News

Letter from the CISO, Vol 4 Issue 7 WashU Community: Your mission for the holidays… The Mission Impossible TV series and movies often begin with “Your mission, should you choose to accept it…” As we approach the winter break and holidays, I propose you accept the mission of helping your family and friends improve their […]

The Office of Information Security (OIS) is always looking for ways to improve your security and reward your participation in helping to secure WashU. Back by popular request, the InfoSec team is continuing to assign the Inside Man series as our competition this December. The Inside Man is a soap opera-style training that covers critical […]

The holiday season can be a whirlwind of activity—travel, holiday events, and, for WashU students, wrapping up final exams. Amid the hustle and bustle, many in the WashU Community find themselves working or studying outside their typical environments. To help you stay secure while enjoying the season’s festivities, WashU’s Awareness, Behavior, and Culture (ABC) team […]

The Federal Bureau of Investigation warns the public about scams during the holidays. The big four scams of the season are:  According to the Internet Crime Complaint Center’s (IC3) 2023 report, non-payment and non-delivery scams cost people over $281 million that year. Credit card fraud accounted for another $264 million in losses.  Click with caution Don’t click any suspicious links […]

Provide consent to receive electronic delivery of your tax documents by December 31, 2024. This will allow you to receive your W-2 form online as soon as it is available in Workday. You will be notified by email in January when your electronic W-2 form is available. Manage printing elections of your tax forms in Workday and refer to […]

The Cleveland Clinic Foundation (CCF) recently agreed to pay $7,600,000 to resolve allegations that it violated the False Claims Act (FCA) by submitting to the National Institutes of Health (NIH) federal grant applications and progress reports in which CCF failed to disclose that a key employee involved in administering the grants had pending and/or active […]

Letter from the CISO, Vol 4 Issue 6 WashU Community: Over the past year, malicious actors have increasingly sought to compromise your accounts by impersonating you and trying to get customer service people to give them access to your accounts. We have seen this repeatedly at WashU, too. In response, we have improved our processes […]

Last month, I presented at the EDUCAUSE annual conference in San Antonio, Texas, with two of my Office of Information Security (OIS) colleagues—David Puzder and Madeline Quigley. Our talk, “Encouraging Security Culture through a Participatory Policy Project” focused on the OIS’ multi-year policy revision project.   Specifically, we wanted to tell the EDUCAUSE audience about 1) […]

Cybersecurity Awareness Month 2024 has come to a close, but our competition is still open! This is the last call to play ‘The Inside Man: New Recruits Game’ in KnowBe4. You must complete the game by November 22nd to be entered into the drawing for our Cybersecurity Awareness Month prizes:  Find the directions to access this […]

Many feel compelled to give in times of crisis. Charitable donations play a crucial role in providing aid after natural disasters and humanitarian emergencies. However, scammers often take advantage of this generosity, preying on good intentions. The WashU community can protect our contributions by recognizing legitimate charities and spotting the characteristics of scams.     Above is […]

Roselyn Rozario, Security Policy Advocate, will play a vital role on the InfoSec team by analyzing information security data to assess the impact of the Awareness, Behavior, and Culture (ABC) team’s initiatives and help shape strategies to better serve the WashU Community. In her role, Roselyn will also partner with members of the InfoSec team […]

Letter from the CISO, Vol 4 Issue 5  WashU Community:  I recently attended an executive education program on “Cyber Resilience” with Chief Information Security Officers (CISOs) from many large organizations, some even global enterprises, and it was amazing how similar our challenges are.  Cyber resilience is ensuring things keep working despite adverse cyber incidents  The […]

Cybersecurity Awareness Month 2024 is coming to a close. This year, we hosted two webinars, promoted key behaviors to encourage every employee to take control of their online lives, and published weekly newsletters full of content authored by the Office of Information Security.  Below, you will find a recap of some of the key events […]

As the holidays approach, many of us will be snapping photos and sharing our celebration recaps through various applications on our devices. While this connectivity can enhance our experience, it also exposes us to potential security risks. Understanding how our metadata—such as location, photos, and app-sharing permissions—can be compromised is crucial for maintaining our privacy […]