While October is the time to enjoy the fun of spooky season, it is also Cybersecurity Awareness Month—a reminder to stay alert and avoid real-life cyber scares.

Here are four simple tips to help you stay safe online:

1. Use the Duo Mobile app

Enable 2-factor authentication (2FA) on all your financial and social logins as an additional layer of protection in case your password gets stolen. The university requires 2FA in order for you to use your NetID login.

The Duo Mobile app is the easiest way to authenticate your university logins. If Duo detects a sign-in to your account that might not be legitimate, you will need to enter a passcode into Duo Mobile or call the 24/7 Support Center for assistance. You can also use Duo Mobile to authenticate other accounts, like PayPal and Instagram.

The 24/7 Support Center can help you set up Duo Mobile on your phone at any of the Tech Zone locations.

Do not approve a Duo authentication request unless you are the one logging in!

2. Recognize phishing and scams

Phishing isn’t just for email anymore—scams can come via text, voice mail, Direct Messages or even phone calls using artificial intelligence to impersonate someone’s voice. The offer often sounds enticing, like a high-paying part-time job or "can’t miss” deal. Scammers also use urgency to pressure you into acting fast before you have time to stop and think (“we’re deleting your university email” or “you must pay your account”).

• Verify the sender. Be cautious with email messages marked [EXT] (external) in the subject line or unknown senders. 

• Don’t click links. Or open attachments, or scan QR codes—unless you are certain they are safe.

• Protect your info. Never share your personal email or phone number with anyone you don’t know.

• Watch for payment scams. Don’t send gift cards, wire money, use crypto, or deposit checks for anyone you don’t know—these are common fraud tactics.

Visit the Phishing Alerts page for the latest scams sent to the campus community. You can also Report a Phish to notify our Information Security Office if you have received a scam.

Think before you click!

3. Use strong passwords

Create passwords that are hard to guess and unique for each account or service. Use memorable pass phrases and a password manager to generate and store passwords automatically for each site.

Never share your NetID password. To give family access to UAccess Student information, set up a Guest Center account. If you suspect your password has been compromised, change it immediately.

More information and tips are available on the Information Security Office Password Security page.

Don’t use the same password for multiple services!

4. Update software

Hackers constantly find new ways to exploit operating systems, applications and software. Regular updates fix those flaws, but you are only protected if you install them.

Don’t ignore that update message!

See the Information Security Office’s National Cybersecurity Awareness Month page for more resources on implementing these “Core 4” tips.