Cryptocurrencies—Look Before You Leap!

original post by Eric Weakland, EDUCAUSE   Cryptocurrency comes under many names. You have probably read about some of the most popular types of cryptocurrencies such as Bitcoin, Litecoin, and Ethereum. Cryptocurrencies are increasingly popular alternatives for online payments. Before converting real dollars, euros, pounds, or other traditional currencies into ₿ (the symbol for Bitcoin, […]

2FA—Control in the Palm of Your Hand

original post by Sandy Silk, EDUCAUSE   Wouldn’t it be nice if your accounts could let you know when someone new is trying to get into them? Even better, wouldn’t it be terrific to make a stolen password useless to others? Were you tricked into revealing your password through a phishing scam? Rest easy, your […]

Whaling, SMiShing, and Vishing…Oh My!

original post by Eric Weakland, EDUCAUSE   Cybercriminals use types of social engineering—manipulating people into doing what they want—as the most common way to steal information and money. Social engineering is at the heart of all types of phishing attacks—those conducted via email, SMS, and phone calls. Technology makes these sorts of attacks easy and […]

Take Control of Your Personal Info to Help Prevent Identity Theft

original post by Mark Napier, EDUCAUSE   The first full week of March is National Consumer Protection Week. The week is designed to help people make good financial decisions and understand their rights as consumers. Understanding your rights as a consumer can help you recover from identity theft. Identity theft has become a fact of life […]

2019 Tax Season Safety Tips

Tax season is a cybercriminal’s favorite time of the year. With a 60 percent increase in phishing email schemes targeting tax refunds in 2018, now is the time to be vigilant in protecting yourself from identity theft. The National Cyber Security Alliance (NCSA) has provided some ‘Take Action Tips’ for tax season. When in doubt, […]

A New Look for the Information Security Website

As we celebrate the new year and try to stick to those New Year’s resolutions, The Information Security Office (ISO) is excited to announce the launch of its new website! The new informationsecurity.wustl.edu is designed in a user-friendly format so you can learn about cyber security topics and quickly find information you need. Take some time this […]

Shop Safe – CyberSec Tips for Safe Online Shopping

The weather, the crowds, and the deals are just a few things that can make online holiday shopping irresistible. Not only can shopping be completed in a few simple clicks, but you can complete your entire shopping list from the comfort of your sofa. Still, each year cyber criminals find new ways to scam the growing number […]

Email Safety Training Aims to Heighten Cyber Threat Awareness

In November, the WashU Information Security Office (ISO) issued a mandatory email safety training in an effort to improve the university’s cyber defenses against phishing, a common cyber attack. The training focuses on identifying types of phishing schemes, recognizing the warning signs of scams and knowing who to contact if things seem phishy. Phishing is […]

Spring 2018: WashU 2FA Expands to Most WUSTL Key Integrated Systems

Beginning spring of 2018,  WashU 2FA two-step authentication provided by Duo, will expand to other WashU integrated systems that can be accessed on or off campus. This service is expanding in the effort to reduce the impacts of phishing campaigns. According to Dan Zweifel, director of Shared Infrastructure and WashU 2FA service owner, “Growing phishing email threats are leading the university to […]

Security Alert: Phone Call Phishing – April 9, 2018

ALERT: Phishing phone calls DETAILS: It has been reported that people claiming to be with the WashU IT Help Desk are calling in an attempt to extract personal and/or password information. ACTION: Do not provide anyone your password. Please keep your passwords private to protect yourself and the security of our network. If you have […]

October is National Cyber Security Awareness Month

October is National Cyber Security Awareness Month and the WashU Information Security Office (ISO) wants to take this opportunity to remind students, faculty and staff to be vigilant in protecting your personal information as well as university information. As the lines between our work and daily lives become increasingly blurred, developing habits and behaviors that […]

Security Alert: Office 365 Email Phishing on Campus – October 3, 2018

Risk: High Details: The Information Security Office has received reports of phishing emails purporting to be from BJC personnel, however, the email addresses are being spoofed and used against Wash U. The phishing samples have had infected DOC files attached referring to Outstanding Invoice or Balance Discrepancies. Action: Do not try to open any suspicious files you were […]