JSU CYBER SECURITY
Cyber Safety Tips at Home and at Work
Cyber Safety Tips: Best Practices While Working From Office Or Remotely
CYBER SAFETY BEST PRACTICES @ HOME & WORKPLACE
TIP 1. Avoid doing workplace tasks when connected to public WiFi
If you are an employee that has to gain access to sensitive data sets (ex SSNs, Bank Account Information) for students and other employees connecting using a public wifi signal to conduct workplace duties phishing email with malicious software could allow cybercriminals to take control of your computer, log your keystrokes, or access sensitive business information and financial data.
TIP 2. Avoid pop-ups, unknown emails, and links
Here’s a rule to follow: Never enter personal or company information in response to an email, pop-up webpage, or any other form of communication you didn’t initiate. Phishing can lead to identity theft. It’s also the way most ransomware attacks occur.
TIP 3. Use strong password protection and authentication
Strong, complex passwords can help stop cyberthieves from accessing company information. A strong password contains at least 15 characters and includes numbers, symbols, and capital and lowercase letters. Companies also should ask you to change your passwords on a regular basis. Changing and remembering all of your passwords may be challenging. A password manager can help.
TIP 4. Embrace cyber awareness education and training
Your responsibility includes knowing your company’s cybersecurity policies and what’s expected of you. That includes following them. If you’re unsure about a policy, ask the Cyber Security personnel.
Cyber Safety Tips at Home and at Work
Your digital safety is a shared responsibility. Whether you are working on campus systems,
studying in the library, or accessing personal accounts at home, these essential tips will help
you protect your data, devices, and the university network.
The following are core security principles to help secure your user experience (UX) any where
you go travel access the internet.
1. Strengthen Your Digital Access (The Essentials)
| Tip | Tip Description for Users |
|---|---|
| Use Multi-Factor Authentication (MFA/2FA) |
Enable MFA on every account that supports it (email, banking, social media, etc.). This adds a critical second layer of security, making it exponentially harder for a hacker to access your account even if they steal your password. |
| Create Long, Unique Passphrases |
Ditch simple passwords. Create long, unique passphrases (12+ characters) using a mix of unrelated words, numbers, and symbols (e.g., PurpleTree!Elephant$). Never reuse passwords across school, work, and personal accounts. |
| Use a Password Manager |
Use a reputable password manager (e.g., LastPass, 1Password, Keeper) to generate, store, and automatically fill in your unique passphrases. This is the safest and easiest way to manage dozens of strong credentials. |
| Do Not Share Your Credentials |
NEVER share your passwords or MFA codes with anyone—not your colleagues, not your friends, and especially not someone claiming to be from the IT department. IT will never ask you for your password over the phone or email. |
2. Stop the Scams (Phishing & Social Engineering)
| Tip | Tip Description for Users |
|---|---|
| Think Before You Click |
Pause and inspect any unexpected email, text message (smishing), or social media message. Hover your mouse over a link to see the actual destination URL before clicking. If the link looks suspicious, do not click it. |
| Watch for Urgency and Threat |
Be suspicious of messages that create a false sense of urgency, threaten to suspend your account, or promise something too good to be true (e.g., “Immediate action required!” or an unsolicited job offer). |
| Verify Information Directly |
If an email appears to be from a trusted source (like a bank or university administration) but seems unusual, do not use the contact information in the email. Instead, contact the organization directly using a trusted phone number or their official website. |
| Report Suspicious Emails |
If you receive a suspicious email targeting your university account, immediately report it to cybersecurity@jsums.edu and then delete it. |
3. Secure Your Devices and Data
| Tip | Tip Description for Users |
|---|---|
| Keep Software Up-to-Date |
Enable automatic updates for your operating system (Windows, macOS, iOS, Android), web browsers, and all applications. Updates often contain crucial security patches that fix vulnerabilities hackers can exploit. |
| Secure Your Physical Devices |
Never leave your laptop, phone, or university equipment unattended in public areas like the library, classrooms, or coffee shops. Set your devices to automatically lock after a few minutes of inactivity. |
| Avoid Public Wi-Fi for Sensitive Tasks |
Public Wi-Fi networks (like those in cafes or airports) are often unencrypted and risky. Avoid logging into sensitive accounts (banking, school portals, work accounts) on public Wi-Fi. Use the university’s secure network on campus, or use a Virtual Private Network (VPN) for extra protection off-campus. |
| Back Up Your Important Files |
Regularly back up your important documents, photos, and academic work to a secure cloud service (like OneDrive or Google Drive) or an external hard drive. This ensures you can recover your files in case of hardware failure or a ransomware attack |
4. Protect Your Digital Footprint
| Tip | Tip Description for Users |
|---|---|
| Limit Personal Sharing |
Be mindful of what you share on social media. Avoid posting real-time location, upcoming vacation plans, or details that could be used for identity theft (e.g., your birthday, pet’s name, or mother’s maiden name). |
| Review Privacy Settings |
Periodically check the privacy settings on all your social media and apps. Restrict who can see your personal posts and be cautious about granting excessive permissions to third-party apps. |
| Practice Safe Online Shopping |
Only shop on reputable websites and always verify that the site address starts with HTTPS:// (and has a lock icon) before entering payment information. Monitor your bank and credit card statements for unfamiliar charges. |
