Refresh your memory on cybersecurity best practices

Lo Que Pasa promoted Cybersecurity Awareness Month recently.

It's been more than six months since many University operations began working from home. In that time, most of them have found a rhythm and established a routine. But in at least one area – cybersecurity ­– University Information Technology Services leaders say employees cannot let their guard down.

October is National Cybersecurity Awareness Month, and Rhonda Royse, information technology security program manager for the Information Security Office, says it's a good opportunity to make sure you continue to follow best practices when it comes to protecting your personal and University data.

"While it's easy to say, 'I've been using Zoom for the past six months, I've got this down,' there are always people out there trying to understand how they can get into the system," Royse says. "We can never be complacent with security – especially when we're dealing with the sensitive information we use at the university level."

While employees have had six months to get used to Zoom and other technology designed to make working from home easier, malicious actors have had those same six months to adapt their methods. At the beginning of the pandemic, Royse says, many phishing attempts centered around phony coronavirus-related charity opportunities or offers for COVID-19 testing. Now, many involve fraudulent employment opportunities or someone portraying themselves as a supervisor asking an employee to perform a task.

As part of the effort to keep employees informed about different types of phishing scams, Royse and her team have developed a phishing quiz to help employees spot the difference between a phishing attempt and a legitimate email.

Get more of the interview and tips at Lo Que Pasa.