Security

Be Alert to Tech Support Fraud

Support fraud involves criminals contacting you to fix ostensible technology problems. Their methods include phone calls, web pop-ups and sending emails. Although this type of fraud been around for many years the level of sophistication of the attacks has grown. Recently we’ve received reports of scammers pretending to be Microsoft… Continue reading »

Be on alert for tax scam emails and phone calls

During tax season you are likely to receive fake scam emails which appear to be from the IRS or Williams regarding returns, e-files, W-2s and 1099s. Keep in mind the IRS doesn’t initiate contact with taxpayers by email, text messages or social media channels to request personal or financial information. Continue reading »

Another phishing attempt: “Employee Service 2018”

Similar to what many people received yesterday, a scam email, this time with the subject “Employee Service 2018”. There is a link which takes you to a site which looks very similar to our PeopleSoft login. If you visited the site and entered your PeopleSoft account information your password will… Continue reading »

Software updates to patch Meltdown and Spectre

You may have seen news articles this week about two significant new flaws found in computers, smartphones, tablets and other devices, called Spectre and Meltdown. These flaws impact the computer processors (CPUs) that are in the heart of all the computerized equipment you own and use every day. These flaws… Continue reading »

Holiday Traveling with Personal Internet-Enabled Devices

Know the risks Your smart phone, tablet, or other device is a full-fledged computer. It is susceptible to risks inherent in online transactions. When shopping, banking, or sharing personal information online, take the same precautions with your smart phone or other device that you do with your personal computer —… Continue reading »

Critical Exploit in Mac OS High Sierra

Last night a vulnerability in Mac OS High Sierra was publicized. To summarize, it allows someone to gain admin access to your mac by using the root account and a blank (!) password.  This flaw affects all versions of Mac OS High Sierra (OS 10.13.x). It does not affect PCs,… Continue reading »

Be Aware of Holiday Scams and Campaigns

US-CERT (United States Computer Emergency Readiness Team) reminds users to remain vigilant when browsing or shopping online this holiday season. Emails and ecards from unknown senders may contain malicious links. Fake advertisements or shipping notifications may deliver attachments infected with malware. Spoofed email messages and phony posts on… Continue reading »

Use Caution With Email Attachments

Many familiar attachment types can be used to deliver viruses –  including PDFs, Word documents, zip files and PowerPoints. Recent examples have come in as invoices or bills, but they can also appear to be normal documents from people you know. The US Computer Emergency Readiness Team (US-CERT) has many good… Continue reading »

Important! Windows and Mac OS updates- verify NOW

Along with the WannaCry cryptolocker vulnerability from May the recent cracking of the WPA2 wi-fi security protocol is a reminder that Operating System updates are one of the main protections against such threats. Please take the time RIGHT NOW to verify your Mac or PC computer is up to date. Continue reading »

OS updates

Vulnerabilities in Windows and Mac OS are discovered all the time.  Microsoft and Apple release critical updates (patches) to remove these vulnerabilities.  It is important for you to allow these updates to install, and also to check occasionally to be sure you are receiving them correctly. Please verify your Windows… Continue reading »

Disasters and Data Breaches, Watch for Scams

No doubt you’ve seen the headlines about the data breach at Equifax, a credit-reporting company, which affects as many as 143 million individuals. While there is no correlation between Williams and this breach, we wanted to take a few moments to increase awareness of the situation, which may likely impact… Continue reading »

July 2017 Security: What to do when you’ve been hacked

Face it: Hackers Gonna Hack. Compromised accounts happen. Quick identification and response can reduce the harm done to your accounts and your personal information. Educause has come up with some remediation steps for you to follow. First, how can you tell if you’ve been hacked or scammed in the first place? Clever hackers… Continue reading »

June 2017: Basic Steps to Online Safety and Security

The National Cyber Security Alliance has recommendations to help protect yourself online. Among the most important, set up 2-factor authentication on your accounts (available for Williams Google) and use a good passcode or bio lock on your smartphones and tablets. Read the full message for more tips. https://web.williams.edu/messages/show.php?id=43029  … Continue reading »

WannaCry malware (ransomware) warning

You have likely heard about a new form of cyberattack which utilizes a threat called ransomware.  The WannaCry/WanaCrypto 2.0 worm is exploiting Windows 7 computers which have not installed a Microsoft patch that was released in March.   When the virus acts… Continue reading »

Fix for Google Doc scam

Good news.  Google has been cleaning up compromised accounts by revoking the privileges of the fake doc that was sent around earlier today. So if you fell for the Google doc scam (meaning you tried to open the doc and then clicked ALLOW) then you are likely ok now.  To… Continue reading »

April EDUCAUSE security post: Protect your identity!

According to the US Department of Justice, more than 17 million Americans were victims of identity theft in 2014. EDUCAUSE research shows 21% of college students have had an online account hacked, and 14% have had a computer, tablet, or smartphone stolen. The following tips can help you prevent identity… Continue reading »

Security Post: Technology tips when travelling

Spring break is a common time to travel. Bringing your smartphone or laptop carries some risks. These devices store a lot of information – email, contacts, photos, videos and other personal and financial data – about ourselves and our friends and family. Following are some tips to reduce your risk. Continue reading »

January Security Post: Keep What’s Private, Private

You exist in digital form all over the Internet. Guard your privacy, not just to avoid embarrassment but also to protect your reputation and finances. Following are specific steps you can take to protect your online information, identity, and privacy. Turn on 2-step verification: https://oit.williams.edu/help-docs/2-factor-authentication/ A second authentication protects… Continue reading »

December security post: Managing your online reputation

Social media sites help you stay connected both personally and professionally, but the information you share can provide fodder for phishing attacks, identity theft, or allow people to make negative assumptions about you. Please check a sites privacy and security settings to manage your online public presence.   The most… Continue reading »

Cybersecurity month tip #2: Using 2 factor authentication

Your password can be exposed through a number of methods like phishing, a compromised computer or website, a rogue WiFI setup or a breached service. Fortunately we have a system available that can prevent anyone from accessing your Williams google account even if they know your password. Two-factor authentication (also… Continue reading »

  • 1
  • 3
  • 4