Skip to main content

Security Tips

Social Engineering/Phishing

The largest threat today by far is social engineering.  Social engineering is the use of deception to manipulate individuals into divulging confidential or personal information that may be used for fraudulent purposes.  As most computers and networks contain security hardware and software, the easiest target is the user.  The most common form of Social Engineering is Phishing.  Phishing is the practice of sending emails purporting to be from reputable companies or a known acquaintance in order to induce you  to reveal personal information.

To keep yourself from becoming a victim, keep in mind:

  • Nothing is free
  • If it sounds to good to be true, it is a SCAM
  • Microsoft or someone claiming to represent Microsoft will NEVER call you
  • Any message or phone call requiring immediate action that can be resolved with a payment from you is a SCAM
  • If a payment can only be done by you acquiring gift cards, it is a SCAM
  • If in doubt, tell the caller you want to verify their intent with someone you trust and you will call back.  If they discourage that, it is a SCAM

Common SCAMS

  • Grandparents receiving phone calls that the grandchild is in immediate need of bail money
  • Calls stating your Social Security number has been suspended or similar
  • Unsolicited phone calls offering technical support
  • Messages appearing on a computer screen advising a phone number to call to resolve a technical issue

Although there are many types of phone call scams
there is one fool-proof solution
Hang Up

Keeping your computer safe at work

Always Lock Your Computer

Do Not Share Your Passwords

Keep Sensitive Information Encrypted

Use Caution When Sending Sensitive Information

Make Frequent Backups to Important Files


Keeping your computer safe at home

Keep your Operating System Up to Date

Use Strong Passwords that are Memorable Only to You

Be Aware of Phishing Scams

Use Encryption Whenever it is Possible

Set a password on your Wi-Fi

Personal Account Login Forms should be using "https://" rather than "http://" within your browser's search bar and make sure there is a padlock icon displaying the status of the secure location.