×

Cyber Security Awareness

Did you receive a "phishy" email? Report it.

If you receive a suspicious email in your Lone Star College email, or even one that you think may legitimate but you're worried about clicking a link or opening an attachment, report it and we'll do the investigating for you. There are multiple ways to report a "phishy" message (or even a phone call):

 

Icon featuring an eagle or falcon with the text: Secure Our World - Cybersecurity Awareness Month

Lone Star College is a National Cyber-Security Awareness Month Champion

Cybersecurity Awareness Month logo

Lone Star College is a recognized NCSAM Champion by the National Cyber Security Alliance. Visit stopthinkconnect.org for tips & advice. Every October, OTS observes National Cybersecurity Awareness Month (NCSAM) to help raise awareness among students, faculty, staff about ways we can all be safe and secure online. No one person, company, or agency is responsible for the security of the Internet. Cybersecurity is our shared responsibility, and we all play a part in keeping data safe.

View the 2024 Cybersecurity Awareness Month webinar to learn how to:

  • Keep your data and devices safe when connecting to Wi-Fi networks.
  • Keep your hard-earned money and credit rating safe from identity thieves.
  • Keep your credit card safe when using an ATM or credit card reader.
  • Identify ransomware and what to do if you receive it.

Do your part to #SecureOurWorld.

Read through the information below and take steps now to secure your devices, your data, as well as those of Lone Star College. It takes a village, so let's all work together as One LSC to #BeCyberSmart and stay #CyberAware.

  • Never give out your username or password to anyone. If you think your computer may be compromised, contact the IT Service Desk right away at 281.318.HELP (4357) (toll-free 866.614.5014). We’re happy to help.
  • Think you may have received a phishing or scam email? Report it to the IT Service Desk. Use the "Report Message" tool in Outlook or submit the Report a Phishing/Scam Email form to report a suspicious email received in your LSC email inbox. It's that easy.

 

Cybersecurity is everyone's job. Including yours.

Cybersecurity is everyone's job. Including yours.

No matter your career or position, it is everyone's job to practice good cyber security. Organizations and homes cannot be secure without each and every person doing their part. Online safety and security are a responsibility we all share.

 

Running out of password ideas? Let password managers do the work for you. Secure our world. Cybersecurity Awareness Month

Strengthen Your Passwords with These Tips

1. Long, unique passwords are stronger: Passwords with at least 16 characters are hardest to crack.

2. Hard to guess: Use a random string of mixed-case letters, numbers and symbols. If you need to memorize a password, create a memorable “passphrase” of 5 – 7 unrelated words. Get creative with spelling and/or add numbers or symbols.

3. One of a kind: Use a unique password for each account.

Tip: Create a memorable long “passphrase” as described above and NEVER write your master password down.

For more, watch this quick 2-minute video: Stop Online Crime with Strong Passwords
 

 Multi-factor, two-factor, two-step...whatever you call it, use it.  Secure our world. Cybersecurity Awareness Month

Use Multi-Factor Authentication Wherever Available

In addition to using Multi-Factor Authentication (MFA) here are LSC, we recommend that you implement MFA for any account that permits it, especially any account associated with work, school, email, banking, and social media.

Follow These Steps to Turn on MFA Where Available

  1. Open your app or account settings. It may be called Account Settings, Settings & Privacy or similar.
  2. Turn on multi-factor authentication. It may also be called two-factor authentication, two-step authentication or similar.
  3. Confirm. Select an MFA method to use from the options provided. Examples are:
    • Using an authenticator app: These phone-based apps generate a new code every 30 seconds or so.
    • Receiving a code by text, call, or email.
    • Biometrics: This uses facial recognition or fingerprints to confirm your identity.

For more, watch this quick 2-minute video: Make Your Accounts Safer with Multifactor Authentication (MFA)
 

If it looks phishy, it probably is. Report phishing attempts.. Secure our world. Cybersecurity Awareness Month

Recognize and Report Phishing

The signs can be subtle, but once you recognize a phishing attempt you can avoid falling for it. Before clicking any links or downloading attachments, take a few seconds (like literally 4 seconds) and ensure the email looks legit. Here are some quick tips on how to clearly spot a phishing email:

  • Does it contain an offer that’s too good to be true?
  • Does it include language that’s urgent, alarming, or threatening?
  • Is it poorly crafted writing riddled with misspellings and bad grammar?
  • Is the greeting ambiguous or very generic?
  • Does it include requests to send personal information?
  • Does it stress an urgency to click on an unfamiliar hyperlinks or attachment?
  • Is it a strange or abrupt business request?
  • Does the sender’s e-mail address match the company it’s coming from? Look for little misspellings like pavpal.com or anazon.com.   

