Stay Cyber Safe
SHARE

Protect Yourself

The following information is from the US Department of Homeland Security (US DHS) Cybersecurity and Infrastructure Security Agency (CISA).

CISA warns individuals to remain vigilant for scams related to Coronavirus Disease 2019 (COVID-19).

Cyber actors may send emails with malicious attachments or links to fraudulent websites to trick victims into revealing sensitive information or donating to fraudulent charities or causes.

Exercise caution in handling any email with a COVID-19-related subject line, attachment, or hyperlink, and be wary of social media pleas, texts, or calls related to COVID-19.

Read more information about Coronavirus related cybersecurity on CISA's website. 

Precautions

The Cybersecurity and Infrastructure Security Agency (CISA) encourages individuals to remain vigilant and take the following precautions.

Telecommuting

If you are working from home during the COVID-19 response, please note the following security recommendations: 

  • Employees who are using their own personal electronic devices should ensure that their use is in full compliance with their organization’s security policy, as well as their work rules, technical standards and mobile/personal device technical standards and policies. 
  • Do not download or save sensitive or confidential data to a personal device. If you inadvertently do save or download such data to your personal device, you should take immediate steps to permanently remove the data from your device by deleting it from the location where you have it stored, and then deleting it from your recycle or trash bin.   
  • Ensure that you have a strong password to protect access to your personal device and that that password is not shared with others, including friends and family.  Do not reuse your personal passwords for work purposes. Use complex passwords and change them in accordance with your agencies' policy. 
  • Do not accept "remember my password" prompts.  Securely log in each time you utilize remote access. 
  • Explicitly log out of all browser and virtual desktop sessions when not actively in-use, do not just 'X' out of the active window. If you do not log out, others with physical access to your device could gain unauthorized access to your organization's data.  
  • To the extent possible, ensure that your personal device is fully patched with the latest security patches.  
  • To the extent possible, ensure your personal device is using a current and up-to-date anti-virus/threat solution, a personal firewall, and a malicious content blocker for your web browser. Microsoft Windows devices come with Windows Defender which provides these things.
  • When traveling with your portable device, ensure that you keep it in your physical possession at all times.  
  • When utilizing Wi-Fi, ensure you only connect to known and secured networks. If use of public wi-fi becomes a necessity for connectivity, ensure that you explicitly ask the hosting organization (e.g., library, coffee shop) for the correct network to join. Be mindful of shoulder surfing and do not leave printed documents on public printers where they can be seen by unauthorized individuals. 
  • If your remote access device has been lost or stolen, you should immediately contact your supervisor and your organization’s information security officer or designated information security representative.

 Additional information is available from:

 

 

Active Warnings