Cybersecurity Awareness Month: Protect Your Online Accounts and E-Cycle Opportunity

Dear Faculty and Staff Colleagues,

Thank you for your engagement during Cybersecurity Awareness Month this October!

As a reminder, Technology Services is offering an e-cycle opportunity on Wednesday, Oct. 25. If you have any electronics you would like to dispose of, you can drop them off at the Tech Center, located on the lower level of Collins Memorial Library, anytime between 9 a.m.–4 p.m. For a list of accepted items, please visit the Green PC website.

As we wrap up the month, here are some final tips on protecting your online accounts. 

Make Strong Passwords

• Mix it up. Use different passwords for different accounts. Using unique passwords for each online account minimizes the risk of a leaked password compromising the security of your accounts on multiple websites.

• Length matters. Aim for a password that is 16 characters or longer. Make it more secure and easier to remember by using a phrase (e.g., C00kiesMakeMeH@ppy) instead of a single word.

• Avoid personal information. Steer clear of using easily discoverable information like names, birthdays, or addresses in your passwords. 

Enable Multi-Factor Authentication (MFA)

• Two is better than one. MFA or two-step authentication adds an extra layer of security to protect your account from unauthorized access.  If you are able to add multiple MFA methods, such as on your university account, having a backup MFA method will prevent you from being locked out in case you cannot access one method (e.g., if you receive a text message with a code but your phone number changes). 

• Start with what matters. Look for the option to enable MFA on important accounts like online banking, other financial accounts, your primary email, and social media.

• Only when it’s you. If you receive an MFA prompt for a login you did not perform, do not approve the request or provide the code to anybody. This may indicate that an attacker has your password and is trying to break in. 

Detect Social Engineering

• Always verify. If you receive a call, text, email, or private message on social media from a familiar name, but the tone or content seems off, reach out to the individual on known communication channels before responding. With AI, expect these to become harder to detect.

• Don’t panic. Many social engineering attempts use urgent or shocking language to prompt you to act without thinking. Take a moment to closely examine the message, including checking the sender's email address and any links, before proceeding. If the message is from a service or company you recognize, contact them directly or log in to your account by going to their website directly.

• Help others. Educate friends and family members on how to spot scams to keep them safe. Report phishing so that actions can be taken for others who have or will receive similar messages. 

We appreciate your feedback and hope the information provided was helpful in keeping you safe online. As a reminder, campus members who participated in the month's activities will be entered for prizes. The winners will be contacted in the second week of November. If you have any questions or concerns about staying secure online, please feel free to reach out to us at servicedesk@pugetsound.edu. 

Thank you,

Technology Services