Presentation is loading. Please wait.

Presentation is loading. Please wait.

Safe Computing Protect your electronic profile means protecting You and Case Information Security Office, ITS Case Western Reserve University 2015 Information.

Published byArabella Atkins Modified over 8 years ago

Similar presentations

Presentation on theme: "Safe Computing Protect your electronic profile means protecting You and Case Information Security Office, ITS Case Western Reserve University 2015 Information."— Presentation transcript:

1 Safe Computing Protect your electronic profile means protecting You and Case Information Security Office, ITS Case Western Reserve University 2015 Information Security Office Information Technology Services Security.aware.case.edu

2 Please DoSeriously…….Don’t Use Google Apps for work you don’t want to lose (email; docs; sheets, etc…) Click on links in emails Use Google Apps for work you do as a a team Use portable media or rely on your computer drive to save everything and not be stolen Change your password often Share or reuse your password; OR inadvertently answer questions you’ve used in password security questions Practice clean screen/clean desk Leave your screen unlocked; walk away from your computer. Use different browsers for school work vs personal work Use the same password on non school related Apps Information Security Office Information Technology Services

3 Don’t Click on Links in Emails FBI Warning - Business E-Mail Compromise An Emerging Global Threat 08/28/15 The accountant for a U.S. company recently received an e-mail from her chief executive, who was on vacation out of the country, requesting a transfer of funds on a time- sensitive acquisition that required completion by the end of the day. The CEO said a lawyer would contact the accountant to provide further details. “It was not unusual for me to receive e-mails requesting a transfer of funds,” the accountant later wrote, and when she was contacted by the lawyer via e-mail, she noted the appropriate letter of authorization—including her CEO’s signature over the company’s seal—and followed the instructions to wire more than $737,000 to a bank in China. Don’t Click on Links

4 Don’t Click on Links in Emails – Phishing: appear real, but are fraudulent emails intending to compromise credentials for financial or other gain – Real and significant threat to you and if you’re compromised, may present threat to university’s data – Most incidents or breaches are due to human error (inadvertent and/or intended) – When in doubt, forward to help@case.edu Don’t Click on Links

5 Don’t Click on Links in Emails Don’t Click on Links

6 Don’t Click on Links in Emails – Spear Phishing Looks real ! Targeted emails with convincing messaging or from a known friend or entity Expresses urgency – Eg: your account is about to expire – Eg: important student aid document attached – Spelling/Grammar Has typos Awkward use of western English (eg: “kindly” or British spellings of words) Information Security Office Information Technology Services

7 Don’t Click on Links in Emails Email Looks real ? Hover over the URL in the email; it won’t match the supposed message or email purpose ITS sends many emails; ensure that they’re legitimate before you take action requested in email – EG: your account is about to expire, change your password – EG: your email has met its capacity, click here to increase storage or space capacity Information Security Office Information Technology Services

8 Other Critical Info: to protect yourself – Know PII, PHI, FERPA, AUP Personal Identifiable Info Personal Health Info Acceptable Use – (not ok to attack fellow students electronically or misuse the university systems) – Family Ed. Rights & Privacy Protects info in educational records Except where law or law enforcement requires access – What’s public & what’s not- care for your data Information Security Office Information Technology Services

9 Popular Password (easily breakable) Popular Passwords 000000 123123 access Test Games Apache Password Fred Fax Redhat WWW Public Nokia Nobody Setup Upload Asterisk Chocolate Temp Patrick News F**** Backup User Student 1q2w3e Rootadmn Secret Don’t use same password everywhere Information Security Office Information Technology Services

10 Final Notes/Take Away/Don’t Forget/Please – Do NOT click on links in emails – Danger to you and university – Know what data is restricted and what’s public (graduation date vs SSN) – DO NOT CLICK ON LINKS in emails – If you do, contact help@case.edu as soon as possiblehelp@case.edu Information Security Office Information Technology Services

11 From Case’s Chief Info Security Officer (CISO) Tom Siu – Primary account compromise is via phishing and malware – Do NOT click on links in emails – Contact Help@case.edu if you receiveHelp@case.edu a suspicious email Information Security Office Information Technology Services

Download ppt "Safe Computing Protect your electronic profile means protecting You and Case Information Security Office, ITS Case Western Reserve University 2015 Information."

Similar presentations

MFA for Business Banking – Security Code Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing these QT sheets.

