In this issue:
-----------------------------------------------
Safe
Computing Resolutions for 2009
-----------------------------------------------
Here we are at the start of a new calendar year. As we think about our
resolutions for 2009, we might also want to include those that keep us
safer when using computers or handling personal information.
In 2008 cybercrime has continued unabated. The criminals using
Internet technology have become more sophisticated with their attacks,
reaching many targeted audiences, and it is still the most likely way
people will fall victim to fraud or identity theft (remember the 2008
data breaches at TJX and Hannaford, among others).
Many security analysts say one of the most disturbing cybercrime
trends in 2008 has been the emergence of a full-blown underground
economy where credit card information, identity theft information, and
spam and phishing software are all available for relatively low prices.
So what can we do? For this year's resolutions, rather than adding new
things to our already full to-do lists, how about taking some things
off our lists? So here's what NOT to do in 2009:
1. Open email attachments unless you know who the sender is and what
is in the attachment.
2. Click on links embedded in emails unless you know who sent the
message, what the link is for and where it will take you.
3. Similarly, clicking on anything on the Internet. Be discriminate
about what you click on even when you Google for a "safe" keyword.
3. Fall for official-looking emails that ask for personal or financial
information, or passwords.
4. Fall for free offers of copyrighted materials or software which may
be tainted with malware, and may be illegal to use; or sharing
copyrighted materials you have in your possession with others, without
the owner's permission.
<http://web.mit.edu/ist/topics/security/copyright/>
5. Participate in online social networking, or allow your children to,
without knowing the risks.
<http://www.netsmartz.org/>
6. Throw away any paperwork that might have personally identifying
information or your financial information on it without shredding it
first. <http://web.mit.edu/infoprotect/papershredding.html>
7. Carry around your social security card in your wallet, write the
social security number on your checks, or share it with anyone without
first finding out why they are asking.
Have a safe and happy 2009!
=========================
Monique Yeaton
IT Security Awareness Consultant
MIT Information Services & Technology (IS&T)
(617) 253-2715
http://web.mit.edu/ist/security
---------------------------------------
Important: DO NOT GIVE OUT YOUR PASSWORDS!
Ignore emails asking you to provide yours. IS&T will *NEVER* ask you
for your password.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/ist-security-fyi/attachments/20090109/69cbbfe7/attachment.htm