backup plan". These are real warnings used to take precautions to protect yourself in the real world. Now let's apply them to the use of a computer and the Internet. more . . . |
|
Out With The Old...
Have you purchased a new personal computer and want to recycle or donate your old computer? Before disposing of your computer equipment, please take the necessary steps to remove personal or financial information from the machine. You do not want your personal information to fall into the wrong hands. more . . . |
|
Remove Access for Terminated Employees
Do you know as a supervisor, you are responsible for removing computer access for an employee who transfers from your department or terminates from the university? Please review the Account Termination Policy on the ITCS website. The purpose of this policy is to ensure the timely revocation of user's access to core IT resources prior to the employee's transfer or termination date. The supervisor must submit a service request to ITCS by telephone at 328-9866 or by the online system at http://help.ecu.edu. Select and complete the "Account Termination Request" under the Online Forms section. All information will be verified before revoking the terminated employee's account access. more . . . |
|
Preventing Identity Theft Part 2
It has been said that identity theft is the largest white collar crime in the history of the United States. In 2008, it was reported by the Federal Trade Commission that victims spent on average $1,200 in out-of-pocket expenses and an average of 175 hours in efforts to resolve the many problems caused by identity thieves. But there are some things that you can do to protect your personally identifiable information. more . . . |
|
Preventing Identity Theft Part 1
In 2008, there were 9.9 million US adult victims to identity fraud resulting in $48 billion in losses and damages according to a study by Javelin Strategy and Research. Financial institutions are developing and implementing new technologies to improve online and physical security of information and communication. Law enforcement is working closely with businesses, the financial sector, and consumers to identify and investigate the crimes and criminals. But there are some things that you can do to protect your personally identifiable information. more . . . |
|
YOUR MAILBOX HAS BEEN DE-ACTIVATED Phishing Scheme
YOUR MAILBOX HAS BEEN DE-ACTIVATED is yet another Email SCAM circulating across campus. ITCS reminds you to be alert for email scams, hoaxes and Phishing schemes. This Phishing scheme requests users to send their user name, password and email address to prevent de-activation of their mailbox. NEVER provide account information, password and other personal identifying information in reply to an email. more . . . |
|
October is National Cyber Security Awareness Month
National Cyber Security Awareness Month (NCSAM), conducted every October since 2001, is a national public awareness campaign to encourage everyone to protect their computers and our nation's critical cyber infrastructure. Avoiding phishing scams is the focal point for the ECU campus this year. Stay tuned this month for security tips and additional resources. more . . . |
|
Don't click the "unsubscribe" link
Spam filters are catching most unwanted e-mail, but some might still reach you. Most spam is designed to get you to respond with your own email or to click a link to "unsubscribe." When you respond or click the "unsubscribe" link, the sender takes your email address and adds it to a SPAM database of active email addresses. You might then start to receive a large amount of SPAM in your inbox. Do not respond or click the "unsubscribe" links. more . . . |
|
Protect Sensitive Data
Identity theft occurs when someone uses your personal information such as your name, Social Security number (SSN), credit card number or other identifying information, without your permission to commit fraud or other crimes. No one wants to go through the hassle of trying to clean up the mess that can occur as a result of identity theft. Therefore, it is to everyone's advantage to ensure that sensitive data is protected. more . . . |
|
Do not allow your web browser to store passwords for you
Web browser programs offer the option of "remembering" your password, but these programs have varying degrees of security protecting that information. A stored password allows any user who has access to your machine to log into your web accounts and even compromise many systems. In addition, there are numerous utilities that can expose that hidden information and actually reveal the password. Therefore, DO NOT check the "remember my password" option on your web browser. more . . . |
|
Email Safety
When a major news event happens, there is usually an increase of cyber criminals sending email with a subject line related to the event and including an attachment containing malware to infect your computer. For example, the United States Computer Readiness Team run by the Department of Homeland Security reported an increase in phishing, spam, and malicious code related to the deaths of Michael Jackson and Farah Fawcett. Staying safe online is always a combination of tools and behavior. Make sure key software such as the operating system and security software is up to date and use good judgment to avoid scams and phishing attempts. more . . . |
|
Why Use BCC?
BCC stands for blind carbon copy and is used to hide the email addresses of the recipients of messages. Benefits to using BCC are: <1> Prevent the harvesting of email addresses from the To and CC fields by Spammers. If you are sending messages to a diverse group of people, do not add their addresses to the To and CC fields but instead use the BCC field. <2> Avoid the embarrassment of someone replying to your message with a response that is NOT appropriate for all recipients on your distribution list. With BCC, the reply will go only to you. <3> Avoid that long list of Forwarded Email messages when recipients on a long distribution list continue to reply to everyone who is CC'd on the emails. Forwarded email messages frequently contain long lists of email addresses that were CC'd by previous senders. more . . . |
|
Could This Happen to You?
Cornell University informed more than 45,000 current and former members of the University community that their sensitive personal information - including name and social security number - had been exposed when a University-owned laptop was stolen. The breach exposed thousands to identity theft, and the University said it will provide free credit reporting, credit monitoring and identity theft restoration services to those affected by the breach. The files on the laptop were not encrypted and the laptop was left by a University employee in a physically unsecure environment, in violation of University's policy.
