Social Engineering/Phishing
The largest threat today by far is social engineering. Social engineering is the use of deception to manipulate individuals into divulging confidential or personal information that may be used for fraudulent purposes. As most computers and networks contain security hardware and software, the easiest target is the user. The most common form of Social Engineering is Phishing. Phishing is the practice of sending emails purporting to be from reputable companies or a known acquaintance in order to induce you to reveal personal information.
To keep yourself from becoming a victim, keep in mind:
- Nothing is free
- If it sounds to good to be true, it is a SCAM
- Microsoft or someone claiming to represent Microsoft will NEVER call you
- Any message or phone call requiring immediate action that can be resolved with a payment from you is a SCAM
- If a payment can only be done by you acquiring gift cards, it is a SCAM
- If in doubt, tell the caller you want to verify their intent with someone you trust and you will call back. If they discourage that, it is a SCAM
Common SCAMS
- Grandparents receiving phone calls that the grandchild is in immediate need of bail money
- Calls stating your Social Security number has been suspended or similar
- Unsolicited phone calls offering technical support
- Messages appearing on a computer screen advising a phone number to call to resolve a technical issue
Although there are many types of phone call scams
there is one fool-proof solution
Hang Up
Keeping your computer safe at work
Always Lock Your Computer
Do Not Share Your Passwords
Keep Sensitive Information Encrypted
Use Caution When Sending Sensitive Information
Make Frequent Backups to Important Files
Keeping your computer safe at home
Keep your Operating System Up to Date
Use Strong Passwords that are Memorable Only to You
Be Aware of Phishing Scams
Use Encryption Whenever it is Possible
Set a password on your Wi-Fi
Personal Account Login Forms should be using "https://" rather than "http://" within your browser's search bar and make sure there is a padlock icon displaying the status of the secure location.