Cyber Security

Common Threat Types

Phishing: Communications (most commonly e-mails) for the purpose of obtaining personal information (such as passwords or credit card numbers) or manipulating others to perform unauthorized actions (such as bank transfers or purchases).
Malware: malicious software such as computer viruses, worms, Trojan horses, ransomware, key loggers and spyware.
Social Engineering: the use of deception to manipulate individuals into divulging confidential or personal information that may be used for fraudulent purposes. This would include scareware.

Education and Training (knowing is half the battle, see below)
Use Password managers/wallets (programs to aid you in keeping track of passwords):
Use Multi-Factor Authentication (MFA adds security to your logins) where possible:
- CCSF offers this for employee e-mail and other systems (send a request via the Help Desk, helpdesk@ccsf.edu)
- Google offers it with their accounts (which includes CCSF student accounts). They call it 2 step. (https://www.google.com/landing/2step/)
Use malware protection software (to add security to our computing devices):
Use a Virtual Private Network (VPN adds security to your internet browsing) when possible:
Follow Safe Computing Practices

Online Training classes:
- Cybersecurity at Work
  - ~24 videos (about an hour, 1-4 minutes per module)
  - Self-paced
  - Certificate awarded upon completion
  - CCSF employees can access via Vision Resource Center
- PBS Nova Labs
  - 3 short videos (~3.5 minutes each)
    - Cybersecurity 101
    - Hacking and Privacy
    - Cyber Codes
  - Interactive Game
- Cyber 101
  - 9 modules on various Cyber Security topics
  - Self-paced
  - Certificate awarded upon completion
California Community College Information Security Standard
- CCSF has adopted this standard in Board Policy (BP) 8.18 and Administrative Policy (AP) 8.18