MFA for Business Banking – Security Code Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing these QT sheets.
How to protect yourself, your computer, and others on the internet

How to protect yourself, your computer, and others on the internet
ANNUAL SECURITY AWARENESS TRAINING – 2011 UMW Information Technology Security Program Annual Security Awareness Training for UMW Faculty and Staff.

ANNUAL SECURITY AWARENESS TRAINING – 2011 UMW Information Technology Security Program Annual Security Awareness Training for UMW Faculty and Staff.
What is Bad ? Spam, Phishing, Scam, Hoax and Malware distributed via

What is Bad ? Spam, Phishing, Scam, Hoax and Malware distributed via
HIPAA Basic Training for Privacy & Information Security Vanderbilt University Medical Center VUMC HIPAA Website: www.mc.vanderbilt.edu/HIPAA.

HIPAA Basic Training for Privacy & Information Security Vanderbilt University Medical Center VUMC HIPAA Website:
This tutorial will take approximately 15 minutes. Click here to advance. Click here to go back.

This tutorial will take approximately 15 minutes. Click here to advance. Click here to go back.
Copyright © 2014 Merck Sharp & Dohme Corp., a subsidiary of Merck & Co., Inc. All rights reserved. In practice, how do we recognize a potential Privacy.

Copyright © 2014 Merck Sharp & Dohme Corp., a subsidiary of Merck & Co., Inc. All rights reserved. In practice, how do we recognize a potential Privacy.
DHS SECURITY INCIDENT REPORTING AND RESPONSE SECURITY INCIDENT REPORTING AND RESPONSE DHS managers, employees, and other authorized information users.

DHS SECURITY INCIDENT REPORTING AND RESPONSE SECURITY INCIDENT REPORTING AND RESPONSE DHS managers, employees, and other authorized information users.
Sensitive Data Accessibility Financial Management College of Education Michigan State University.

Sensitive Data Accessibility Financial Management College of Education Michigan State University.
Security Liaisons Information Presentation. Introduction  What’s the big deal with computer security? Don’t we have an IT security department to take.

Security Liaisons Information Presentation. Introduction  What’s the big deal with computer security? Don’t we have an IT security department to take.
Information Security Decision- Making Tool What kind of data do I have and how do I protect it appropriately? Continue Information Security decision making.

Information Security Decision- Making Tool What kind of data do I have and how do I protect it appropriately? Continue Information Security decision making.
Information Security 2013 Roadshow. Roadshow Outline  Why We Care About Information Security  Safe Computing Recognize a Secure Web Site (HTTPS) How.

Information Security 2013 Roadshow. Roadshow Outline  Why We Care About Information Security  Safe Computing Recognize a Secure Web Site (HTTPS) How.
PHISHING AND SPAM EMAIL INTRODUCTION There’s a good chance that in the past week you have received at least one email that pretends to be from your bank,

PHISHING AND SPAM INTRODUCTION There’s a good chance that in the past week you have received at least one that pretends to be from your bank,
Information Security 2013 Roadshow. Roadshow Outline  Why We Care About Information Security  Safe Computing Recognize a Secure Web Site (HTTPS) How.

Information Security 2013 Roadshow. Roadshow Outline  Why We Care About Information Security  Safe Computing Recognize a Secure Web Site (HTTPS) How.
GOLD UNIT 4 - IT SECURITY FOR USERS (2 CREDITS) Thomas Jenkins.

GOLD UNIT 4 - IT SECURITY FOR USERS (2 CREDITS) Thomas Jenkins.
University Health Care Computer Systems Fellows, Residents, & Interns.

University Health Care Computer Systems Fellows, Residents, & Interns.
Update on Privacy Issues at USU October 10, 2013.

Update on Privacy Issues at USU October 10, 2013.
Updating your center profile and compliance information online The center's primary contact and executive director each have access to center account information.

Updating your center profile and compliance information online The center's primary contact and executive director each have access to center account information.
If you elected to have your Naviance account activated, enter the information you received via your e-mail from Naviance. If you do not have an active.

If you elected to have your Naviance account activated, enter the information you received via your from Naviance. If you do not have an active.
A Matter of Your Personal Security Phishing Revised 11/30/15.

A Matter of Your Personal Security Phishing Revised 11/30/15.

Similar presentations

Ads by Google