Students! This is your chance win a pair of AirPods or one of two Ravens swag packs during Cyber Security Month contest.

Cyber Security Month is back this October! It’s a chance to educate citizens about how to stay safe and cyber aware while they work and live online.

This year’s theme is Fight Phishing: Ruin a Cyber Criminal’s Day! Phishing is an attack where a scammer calls you, texts or emails you, or uses social media to trick you into clicking a malicious link, downloading malware, or sharing sensitive information.
Watch this ITS website and @Carleton_IT on Twitter for new posts each week throughout October to learn how to stay cybersecure. Follow along on social media using #CyberMonth2022.

Curious about how Carleton is fighting phishing? In the past year, ITS has rolled out a number of initiatives to fight phishing at Carleton, including:

Security Awareness Courses

In 2021, we launched our Security Awareness Course through Brightspace, and in partnership with Terranova Security, to teach the community how to stay cyber secure. Students, faculty and staff are invited to enrol in a series of modules that are short, digestible and, most importantly, informative. Topics include phishing, ransomware, Wi-Fi security, social engineering, risky USB devices and much more.
As part of the campaign, all staff, faculty, and students are encouraged to log in to Brightspace to self-enrol for the course. Keep in mind that, after clicking the link above, you’ll need to log in with your MyCarletonOne (MC1) password before enrolling.

Advanced Protection Tool of Microsoft Defender

AI-based email protections for students that help us quickly identify phishing and spam, along with the introduction of Defender for Office 365 for all faculty and staff to defend against phishing, spoofing, spam, and impersonation, while ensuring the safety of attachments and links

Report Phishing Button

Part of the problem with phishing is knowing how many attempts are coming in, and how they seek to rope in victims. The “Report Phishing” button allows users to easily report phishing emails, providing our Information Security professionals the information they need to prevent future attempts. Users no longer need to manually forward email messages or attachments to the Service Desk to report a phishing message. They can simply click the Report Phishing button on a phishing email, and we’ll do the rest.
And, as we report, the tech behind the Report Phishing button is very cool.

Phishing Simulations

Education is a key element in the fight against phishing, because everyone plays a role in identifying and reporting phishing attempts. In 2021, we launched a Simulated Phishing Initiative in which the community began receiving safe and simulated phishing emails, automatically generated by our systems, to help faculty, staff and students better recognize what a phishing email might look like. There is still much to do in the fight against phishing, but these simulations are a strong start.

Cyber security doesn’t end after October, so watch the ITS web site and @Carleton_IT on Twitter for information about new campaigns, tips and tricks as they become available.

If you have any questions, please contact ITS Security.

Thank you in advance for your participation!

Text on image reads: Fight phishing, ruin a cyber criminals day. #CyberMonth2022