Recently, a number of University of Colorado employees learned they were victims of cyber theft after responding to a malicious e-mail and finding their pay had disappeared and was not deposited in their bank accounts. Below are a few crucial reminders for all of you.
The University of Colorado will never ask you to provide personal information such as usernames, passwords or Social Security numbers via e-mail. You should never send such information via e-mail.
Before opening a link, make sure its web address matches your intended destination. If you are not certain, do not click on the web link in an e-mail; rather open a web browser and go to the address of the site you know to be correct (from a bookmark or typing in the correct address).
Unfortunately the holidays are a time when malicious people will try to take advantage of you. Be on the lookout for offers to work-from-home, cash checks and other too-good-to-be-true opportunities.
If you ever have a question about the legitimacy of an e-mail message, please contact the IT Service Center at 303-735-4357 (5-HELP) or firstname.lastname@example.org. To help protect yourself and the university community from these kinds of attacks, be aware of these signs of phishing e-mails to avoid being victimized:
Remember, cyber criminals want to use your username, password, and other personal information. Anyone who knows your username and password can access and change your direct deposit and steal your hard-earned pay. OIT recommends that you regularly change your passwords. Do not use the same password for your personal, financial, and university accounts. Protect your account by protecting your password.
You can find more tips for protecting yourself from cyber criminals at http://www.colorado.edu/oit/it-security/security-awareness.
Assistant Vice President and Chief Information Security Officer
University of Colorado, Office of Information Security
IT Security Director
University of Colorado Boulder, Office of Information Technology
Associate Vice Chancellor for IT & Chief Information Officer