8.5.24

Workplace Cybersecurity is Everyone’s Responsibility

With the avalanche of online apps for personal communication, fun, games and work, the lines between our work and personal lives have increasingly blurred. Having good cybersecurity practices that protect yourself and the University is critical. These online security activities can help you keep data secure and thwart cyberthreats.

• Keep a clean updated machine – Update your computer, mobile phone and tablet software and apps often.
• Protect your device – Use strong passwords and enable passcodes on your device to prevent your sensitive information from being stolen
• Enable two-factor authentication (Duo) – This can prevent unauthorized access even if your login credentials are stolen or lost.
• If in doubt forward to abuse@rochester.edu and throw it out in doubt, throw it out – Do not take the bait from phishy emails and avoid suspicious links, even from known sources.

For more information on security and best practices to help Protect the House, visit University IT’s Security page.

8.12.24

Keep your employee badge and student ID secure

Faculty, staff, and students at the University receive an ID card for official identification that also acts as a physical key to provide access to permitted University locations. Information Security reminds you that having this access is a privilege that comes with responsibilities. You are not permitted to give individuals without an ID access into a building. Be sure to keep your ID card in your control at all times to prevent unauthorized access that can be traced back to you. Should you misplace your ID badge, report it immediately to the River Campus or Medical Center ID Card Office. When a replacement badge is issued or you leave the University as an employee, your badge must be returned to the ID Office. Find more information on ID cards here.

8.19.24

Be extra vigilant with [EXT] emails

With campus activities starting again after the break, there is likely to be an increase In research or employment scams or phishing. Scammers are using fake emails or signatures to appear as University employees. IT Security reminds you to pay extra attention to what is in the subject line so you don’t fall victim to these scams. Incoming emails from outside the University show [EXT] in the subject line to alert you that the message is coming from an external source and remind you to exercise appropriate caution before interacting with the message. Stop and think before you click: if it is too good to be true, it is likely a scam. For more information, visit IT Security’s External Email Alert web page. If you receive a suspicious email, report it immediately to abuse@rochester.edu.

8.26.24

ATTENTION: Don’t Fall for Employment scams!

With students back in full swing and classes in session, so are scammers and their malicious emails. Students should pay extra attention to their emails or text messages and not correspond with any “out of the blue” employment opportunities. If the email appears to come from someone at the University, be sure to cross reference the sender’s email address with what is listed on the University faculty and staff directory. Take a look at University IT’s employment scams page for examples and red flags to watch out for. Think you’ve received a suspicious email or text message? Report it to abuse@rochester.edu to determine whether the message was real or phishing.