Security is everyone's responsibility!
This site has been created in order to give all students a resource to enable good security and safety whether on campus, at work or at home.
Click on the links to the left to learn more about important safety and security issues.
If you have comments or questions regarding this site, contact Security and Compliance.
BE CAREFUL ABOUT GIVING OUT YOUR PERSONAL INFORMATION EITHER OVER THE PHONE OR VIA EMAIL. MAKE SURE THE SOURCE OF THE REQUEST IS A LEGITIMATE ONE BEFORE YOU DIVULGE ANY INFORMATION!
Should I open all email attachments?
You should be aware that email from unknown sources that contain attachments could contain viruses. Once the attachment is opened, it could shut down an entire network. Even email from friends and family members may unintentionally carry a virus. Never open an email attachment from an unknown source, unless it is a PDF file. PDF files do not have the capacity to generate a virus. Generally, PDF attachments are considered safe. If you receive any other kind of email attachment, always use virus scanning software before opening it.
How can I tell if I'm on a secure website?
If you are on a secure website (also known as SSL), the URL path will start with https://. Notice the "s" after http which indicates a secure site. When using a credit card for online purchases, it is best to type the URL directly onto the address line in the browser window to ensure you navigate to the site you want. Frequently, legitimate websites (such as Amazon.com of Paypal.com) are "spoofed", which means they are copied and made to look like the actual site but instead direct you to an unauthorized website that attempts to gain your personal information. In order to recognize a true secure website, the "lock" image will be displayed on the status bar. If you double click on the lock, the digital certificate form will pop up and will be your assurance that the site is secure. To see a picture of the lock graphic, click here. To see a picture of the digital certificate that will be displayed after you double click the lock graphic, click here.
What is a firewall?
A firewall is a system designed to prevent unauthorized access to or from a network or computer. Firewalls are used to prevent unauthorized users from accessing a network or computer. All traffic entering or leaving passes through the firewall, which examines each message and blocks those that do not meet the specified criteria. Firewall protection is especially useful for users with "always on" connections such as DSL or cable modem.
What if someone asks me for my password?
You should NEVER share your password with anyone, or send it via email. Your password is your key to keeping unauthorized people from accessing your personal information and/or a campus website designed only for use by students.
Where can I find information on how to protect my identity?
Click here for information from the Federal Trade Commission on protecting your identity.
I have been told to have a strong password, what is that?
A strong password is a password that cannot be guessed and is very hard to crack. Strong passwords have the following characteristics: contain upper and lower case characters, contain punctuation characters, are at least 8 characters long and do not contain words in any language. Another way to create a strong password is to use a password that contains a phrase or substitution such as: h3izMiL0v (he is my love). Always use the strongest password possible for your student website or when logging in.
The Anti-Phishing Working Group defines phishing scams as attacks that use both social engineering and technical subterfuge to steal consumers' personal identity data and financial account credentials. Phishing scams are growing at an alarming rate. In July 2006, a record number of consumer brands were hijacked for phishing scams. You may have received an email from an easily recognizable company such as Pay Pal or Ebay asking you for personal information or directing you to update your account information. These unsolicited emails are often spoofed web sites, not the real thing. You can ensure that you are on a legitimate website by typing the URL in the URL line on the web page and navigating to the site.
Never respond to an unsolicited request for personal information.
For more information about safeguarding your personal information click this link provided courtesy of the Federal Trade Commission.
Take a look of some of these tips to help you avoid getting hooked on a phishing scam.
SANS Ouch! newsletters show you what to look for and how to avoid phishing and other scams, plus viruses and malware and it uses the latest attacks as examples. Keep yourself from becoming a victim of a phishing scam by checking out the SANS Ouch website with examples of phishing emails.
To view the Apollo Group privacy policies, click here.
To view the College for Financial Planning® privacy policies, click here.
Identity Theft and Student Aid
Identity theft includes unauthorized use of your name, address, date of birth, social security number, credit card and bank account numbers, PIN's and security keywords such as "Mother's Maiden Name." According to the Federal Trade Commision, most victims do not discover the event until many months or years after the theft or security breach. Make sure you are protected. Visit the following link about student aid and identify theft provided by the Department of Education.
Email, Internet and Home Security
Credit card fraud is at an all-time high. Thieves find new, more creative and sophisticated ways to steal your credit card information. Putting the following tips into practice can help protect you from this ever-increasing threat.
Using your card...
Protecting and reviewing your information...
A few more suggestions...
Password myths are all too common. Many computer users choose a password that is easy to crack. Here are some of the most common password myths.
Password Myth #1 - My password is secure.
Having a strong password will help protect you from internet thieves. Review some of the ways to develop a strong password below.
Password Myth #2 - My password has more than 4 characters so no one will guess it.
Safe passwords contain seven or eight characters, are not regular dictionary words, contain a special character and use at least one random capitalization. Here are some tips to get you started on creating a fun and secure password:
By using numerals to replace words (or parts of words), you can easily create non-dictionary words:
Fishermen: LiveB8! or B84FishFlea-market afficionados: Gr8SaleGolfers: Par4in2Newbies: 2theBa6
Password Myth #3 - I don't need to change my password.
Make your password complicated and change it often. Most users hate this suggestion, because it means they have to stretch both their memory and their fingers at login (to reach that awkward ampersand key). But using secure passwords isn't merely a suggestion anymore, at the Apollo Group and its subsidiaries, it's mandatory. On the bright side, choosing a secure password doesn't have to be mnemonic torture. Think of it as a brilliant vanity license plate that no one else, alas, will ever see.
There are many more combinations you can use to find secure passwords. Be cre8tive.
If you would like to contact Security and Compliance with a question, comment or suggestion for this site, click here.