You can unsubscribe at any time by sending an "unsubscribe" message to the same address.
12 May 2008: Credit report - defined
Most states have passed "credit freeze" laws, allowing individual consumers to lock their credit reports and, in theory, reducing their vulnerability to identity theft.
Read More >
5 May 2008: Phishers spoofing the HR Department
Phishers and hackers continue to get more creative and more sophisticated in their attacks, spoofing trusted managers' email addresses.
Read More >
28 Apr 2008: "Hi. How can I help you?"
Train your team to ask strangers "Hi. How can I help you?" The wording of that question is important.
Read More >
21 Apr 2008: What to do when you lose your wallet
My brother-in-law had his wallet stolen over the weekend. In the interest of learning from the misfortunes of others, here are some things to think about.
Read More >
14 Apr 2008: Web browser security settings
Your web browser is your primary connection to the Internet, either by reading web pages directly or through applications that use your browser to function. How you set the security makes a great deal of difference for your computer's safety.
Read More >
7 Apr 2008: Hoax messages about viruses
Just delete those "helpful" messages from your co-worker or college chum about the latest virus alert that no one else knows about.
Read More >
31 Mar 2008: Fake check scams
Eighteen percent of American admit that they or a family member have fallen for a scam email, phonecall or mail. The National Consumers League has a new website to help teach consumers how to recognize and fight off these scams.
Read More >
17 Mar 2008: Protect your computer from Spyware
Spyware is advertising-supported software that often installs itself on your computer without your knowledge in order to collect your personal information.
Read More >
10 Mar 2008: How not to look like a phish
The good news is that customers are getting better at identifying and deleting phishing messages. The bad news is that they are sometimes throwing away messages we wrote in good faith.
Read More >
3 Mar 2008: Annual credit report review
This tip was first run in March 2007. This is your annual reminder to review your credit report.
Read More >
25 Feb 2008: Phoner/toner scams
That polite young person who just asked about your printer model is running a scam. But it's not one you have to pay for if you know how to identify it.
Read More >
18 Feb 2008: Managing multiple passwords
Keeping all your passwords straight can be an almost impossible task. Here's a trick for making semi-customized passwords that will be easy to memorize but still unique to each site.
Read More >
11 Feb 2008: Firewalls
Firewalls protect your computer by filtering legitimate from illegitimate traffic. If you don't have one, you need one.
Read More >
04 Feb 2008: Hackers do it for the money
Every so often, people ask me "why do they do it?" Why can't the hackers channel all that energy and innovation for good instead of cybercrimes and spam?
Read More >
28 Jan 2008: Never share your password
As a user, you should never share your password. As a manager, you have to make that rule possible.
Read More >
21 Jan 2008: Patches (defined)
Security geeks often talk about keeping your computer "patched". Here's what we mean and why it's so important.
Read More >
14 Jan 2008: Most Americans overestimate their cyberprotection
According to a recent poll, 87% of Americans think they have anti-virus software. More actually do but only 52% have it updated and working properly.
Read More >
7 Jan 2008: Resolve to make stronger passwords in 2008
If your password is your New Year's resolution, not only does the length of the phrase make for a very strong password but the repetition might help you keep it a little longer.
Read More >
10 Dec 2007: Configuring an electronic gift
If you're getting an electronic gift this holiday season, know how set it up safely.
Read More >
3 Dec 2007 : CMU Anti-Phishing Game
How good are you at identifying a phishing con? Do you delete the message or do you take the bait? How often can you get hooked?
Read More >
26 Nov 2007: Tailgaters are a danger to everyone
Tailgating is the art of acting like you belong and of using social pressure to convince people to ignore their own rules and policies.
Read More >
19 Nov 2007 : Recovering from a virus
Viruses, worms and Trojan horses don't get much attention anymore but they're still out there. Do you know what to do when your computer becomes infected?
Read More >
12 Nov 2007 : Hotel key-cards contain private information - HOAX
Have you received the latest email "alert" about protecting your old hotel key-cards from identity thieves?
Read More >
5 Nov 2007: Home shredders
Do you have a shredder at home? You need one.
