Enhance Your Digital Security with Strong Passwords
Wednesday, October 2, 2024
Every year, millions of accounts fall victim to password theft and phishing scams, leading to devastating consequences, including identity theft, financial loss, and unauthorized access to sensitive information. In today’s digital world, your password serves as the gateway to your personal, academic, and financial data, making it crucial to protect it at all costs. Strengthening your password habits and staying vigilant against phishing scams are essential steps in safeguarding your digital identity.
To kick off Cybersecurity Awareness Month, the Department of Information Technology has compiled a set of best practices designed to keep your passwords and information safe from hackers.
10 Tips for Password Safety
- Don’t write it down: Avoid recording passwords in notebooks, sticky notes, or other unsecured locations.
This makes it easier for hackers to access your accounts. Keep passwords confidential
and secure.
- Create unique passwords: A strong password is your first line of defense against cyber threats. To create
a strong, memorable password, combine uppercase and lowercase letters, numbers, and
special characters. Use a passphrase that links unrelated words, such as "CoffeeTreeHouse#91,"
for both security and memorability. You can also follow the line method to create a password.
- Don’t share your password: Never share your passwords via email, text, phone, or messaging apps. No Seton Hall staff member will ever ask you to share your password or direct you
to a Google form to enter your password.
- Disable auto-complete: Protect your personal data by turning off auto-complete for passwords, credit card
information, and addresses. This reduces the risk of sensitive information being automatically
filled in by mistake.
- Change passwords regularly: Update your passwords every 60 to 90 days. Regular changes reduce the chances of
password cracking and data breaches, ensuring your accounts remain secure.
- Clear your browser cache: Regularly clear your browser history, cookies, and saved credentials to avoid unauthorized
access to your sensitive data.
- Be careful of what you save: Store important data securely on external drives, cloud storage, or file-sharing
platforms. Avoid storing sensitive information on unsecured devices.
- Create a rescue disk: Prepare for potential security incidents or system failures by creating a rescue disk. This provides a recovery option in case of an emergency.
- Use password manager: Password managers can safely store and organize your passwords. Always enable two-factor authentication
(2FA) for an added layer of security.
- Ask for help: If you need help with password safety or have questions, the Department of Information Technology is here to assist.
Test Your Password's Strength
Test your password’s strength on a secure laptop at Seton Hall's IT Security team's interactive cybersecurity quiz, hosted every Monday and Tuesday in October from 11 a.m. to 1 p.m. at the University Center. Participants can earn raffle entries for prizes like earbuds and noise-canceling headphones, with extra entries awarded through a spin of the wheel.
Protecting Your Password from Phishing Scams
Seton Hall University's IT Security team works diligently to identify and remove phishing emails before they reach your inbox. However, members of the Seton Hall community can still be targeted by sophisticated phishing scams designed to collect login credentials. Here’s how to recognize and avoid falling victim to these attacks:
Double-check URLs: Always ensure the URL matches the official site when entering your login information. Look for "https://" and make sure the domain is correct.
Watch Out for "Expiring Password" Scams: Be cautious of emails claiming that your password is expiring and offering a single option to retain the same password. Seton Hall University will never allow you to keep an expiring password without requiring an update. Always verify such requests before taking action.
Avoid Fake Google Forms: Some phishing attacks use fake Google Forms to collect usernames, passwords, and other sensitive details. Never enter your credentials into any Google Form, as attackers have used this method to bypass two-factor authentication in the past. Always verify the source before providing personal information.
By following these tips for password security and staying vigilant against phishing scams, you can greatly reduce the risk of your accounts being compromised. Always take the time to verify links, create strong and unique passwords, and ask for help if you’re uncertain about potential security threats. If you suspect your password has been compromised, contact the Department of Information Technology immediately by submitting a service desk ticket on the Technology Service Desk portal. Practicing secure password habits and staying alert to cyber threats is the key to keeping your digital world safe.
Categories: Science and Technology