Tag Archives: Information Security

Digital Security & Year‑End Housekeeping 

TechNews, , ,

As you head off for conferences, fieldwork, or a hard‑earned vacation, give your digital life the same care you give your luggage. The checklist below combines summer‑travel security tips with end‑of‑academic‑year tasks so you start July with peace of mind and a clean slate.

Patch & Protect Before You Go

  • Install every update. Run operating‑system and app updates on laptops, tablets, and phones before departure—unpatched devices are prime ransomware targets.  See Keeping Your Computer Up to Date.
  • Turn on two‑factor authentication (2FA). Two‑factor authentication is already active with Sharkpass on your Simmons login—switch it on for your personal email, Google Workspace, cloud storage, and every other service that offers it to block most account‑takeover attacks.
  • Encrypt your devices. On your personal devices, use BitLocker (Windows) or FileVault (macOS); iOS and Android encrypt by default when you set a passcode. If the device is lost, your data stays protected.  We’ve done this on your Simmons-issued computer for you.
  • Consider, set up, and test a VPN. Public Wi‑Fi is never private; a VPN encrypts your traffic end‑to‑end.

Smart Habits on the Road

  • Avoid public USB charging ports. Stick with your own charger, a wall outlet, or a battery pack to dodge “juice‑jacking” attacks.
  • Use a privacy screen and choose seats wisely. Keep prying eyes off sensitive information in airports and cafés.
  • Keep devices in sight. Never leave laptops or phones unattended; if you must leave a laptop in a hotel room, secure it with a cable lock.
  • Watch for travel‑themed phishing. Summer brings fake flight‑change notices and hotel invoices—hover, pause, and verify before clicking.

Leaving Campus Safely

  • Appropriately backup and encrypt research data—especially anything covered by FERPA, HIPAA, or grant agreements—before you travel.
  • Store files in Google Drive rather than on USB sticks that are easily lost.

Quick Departure Checklist

  • Updates installed and encryption enabled
  • 2FA active on key accounts
  • Consider using a VPN, test and ready
  • Privacy screen in your carry‑on
  • Data backed up and safely stored
  • Required software licensed past June 30
  • (Graduating?) Files exported and devices sanitized, see Departing? Export Your Data

Questions? Contact the Service Desk at [email protected] or 617‑521‑2222.

Safe travels—and see you (and your data) back on campus in the fall!

21st annual Cybersecurity Awareness Month

Special News, TechNews, , , ,

Greetings Simmons Community,

As we enter October, we celebrate the 21st annual Cybersecurity Awareness Month. This year’s theme, “Secure Our World,” emphasizes the importance of daily actions to reduce online risks. As your Information Security Officer, I’m committed to fostering a secure digital environment for our entire university community.

Focus on the Human Element

This year, we’re highlighting the crucial role each individual plays in cybersecurity. By making smart decisions online, whether at work, home, or school, we can collectively enhance our digital safety.

Four Key Actions to Enhance Your Cybersecurity

  1. Enable Multi-Factor Authentication (MFA) Utilize SharkPass/Duo to add the extra layer of security provided to you for Simmons accounts to other third-party accounts.
  1. Use Strong Passwords Create unique, complex, strong passwords for all accounts. Consider using a password manager for added security.
  1. Recognize and Report Phishing Stay vigilant against unsolicited messages requesting personal information. Report suspicious emails to Technology.
  1. Update Your Software Regularly Ensure all your devices have the latest security patches and updates.

Cybersecurity in Education

Simmons University is proud to be designated as a Center for Academic Excellence in Cybersecurity Education by the NSA. This recognition underscores our commitment to preparing students for the evolving cybersecurity landscape. This prestigious recognition places Simmons among a select group of institutions nationwide dedicated to reducing vulnerabilities in national information infrastructure.

Stay Safe During Election Season

As we approach the 2024 election, it’s essential to be vigilant about cybersecurity. Here are key strategies to protect yourself:

Verify Voter Registration Sites

  • Check for Official Domains: Always look for .gov endings.
  • Go Directly to State Websites: Avoid clicking on links; use trusted sources like Vote.org.

Avoid Donation Scams

  • Use Trusted Platforms: Donate through ActBlue for Democrats and WinRed for Republicans.
  • Be Cautious with Informal Methods: Avoid sending donations via messaging apps.

Spot Misleading Political Ads

  • Check the Source: Look for credible references in ads.
  • Cross-Verify Claims: Use trusted news outlets to confirm information.

Navigate Social Media Safely

  • Fact-Check Surprising Claims: Use reliable sources like FactCheck.org.
  • Be Careful with Sharing: Avoid spreading unverified posts.

Protect Against Phishing

  • Be Wary of Unsolicited Messages: Don’t click links or download attachments from unknown senders.
  • Report Suspicious Emails: Notify Technology.

By practicing these strategies, you can help create a safer online environment during this critical election period.

Remember, cybersecurity is a shared responsibility. By working together, we can create a safer digital environment for our entire Simmons community.

Stay secure, 

Kristen Howard 

Simmons Information Security Officer

Information Security and Phishing

TechNews, , ,

For the fall of 2024, it is expected that approximately 20.7 million students will attend U.S. universities. This influx of students, faculty, and staff returning for the academic year presents increased opportunities for cybercriminals, who often exploit the busy start of the school year to launch their attacks​ (EdTech Magazine)​ (Proofpoint).

Phishing Attacks: Phishing attacks continue to be a significant threat, accounting for 36% of all data breaches in 2023. Currently, about 1.2% of all emails sent globally, which equates to nearly 3.4 billion emails per day, are malicious. This makes phishing one of the most prevalent cybersecurity threats, with educational institutions being particularly vulnerable due to their large and varied user bases​ (Proofpoint)​ (Pixel Privacy).

Protective Measures: To mitigate the risk of falling victim to these attacks, it is crucial to adopt robust cybersecurity practices:

  1. Be cautious of emails claiming urgency.
  2. Verify the sender’s email address.
  3. Watch for suspicious logos, signatures, or content.
  4. Check URLs before clicking; ensure they lead to official, encrypted sites.
  5. Think twice before opening attachments or clicking on links.
  6. Use different passwords for work, school, and personal accounts, and keep them secure.
  7. Regularly update devices, apps, browsers, and antivirus software.
  8. Delete sensitive information that is no longer needed.
  9. Backup your files regularly.

Common Scams Targeting Students: College students should be aware of common scams, including:

  • Fake emails offering “Part-Time” work.
  • Fake emails with “important information about your account” or issues with registration.
  • Tech support scams claiming issues with your computer.
  • Fake scholarship or textbook rental scams.
  • IRS scams demanding payment for a fake “federal student tax.”
  • Tuition reimbursement or student debt cancellation scams.
  • Requests for login information, passwords, or personal data.
  • Fake friend requests and misleading messages about shared documents.

These precautions and awareness can help protect against the growing wave of phishing and other cyberattacks targeting educational institutions and their communities​ (Pixel Privacy)​ (identitytheft).