The critical need to keep your account passwords distinct and the value of your personal information 07/23/2019

These 2 seemingly distinct topics are very related.  In the last 10 days I have been alerted to 16 data breaches that date back to 2017 and contain some number of accounts that have @wesleyan.edu in their account information.  The reasons for the delayed notifications can be varied–companies are just finding out, companies don’t want … Read moreThe critical need to keep your account passwords distinct and the value of your personal information 07/23/2019

Multi/Dual-factor Authentication–What is it and why use it? 07/18/2019

Securing accounts has been a problem for quite a while.  We often rely solely upon passwords.   If done right, we use unique passwords for each account.  Yes, that can become unwieldy and I wrote an article about password managers that very much takes most of the pain away from that process.  However, there is an … Read moreMulti/Dual-factor Authentication–What is it and why use it? 07/18/2019

Some IT terms to know 0/27/2019

Some IT terms to know 1)Social Engineering—in the context of information security, refers to psychological manipulation of people into performing actions or divulging confidential information. 2)Dox/Doxxing—Doxing or doxxing is the Internet-based practice of researching and broadcasting private or identifying information about an individual or organization. The methods employed to acquire this information include searching publicly … Read moreSome IT terms to know 0/27/2019

Curisoity and the cat–Don’t let your curiosity get the best of you–03/28/2019

Curiosity is a strong driver.  Sometimes it is “can I do this”, “How do I do this”, “Oooooh. Something new to try”.  I was faced with this, yesterday with a SUB stick. My CIO asked I come see him in the office, held up a USB stick and said he had found it while walking. … Read moreCurisoity and the cat–Don’t let your curiosity get the best of you–03/28/2019

Elsevier platform (e.g. Mendeley, Scopus, ScienceDirect) compromised–Please change your account password (3/26/2019)

Notice–Elsevier platform (e.g. Mendeley, Scopus, ScienceDirect) system compromise–PLEASE CHANGE YOUR ACCOUNT PASSWORD   https://motherboard.vice.com/en_us/article/vbw8b9/elsevier-user-passwords-exposed-online   According to the article they’ll be notifying users, but if you have an account on an Elsevier platform (e.g. Mendeley, Scopus, ScienceDirect) you should change your password now, as well as changing the password on any other accounts you have … Read moreElsevier platform (e.g. Mendeley, Scopus, ScienceDirect) compromised–Please change your account password (3/26/2019)

Cardless ATM transactions and thieves–3/11/2019

Though this article looks dated (2018) it is a current notification—-   As of May 2018, the FBI has seen an increase in cyber criminals exploiting the cardless ATM feature of mobile banking applications to compromise accounts and fraudulently withdraw cash from ATMs. Cardless ATM transactions use a code and a mobile phone for authentication … Read moreCardless ATM transactions and thieves–3/11/2019

Subject:You have received a document from Onedrive 01/21/2019

Sender: microsoftexchange329s7d8ae4615bbc36ab6ce471ec88aae4615bbcaae4615 Subject: You have received a document from Onedrive   If you click the link it takes you to some non-wesleyan location: hxxp://servicesll.blob43.core.windows.net/$web43/microsoft.html?sp=r&st=2019-01-20T14:15:43Z&se=2019-01-29T22:15:43Z&spr=https&sv=2018-03-28&sig=+IIeYA/DfQgEtvhP0WRlUzdgz0HAZz8sV1xx1S0nVvE=&sr=b#userID@wesleyan.edu Please, just delete this email.