Read More >
29 Oct 2007: Email can come back to haunt you
This "encore tip" from October 2006 is a reminder to be especiallly professional in email.
Read More >
22 Oct 2007: Create a "_readme" for folders
Creating a little "readme" file is a start to better management of the ad-hoc documents in shared and personal folders.
Read More >
15 Oct 2007: A Parent's Guide to Internet Safety
The internet is a wonderful opportunity to tap into new sources of knowledge and gain exposure to cultural experiences that we could not even imagine when we were children. Yet it can also expose children to exploitation and harm. How do you strike the right balance between caution and over-protection?
Read More >
8 Oct 2007: Shredding is a Federal requirement
Shredding is about the only cost-effective way to comply with the FTC reg. Have a simple, easy-to-enforce "shred everything" rule backed up by a reputable vendor.
Read More >
24 Sep 2007: Email spoofing
Ever received an error message about an email that you didn't send or wondered why a coworker is sending you ads for Viagra? Ever received spam from yourself? You've just seen spoofing in action.
Read More >
17 Sep 2007: Active Content - defined
If you've ever gotten the "Active Content blocked" warning and wondered whether you should allow it or not,
Read More >
10 Sep 2007: Cyber-privacy
Online privacy is hard to achieve - and impossible if you don't work at it.
Read More >
4 Sep 2007 : Phishing for senior executives
Last week, Westfield's top executives were targetted with very specific phishing email alleging to be from the Better Business Bureau.
Read More >
27 Aug 2007: All I really need to know about cybersecurity ...
... I learned in Kindergarten.
Read More >
20 Aug 2007 : Hackers go commercial
For only $700, you too can become a hacker. New hacker tools are as easy to use and as well supported as any commercial software package.
Read More >
13 Aug 2007 : Password security
Passwords are only useful if they are kept secret. That sounds obvious but we are still finding users who tape their passwords to the computer or "hide" them in an unlocked desk drawer.
Read More >
6 Aug 2007: Email alerts about cell phones are a hoax
Ignore any email warning you receive that your cell phone number is about to be release to telemarketers unless you sign up for the Do Not Call Registry.
Read More >
30 July 2007: Ohio Breach update
If you live in Ohio, by now you've heard about the loss of the computer backup tape and are wondering what to do if you're part of the one in six taxpayers estimated to be affected.
Read More >
23 July 2007: New Scams - continued
Last week, we highlighted two of the recent explosion of new scams and frauds. Here are two more examples. Always be alert for suspicious messages and never give out confidential information unless you are absolutely sure who's on the other end of the line.
Read More >
16 July 2007: New Scams
In the past few days, there have been a surprising number of new electronic scams discovered or announced. Here are just a few examples. Be on the alert for messages that seem fishy and never give out confidential or personal information unless you are absolutely sure who you are talking to.
Read More >
9 July 2007: "You've received a greeting ecard" trojan horse
Someone has recently launched an aggressive campaign using pre-packaged software that combines the worst aspects of spam and malicious software and is exploiting the popularity of e-cards.
Read More >
2 July 2007: ID Theft by a family member
Despite all the media hype about hackers, security breaches and lost laptops, research shows that just over half of all identity theft is committed by someone close to the victim - a family member or close friend - and that most ID theft is based on paper documents. Are you prepared to deal with the consequences of prosecuting Grandma?
Read More >
25 June 2007: Cookies - defined
A cookie is a tasty treat, but it's also a small string of text that's used to keep track of your computer when you browse the Internet.
Read More >
18 June 2007: FBI Botnet Investigation
The FBI just announced the largest ever cybercrime investigation to disrupt and dismantle "botnets" and to prosecute some of the ringleaders in these criminal activities. So far, they have identified about 1 million compromised computers across the country.
Read More >
4 June 2007: Have an information-safe vacation
Before you leave on vacation, there are some steps that you should take to reduce your risk of fraud and identity theft.
Read More >
21 May 2007: Use low-resolution graphics to control file size
All sorts of problems come with an e-mail box that gets too large. One technique to control the size of files is to use lower-resolution graphics whenever possible. Make sure that your staff have lower-resolution versions available for all your official logos and graphics.