For more, watch this quick 1-minute video: Recognize and Report Phishing
 

Stop clicking "remind me later". Update your software. Secure our world. Cybersecurity Awareness Month

Update Your Personal Devices and Software

Here are four easy-to-remember tips to keep in mind when it comes to updates on your personal devices: 

1. Automatic updates make your life easier
You don’t have to check your Settings tab every morning – you can usually set up automatic updates so that updates are downloaded and installed as soon as they are available from the device, software, or app creator. Note that you might have to restart your device for the updates to fully install. It is best to do this right away, but you can often schedule this to happen during times when you aren’t using your device, like the middle of the night. Plenty of us stay lazy and secure – although you probably should check your software update settings every so often (quarterly is good) to ensure everything is set to your liking!

2. Get updates from the source
Before downloading anything, especially software and app updates, be sure you know the source. Only download software to your computer from verified sources, and only download apps from your device’s official app store. The device, software, or app developer itself should be sending you updates, not anyone else. And remember, pirated, hacked, or unlicensed software can often spread malware, viruses, or other cybersecurity nightmares to your network. Ruining your computer, phone, tablet, or other device isn’t worth it!

3. Don't fall for fakes!
On the web, you’ve probably come across suspicious pop-up windows that urgently demand you download a software update. These are especially common on shady websites or if there is malware already on your machine. These are always fake – they are attempts at phishing. Don’t click any buttons on these pop-ups and close your browser. Many web browsers will warn you if you are attempting to visit an unsecure web address or one that could contain malware. Heed these warnings and don’t take the bait!

4. Make it a habit
Even if you don’t have automatic software updates turned on, make updating your device, software, and apps a regular habit. Oftentimes, you will be notified that updates are available. Even if it is a pain to close out of your programs and restart your device, it is worth it to do this right away, especially if the update patches an urgent security flaw.

You should check your app and device settings on a regular basis, and you should check monthly if you don’t have automatic updates turned on (although weekly is better).


For more, watch this quick 2-minute video: Update Software for Safety

Help us secure our world this Cybersecurtiy Awareness Month

Protect Yourself from Evil Twin (Fake Wi-Fi) Networks

In an evil twin attack, a hacker creates a twin network to impersonate an existing Wi-Fi connection in order to lure unsuspecting users into their trap, where they'll then steal your personal information or infect your device with malware.

Protect Your Credit.

Freezing your credit prevents anyone from applying for lines of credit (such as credit cards and mortgages) using your identity. This includes you, but you can temporarily unfreeze or thaw your credit and re-freeze it.  Contact Equifax, Experian, and TransUnion, the three credit reporting bureaus, to initiate a freeze. You must freeze your credit with each bureau—you can do this online or over the phone. We recommend keeping your credit frozen by default.?

Protect Your Credit Cards from Skimmers and Shimmers

One moment, you might be filling up on gas or withdrawing some cash from an ATM. You go about your day but later learn that criminals stole your card details and are racking up charges. While card technologies are improving, we must stay informed about the latest credit card scams, because scammers always look for ways to overcome security improvements.  

You should always be vigilant about where you enter your credit or debit card, but, furthermore, you should regularly review financial statements and credit reports for signs of unauthorized activity. Always report any suspicious incidents to your bank or card issuer ASAP. Sign up for alerts or notifications from your financial institution to receive real-time updates on account activity. Stay updated about common scams and fraud schemes. 

Not only will you catch any possible card skimming, but regularly monitoring your financial accounts will help you stay vigilant about any possible fraud.   

Protect Yourself from Ransomware

Ransomware is a hack with teeth, an attack aimed to cause extreme financial pain to its victims.

If you suspect a device is infected with ransomware, you want to act fast but remain collected. Don’t start talking to the digital hostage-takers, but reach out for help from cybersecurity experts, law enforcement, and others, like your employer’s security team. 

 

We smell a rat. Report suspicious email messages to the OTS Service Desk at 832.813.6600.

Cybersecurity Month 2024

Did you answer the Cybersecurity puzzles that were emailed to all students and employees on Tuesday, October 1 and want to check your answers? Here is the Answer Key. Thank you for taking them time to learn more about cybersecurity terms!

Make LSC part of your story.