keepitsafe.auburn.eduAuburn University

Cookie Acknowledgement This website uses cookies to collect information to improve your browsing experience. Please review our Privacy Statement for more information. I UnderstandToggle site navigation Menu button Menu IT for Students IT for Employees Get Help Search Close the search modal Campus Map A-Z Index People Finder Site navigation Close site navigation Close the navigation modal About Auburn Administration Students Parents Alumni Employees Academics Office of the Provost Colleges Majors Core Curriculum Libraries Academic Calendar Course Schedule Advisement Schedule Final Exam Schedule Visit Academics Admissions Apply Now Check Application Status Undergraduate Admissions Graduate Admissions Pharmacy Admissions Veterinary Medicine Admissions Distance Ed Accepted Students Request Information Visit Admissions Outreach Public Service & Community Partnerships Professional & Continuing Education Youth Programs Government & Economic Development Osher Lifelong Learning Institute Faculty Engagement Outreach Global K-12 Outreach Extension Visit Outreach Research Research Administration Work with Auburn Research Find Auburn Expertise Research Resources Centers & Institutes Graduate Research Undergraduate Research Auburn Research Magazine Research Symposia Visit Research Two-Step Verification Also alternatively known as two-step verification however, no matter what you call it, multi-factor authentication, or MFA, is a security measure that requires anyone logging into an account to navigate a two-step process to prove their identity. It makes it twice as hard for criminals to access an online account. When it’s available, always turn it on because it’s easy to do and greatly increases your security. Not every account offers MFA, but it’s becoming more popular every day. It’s seen on many accounts that usually hold either valuable financial or personal information like banks, financial institutions, online stores, or social media platforms. Any place online that is storing your personal information (especially financial information), or any account that can be compromised and used to trick or defraud someone else should be protected with MFA. While uses DUO for most multi-factor authentications, OIT strongly encourages all affiliates to utilize MFA for accounts that provides valuable personal information. The latest MFA digital attack that has become popular is MFA fatigue, MFA Spamming, MFA bombing, however it is called, this is a technique used by attackers to flood a user’s authentication app with push notifications in the hope they will accept, enabling the attacker to gain entry to an account or device. Never accept a push notification that you did not initiate and immediately report this activity to OIT. Week 1 Digital Scavenger Hunt: Your password alone isn’t enough, you must use more to be up to snuff. MFA prompts can be quite Fatiguing, see if you find the third line intriguing. Helpful Resources Auburn and Duo Digital Signage 8.5x11 PDF 900x1600 .JPG 950x950 .JPG 1080x1080 .JPG 1200x630 .JPG Don’t Take the Bait Phishing is when criminals use fake emails to lure you into clicking on them and handing over your personal information or installing malware on your device. It’s easy to avoid a scam email, but only once you know what to for when receiving an email. Some quick tips on how to clearly spot a fake phishing email include: Contains an offer that’s too good to be true Language that’s urgent, alarming, or threatening Poorly crafted writing with misspellings, and bad grammar Greetings that are ambiguous or very generic Requests to send personal information Urgency to click on an unfamiliar link or attachment Strange or abrupt business requests Sending e-mail address does not match the company it is coming from I’ve received a suspicious email -what should I do? You’ve already accomplished the most challenging part of recognizing an email as being suspicious and could be a phishing attempt. If the email came to your Auburn email, use the Report Phishing” icon in Outlook, Outlook mobile app, or Outlook web app as quickly as possible. This ensure the suspicious email is sent to the OIT security team who will investigate and block others from receiving the email if it is part of a larger phishing expedition.If you received the email within your personal email address, do not click on any links (not even the unsubscribe link) or reply to the email and just DELETE it. Week 2 Digital Scavenger Hunt: You can’t see this fish from the bank you’ll have to visit Auburn’s PhishTank. For the next clue, who sent it to Stu? Helpful Resources The PhishTank Phish Awareness Digital Signage 8.5x11 PDF 900x1600 .JPG 950x950 .JPG 1080x1080 .JPG 1200x630 .JPG Use a Password Vault We’ve all probably used one password to secure multiple, maybe even all, of our digital accounts. But that’s not safe, and it becomes even more unsafe as time goes on. If your one password gets stolen because of a breach, it becomes a skeleton key for your whole cyber life. This compromised password can be used to gain access to all your accounts and your sensitive information. Password managers are pieces of software that often take the form of apps, and browser plugins or they might be included automatically in your browser or computer operating system. These programs store your usernames and passwords in a secure, encrypted database. When you need a new password, you can get a hyper-strong suggestion that is automatically stored in the password manager. With a few clicks, you can generate new, secure passwords that are long, unique, and complex. Now you only need to remember the single password that unlocks your password manager vault. students and employees are strongly encouraged to sign up for LastPass -a free software manager available for Auburn users. Week 3 Digital Scavenger Hunt: Changing passwords makes remembering a pain, I forgot my last pass word again. If you can Manage, Stu will share with you. Helpful Resources How do I use LastPass? Digital Signage 8.5x11 PDF 900x1600 .JPG 950x950 .JPG 1080x1080 .JPG 1200x630 .JPG Build Strong Passwords It is recommended that Auburn students, faculty and staff never use similar passwords in the event one is compromised. All passwords should contain three key building blocks: Long, Unique, Complex. Long – Every one of your passwords should be at least 12 characters long. Unique – Each account needs to be protected with its own unique password. Never reuse passwords – especially your Auburn password. This way, if one of your accounts is compromised, your other accounts remain secured. Complex – Each unique password should be a combination of upper-case letters, lower-case letters, numbers and special characters Excellent - If your password contains all three, you’ve achieved excellency. Week 4 Digital Scavenger Hunt: If a password is Complex, Long, and Unique, it is Excellent. Got the clue? It’s easy to do. Promotional Material Please display these promotional items during October, National Cybersecurity Awareness Month. All items are provided by the Office of Information Technology. All promotional items must be used in the manner intended. Reproducing all or part of any promotional items for uses other than intended is prohibited. Poster 17" x 11" (PDF) Web Ad - Football 749px x 144px (PNG) Web Ad - Pads 749px x 144px (PNG) Web Ad - Playbook 749px x 144px (PNG) Web Ad - Whistle 749px x 144px (PNG)Previous Cybersecurity Awareness Campaigns Link to OIT Facebook page Facebook logo Link to OIT Twitter account Twitter logo Link to OIT Instagram account Instagram logo Link to OIT LinkedIn page LinkedIn logo Link to Tiktok page Contact Us Map icon 300 Lem Morrison Drive Auburn, Alabama 36849 Telephone icon (334) 844-4944 Envelope Icon itservicedesk@auburn.edu IT Resources IT Policies IT Strategic Plan IT Staff About OIT AU Resources My Account Campus Map AU Access Website Feedback Employment Title IX Accessibility Privacy Statement A-Z Index...