Read More >
14 May 2007: Sober worm resurfaces
A new variant of the old Sober computer worm is back. It uses social engineering to con the user into opening the malicious attachment. Be alert for scam emails with variations of this wording.
Read More >
7 May 2007: Automated ACH scam
A new scam has been discovered which exploits a hole in many banks' automated clearinghouse process and allows the scammer to debit your bank account directly. It can be detected but the real only defense against this particular attack is to watch your bank account carefully.
Read More >
30 April 2007: CVS sued over improperly destroyed records
Proper destruction of records is not just a good idea, it's the law. And good companies are being sued when they fail to live up to their obligations, even if it's unintentional. All papers should be shredded when they are no longer necessary.
Read More >
23 April 2007: VIP cons
Four folks were given special treatment in the parking garage of a local sports game. It turns out that the "special treatment" was a scam to "mark" their car for burglary. When someone's offering you a service that seems to good to be true, it probably is. Be extra cautious (and a little suspicious) when someone is giving you unexpected special treatment.
Read More >
16 April 2007: Google Desktop is evil
Okay, that's a bit of an overstatement but it is a security professional's nightmare. Unless you have a dedicated security team who can make sure that your configuration is exactly correct, Google Desktop should not be allowed on any corporate computer holding confidential information.
Read More >
9 April 2007: Drive-by router vulnerability
If you have a home network or wireless router, it can add a layer of security to your computer. But if you haven't changed the default password on your home router, that can be worse than doing nothing. Change the password immediately.
Read More >
2 April 2007: How do you get rid of an old computer?
It's time for spring cleaning and you finally want to get rid of that old computer that's been gathering dust for so long. What will you do with the old one? You can't just give it away or sell it. There are thieves who specialize in buying used computers just to search them for private or financial informaiton.
Read More >
26 March 2007: Hackers attack computers every 39 seconds
In the time it takes you to read this entry, two hackers will try to get into your computer.
Read More >
19 March 2007: Anti-Virus Software comparisons
virus writers have become increasingly sophisticated in both their techniques and their goals. Many good anti-virus packages are available.
Read More >
12 March 2007: Annual credit report review
This is your annual reminder to request your credit report. Under the Fair and Accurate Credit Transactions Act (FACTA), every consumer is eligible for a free copy of his/her credit report every 12 months. Follow the instructions at www.annualcreditreport.com to request your credit report.
Read More >
26 February 2007: Ask before responding to Phone Surveys
If someone offered you $200 for a few minutes of your time answering a phone survey, who wouldn't jump at it? Think first about why they think your answer is worth so much. Is this a legitimate survey or the first step in a scam?
Read More >
19 February 2007: Using "Temporary" shared drives
Many companies have a shared drive set aside for "temporary" use. When used properly, this can be an efficient way to share short-term documents across the organization and to minimize email bloat. Too often, documents posted to these "temporary" folders are hardly temporary.
Read More >
12 February 2007: No Tailgating
Every company needs have a policy about visitors and needs to enforce a strict "no tailgating" policy. Visitors should always be signed in and out of your facility and should always be escorted while in any non-public part of your facility.
Read More >
5 February 2007: Security Planning
As a general rule of thumb, it costs 40 times as much to fix the security of a project after the fact as it would have cost to build security in at the front of the project. Call the Information Security team in your IT department for help identifying and prioritizing risks.
Read More >
27 January 2007: Personal Email Accounts
Many people keep a personal email account separate from their work email address. This practice has several advantages but a few cautions as well.
Read More >
22 January 2007: Photocopy your wallet
If your wallet is ever lost or stolen, you need to immediately contact the issuers of all the credit cards and identity documents and begin the process of getting new cards. If you have a recent copy of the contents, your job will be much easier.
Read More >
19 January 2007: "Storm Warning" email worm
Hackers are trying to exploit the storms which have been hitting Europe by sending out emails that imitate sensational news stories. If you open the attachment in the message, you will expose your system to a computer worm.
Read More >
15 January 2007: Anti-Phishing Toolbar Review
Phishing is a continuing and serious problem and several companies are now offering toolbars to attempt to address the problem. Unfortunately, despite all the marketing hype, a recent independent study of these tools found them to be of only limited use.
