Cyber Security

Common Threat Types

Phishing: most commonly using e-mails for the express purpose of obtaining personal information (such as passwords or credit card numbers) or manipulating others to perform unauthorized actions (such as bank transfers or purchases).
Malware: malicious software such as computer viruses, worms, Trojan horses, ransomware, key loggers and spyware.
Social Engineering: the use of deception to manipulate individuals into divulging confidential or personal information that may be used for fraudulent purposes. This would include scareware.

Education and Training (knowing is half the battle, see below)
Use Password managers:
Use Multi-Factor Authentication (MFA) where possible
- CCSF offers this for employee e-mail (send a request via the Help Desk, helpdesk@ccsf.edu)
- Google offers it with their accounts. They call it 2 step. (https://www.google.com/landing/2step/)
Use malware protection software:
- PCMag reviews and recommendations
- CNet reviews and recommendations
Use a Virtual Private Network (VPN) when possible
Follow Safe Computing Practices

Online Training classes:
- Cybersecurity at Work
  - ~24 videos (about an hour, 1-4 minutes per module)
  - Self-paced
  - Certificate awarded upon completion
  - CCSF employees can access via Vision Resource Center
- PBS Nova Labs
  - 3 short videos (~3.5 minutes each)
    - Cybersecurity 101
    - Hacking and Privacy
    - Cyber Codes
  - Interactive Game
California Community College Information Security Standard
- CCSF is in the process of adopting this standard