Don't download data from University Administrative systems to portable devices or local computers. Portable devices must be physically secured. When these practices are not followed, then security breaches like the recent Cornell University incident can happen to YOU! more . . . |
|
Phishing Scams
Phishing is a very prevalent Internet scam. Phony websites and email addresses are setup in hopes of tricking the user. more . . . |
|
Account Upgrade/Maintenance Email Scam
ITCS Security is alerting the campus to an e-mail scam. The "Account Upgrade/Maintenance All East Carolina University Webmail Accounts" is yet another e-mail SCAM circulating across campus. Please DO NOT respond to this e-mail that requests you to provide ECU account information. The scam e-mail appears to be from East Carolina University but it is not. ITCS reminds you to be alert for e-mail scams, hoaxes and phishing schemes. more . . . |
|
Twitter, the New Phenomenon
Twitter is a social networking and micro blogging service that allows you to answer the question, "What are you doing?" by sending short text messages 140 characters in length, which are called "tweets", to others, which are called "followers". Users can send and receive tweets through instant messaging, cell phones and the web. more . . . |
|
Sensitive Data and Mobile Devices
ECU employees have access to, and are responsible for protecting a wide variety of sensitive information such as medical information, credit card numbers, and students' academic records. Failure to take care of this information places people at risk of identity theft, misuse of personal funds, or unauthorized modification of information. The usage of mobile devices such as PDAs, Smart Phones, Blackberrys and laptops by faculty and staff has greatly increased and security on these devices is a growing concern. more . . . |
|
FBI Warns of Hit Man Scammer
The online Hitman scammer who threatens to kill recipients if they do not pay thousands of dollars to the sender, is still sending out thousands of emails and the FBI is again today warning users to ignore the spam and report any incidents to the Internet Crime Complaint Center. more . . . |
|
Help Kids Socialize Safely Online
Help your kids understand what information should be private.
Use privacy settings to restrict who can access and post on your child's website.
Explain that kids should post only information that you and they are comfortable with others seeing.
Remind your kids that once they post information online, they can't take it back.
Know how your kids are getting online.
Talk to your kids about bullying.
Talk to your kids about avoiding sex talk online.
more . . . |
|
Be Wary of Unsolicited Emails!!
Check and make sure your friend sent that great screensaver.A common method of transmitting malware is by infecting some unsuspecting user's computer and then using that computer to infect others. One simple way to do this is for a hacker to hijack your address book and send copies of the malware to everyone in it. Of course, YOU need to be enticed to run the malware, and the best way to do that is to fool you into thinking the attachment is something else. If a friend or acquaintance sends you a "great screensaver" or something like that, which you were not expecting, take a few minutes to confirm that person really sent it. If no,delete it. Visit www.sans.org for additional security tips. more . . . |
|
VERIFY YOUR EMAIL ACCOUNT NOW SCAM
VERIFY YOUR EMAIL ACCOUNT NOW is yet another Email SCAM circulating across universities. ITCS reminds you to be alert for email scams, hoaxes and Phishing schemes. This Phishing scheme requests users to send their password in a reply email. ITCS will NEVER ask you to send your password to them. NEVER provide account information, password and other personal identifying information in reply to an email. Always verify the source of requests for information. You are encouraged to check the IT Security website www.ecu.edu/itsecurity Safe Practices for tips on avoiding being scammed. more . . . |
|
Email Hoax Alert!
Gang Initiation email is just another Email Hoax. ITCS reminds users to be alert for email scams, hoaxes and Phishing schemes. Recently several email scams and hoaxes have been circulating across campus. Do not forward any emails that you are not certain is true. Delete the email. Never open email attachments that you are not expecting. ECU users are encouraged to check our IT Security website www.ecu.edu/itsecurity under Safe Practices for tips on avoiding being scammed. more . . . |
|
Can you hear me now? Do NOT trust your cell phone Bluetooth earpiece
Many cell phone Bluetooth hands-free earpieces have a default pin of 0000. A hacker with a Bluetooth antenna can connect to your earpiece and eavesdrop on everything that you are saying. In fact, they can even transmit to it. Think that's unlikely? Check out the YouTube video at: http://www.youtube.com/watch?v=1c-jzYAH2gw
more . . . |
|
IRS Scam Circulating
IRS Refund is just another Email Scam.
ITCS reminds users to be alert for email scams and Phishing schemes. Recently several of these scams have been circulating around to ECU accounts, and we have taken action to block these emails as we identify them. Despite our best efforts, occasionally one may still show up in your email.
Email Scams come in many different forms. If you receive one of these messages, do not respond to it (or any such scam). Delete the message. You can check the Scam Hoax website at http://www.snopes.com/crime/fraud/hitman.asp to determine if it is a known hoax. To avoid Phishing and Scams, do not reply to any email that requests your personal information. Be very suspicious of any email from a business or person that asks for your password, social security number, or other highly sensitive information. Delete the email.
ECU users are encouraged to check our IT Security website www.ecu.edu/itsecurity under Safe Practices for tips on avoiding being scammed. more . . . |
|
Passphrase Safety
A compromised Passphrase can risk disclosure of more than just an individual's e-mail and personal files. It almost always risks disclosure of other sensitive information related to student affairs, personnel issues, and patient care. Always use good practices when creating and using passphrases. more . . . |
|
|
|
|
