Tag: newsletter volume 5 issue 7

Keeping Information Security Simple – “Only you can prevent cybercrime and save $10.5 Trillion” 

Open Letter

WashU Community:  Cybercrime is on track to cost the world over $10.25 trillion in 2025. That’s bigger than the illegal drug trade. If cybercrime was a country, it would be the third largest economy in the world, behind only the US and China. Amazing.  Unfortunately, many of the victims are fooled into thinking they are customers or investors. And since any of us, our friends, or our family members could […]

Holiday Scams – Money for Nothing 

One woman with Santa Hat lost her money to a credit card scam.

The big four scams of the holiday season are: According to the Internet Crime Complaint Center’s (IC3) 2024 report, non-payment and non-delivery scams cost people over $785 million that year. Credit card fraud accounted for another $199 million in losses.  Click with caution  Don’t click on any suspicious links or attachments in emails, on websites, or on social media. Not sure if the email in your WashU inbox is legitimate? Simply report the […]

Understanding Information Security Policies Made Easier with OIS’ Quick Reference Guides 

I am a WashU... Student Faculty Staff

Policies can be long and hard to read, but it is everyone’s responsibility to know and follow them. The Office of Information Security (OIS) has created policy quick reference guides to make it easier to learn about the tools and guidance you need to protect your data, adhere to university and regulatory requirements, and stay secure online. About OIS’ […]

Scam of the Month: Research Conference Form

"Hi David, Maria (maria@sponsor-brightfocus.org) has sent you a signature request. Registration_form Message from sender: Dear Professor, I hope this message finds you well. We are pleased to inform you that both your registration and accommodation for the upcoming Biology of Acinetobacter XIV have been fully covered and sponsored. To finalize your sponsorship, we kindly request that you complete the attached form. Please be assured that your card will not be charged; it is only necessary to secure the sponsorship for both the registration and accommodation. Should you have any questions or require further assistance, please do not hesitate to contact us. Thank you for your attention to this matter. Sincerely, Maria Review and Sign All signers are listed in the order of signing: maria@sponsor-brightfocus.org (Maria) [REDACTED]@wustl.edu (David) Do not forward this email as it contains a secure link to access the document. Learn how to sign or decline signature requests. Got this email by mistake or have questions? Contact Sender If you believe this email is suspicious, please report it."

The Office of Information Security caught a spear phishing campaign that often targets researchers who have signed up as speakers or presenters for a conference. Instead of targeting as many people as possible, like regular phishing campaigns, this scam focuses on a specific target or demographic. If you see an email registration form like the one below, […]

Meet Your InfoSec Team: Alesya Bernatskaya, IT Program Director

Alesta Bernatskaya

Alesya Bernatskaya officially joined the Office of Information Security (OIS) in September, but her impact on WashU’s cyber landscape goes way back. In her role as IT Program Director, Alesya leads the CyBear Project Management Office (PMO) within OIS. She has a group of project managers under her, and a business analysis team that reports through Alyssa Todd. Together with WashU IT and Distributed IT, they support the delivery of CyBear projects that fortify the university’s cyber defenses. With the program now housed under […]

Winners of the Cybersecurity Awareness Month Competition 

Trophy with five stars

The Office of Information Security held a competition for Cybersecurity Awareness Month that closed on November 21, 2025. WashU staff, faculty, and students were eligible to submit several entries to win up to $1,000 in Bear Bucks. Thank you to all who participated! Our winners have been selected and notified. The winners are from the following departments: Congratulations to the winners and […]

The Hidden Dangers of Unsupported Windows Versions

HIPAA Health Insurance Portability and Accountability Act

Running an old version of Windows might seem harmless—after all, “it still works.” But when Microsoft ends support for an operating system, that means no more security updates, no patches for new vulnerabilities, and no help when things go wrong. Hackers know this, and they actively target outdated systems because they’re easy to attack.  In a university environment, especially one that has access to […]

Stay In Sync: Keep WashU computers updated and secure

Stay in Sync. 30. At least Once a Month. 1 Day. Connect to the Network for a Day. Avoid Delays and Lockouts.

To receive mandatory security updates and check in with inventory systems, all WashU computers must be powered on at least once a month and connected to the system’s network at a campus location or through VPN.  Non-compliance means a device will not receive mandatory, critical security updates. This affects performance, security compliance and could result […]

Elect Only Electronic Delivery of Your Tax Documents

Form W-2 Wage and Tax Statement phrase on the page.

Provide consent to receive only electronic delivery of your tax documents by December 31, 2025. This will allow you to receive your W-2 form online as soon as it is available in Workday. You will be notified by email in January when your electronic W-2 form is available. Manage printing elections of your tax forms […]

Getting a new mobile device over the holidays?  Don’t forget to register it for Duo 2FA.

Registering a new mobile device, cellphone or tablet, during this holiday season for 2-Factor Authentication (2FA) can be simple. Check out these easy-to-follow instructions. If you already use Duo on an old phone, the easiest option is to add the Duo Mobile App to your iCloud or Android cloud backup. This will make the transition […]