Information Security Reminders

ITS wants to remind everyone that cyber attackers can take advantage of the campus community whether they work on campus or at home. Information security recommendations should be adhered to no matter where you work, as per the ITS Security Policy .

Quick Tips to Protect Your Home Network

  • The most effective steps you can take to secure your home network are:
    • Change the default admin password
    • Enable WPA2 encryption
    • Use a strong password for your wireless network
  • Ultimately, common sense is your best protection. If an email, phone call or online message seems odd, suspicious, or too good to be true, it may be an attack.
  • Be aware of all devices connected to your home network. This can include baby monitors, gaming consoles, TVs, appliances or even your car. Ensure that all these devices are protected by a strong password and/or are running the latest version of their operating system.
  • Ensure all of your computers, whether for work or personal use, are running the latest version of their respective operating system and applications. Enable automatic updates whenever possible.
  • Make sure each of your accounts has a separate, unique password. If this is too difficult to manage, consider using a password manager application to securely store all your login credentials for you. One reliable example is LastPass, which is free to use and works across most browsers and mobile devices.
  • Make sure family and friends understand they cannot use your work devices. They may accidentally erase or modify important information, or infect the device with a virus.

Phishing Attacks

Phishing is when an attacker attempts to fool you into clicking on a malicious link or opening an attachment in an email. These attacks can happen whether you are at work or home via email, text message, or phone call. Here are some of the most common indicators that the message you received is most likely a scam or attack.

  • Any message that communicates a sense of urgency. The bad guys are trying to rush you into making a mistake before thinking.
  • Any message that has an abundance of spelling and grammar mistakes, and/or addresses you in a very generic way, such as "Dear Customer."
  • Any message that pressures you into bypassing or ignoring our policies and procedures.
  • Any message that promotes miracle cures, such as vaccines or medicines that will protect you. If it sounds too good to be true, it probably is.
  • Any message that claims to be a government official or LMU personnel in a position of authority urging you to take immediate action.

Don't fall victim to bad guys playing on your emotions. If you feel you have received an attack at work, simply delete it. If you have concerns that the message is being sent to others, please report it to the ITS Service Desk.

Information Security Training

This is also a great opportunity to reinforce our cyber security awareness. If you haven't already done so, take the LMU Information Security Awareness Training Program via Brightspace. Log into MyLMU and click the Brightspace icon on the home page to access the training.

Additional External Resources

Visit the ITS Information Security section for additional tips and cyber security information.