Past virus outbreaks have affected over 100 systems and 100,000’s of files across the CSCS networks and have typically relied on the recipient of an email trusting that the attachment was a legitimate file, and not a virus. We have learnt a number of lessons as a result of these security incidents, including that we need to work harder to promote safe practice on the internet, and provide more advice for users on how to protect themselves from unintentionally compromising the security of the CSCS network and systems. Following are some tips which you should follow, and remember the most important thing: if in doubt, don’t open attachments or click on links, and forward to our Service Desk for advice.
Protect yourself – top tips to keep yourself safe on the internet
-
Do not download attachments from email unless you were specifically expecting them. Never open zip files attached to an email without verifying that the sender meant to send it, and treat all attachments with caution, even if you know the sender
-
Never enter your work email or banking username and password into a website unless you clicked on a bookmark in your browser or typed the URL in yourself
-
Never give away your password: no bank, helpdesk, service desk or call centre will ever ask you for your password, by phone or email
-
Don’t use the same password for different systems (in particular don’t use your UIS/Raven or CSCS passwords on any other service).
-
Use a password manager (like LastPass, Dashlane or KeePass) to help you manage your passwords so you don’t have to remember them all.
-
Always keep your computers and mobile devices up to date, run anti-virus software and keep the virus definitions up to date
-
Remember that the internet is NOT a safe place, and a different set of rules apply, proceed with caution!
-
See some tips from us to help you stay secure at https://cscs.medschl.cam.ac.uk/blog/computer-security-awareness/ and advice and other resources from University Information Services at https://www.uis.cam.ac.uk/cybersecurity