Read More >
8 January 2007: Phishing IQ Test
How good are you at sorting out the phishing emails from the legitimate requests? Take the Phishing IQ test to see how you are at sorting the good from the bad.
Read More >
2 January 2007: Resolve to pick stronger passwords in 2007
A surprising number of people still think that January07 is a good password. And while that passes the Microsoft password-complexity rules, it is remarkably easy for a hacker to crack. Whole sentences make much stronger passwords - and they're easier to remember and to type.
Read More >
18 December 2006: Secure Shopping
Know what to look for when you're shopping online.
Read More >
11 December 2006: Pump-and-dump — bypassing the spam filters
A review of some of the current techniques used by spammers to bypass your spam filters.
Read More >
4 December 2006: Spam trends - Updated
Spam now makes up as much as 90-95% of all traffic on the internet.
Read More >
28 November 2006: Stored password vulnerability
If you have your internet browser set to store your usernames and passwords, disable it immediately.
Read More >
27 November 2006: Computer Security Day
Thursday, 30 November is the International Computer Security Day.
Read More >
20 November 2006: Pump-and-dump scams
"Pump-and-dump" stock scams have been around for as long as there have been stock markets. Now the scammers are exploiting email to con even more suckers who think they can get rich quick.
Read More >
13 November 2006: New phishing attacker pretends to be a journalist
More on targeted phishing attacks.
Read More >
6 November 2006: Pink slip scam
Email scammers have been developing some creative new attacks lately which play on human fears, insecurity and/or vanity. This scam uses fraudulent pink slips.
Read More >
30 October 2006: Email can come back to haunt you
A hasty word can return to haunt you long after you hit the send button and thought the conversation was over.
Read More >
23 October 2006: Trends in Phishing
In 2005, 43% of US adults received at least one fraudulent email. Of those, about 1 in 20 - or 4.5 million people - provided the requested information and about half of those ended up being victims of theft or identity fraud.
Read More >
19 October 2006: iPods shipped carrying a computer virus
Apple recently announced that some of the iPod digital music players shipped over the last month carried a computer virus.
Read More >
16 October 2006: Overpayment scams
If someone offers to pay you more than you asked for, be suspicious. There are several ways they can turn that "overpayment" into a theft.
Read More >
9 October 2006: Multi-Factor Authentication - defined
Authentication means knowing who is on the other end of the line. Multi-factor authentication means relying on two separate ways of confirming who is there.
Read More >
2 October 2006: Banking Authentication Scam
Many scammers are exploiting the confusion as banks to implement multi-factor authentication. Know what to look for.
Read More >
25 September 2006: Scam preys on sympathy for deployed soldiers
IC3 has received reports of multiple email hoaxes claiming to be from a soldier deployed to Iraq.
Read More >
11 September 2006: Private information on cell phones
How much private information is on your phone? How will you clean it off when you're ready to get a new phone?
Read More >
4 September 2006: Storm Warnings
US-CERT is warning of an increase in phishing and other fraud sites related to the hurricane season.
Read More >
21 August 2006: ATM Skimmers
ATM skimmers teal your card number and PIN as you use the card. Know what to look for.
Read More >
14 August 2006: Keystroke Logger - defined
Keystroke loggers are small tools which covertly capture the user's keystrokes on his/her computer.
Read More >
10 July 2006: Remembering your passwords
Is it still realistic to ask people to memorize every password we give them? What's the alternative?
Read More >
5 June 2006: Keep sensitive information out of email
Your email is a postcard. Anyone can read it. Don't put anything in email that you want to keep confidential.
Read More >
8 May 2006: How to stay off spam lists
Here are some tips to minimize your chances of being targeted for spam.
Read More >
10 April 2006: Viruses, Worms & Trojan Horses - defined
A virus is a piece of software code that, like a biological virus, makes copies of itself and spreads by attaching itself to a host.
Read More >
6 March 2006: Identity Theft
Identity theft is the fastest-growing crime in North America. Do you know how to protect yourself?
Read More >
Supplemental copyright notice: This information is released under the Gnu Free Documentation License and may be freely shared or reused in accordance with that license.
