Common Threat Types:
- Phishing: using e-mails for the express purpose of obtaining personal information (such as passwords or credit card numbers) or manipulating others to perform unauthorized actions (such as bank transfers or purchases).
- Malware: malicious software such as computer viruses, worms, Trojan horses, ransomware, key loggers and spyware.
- Social engineering: the use of deception to manipulate individuals into divulging confidential or personal information that may be used for fraudulent purposes. This would include scareware.
- Education and Training (knowing is half the battle, see below)
- Use Password managers
- Use Multi Factor
Authentication (MFA) where possible
- CCSF offers this for employee e-mail (send a request via the Help Desk, email@example.com)
- Google offers it with their accounts. They call it 2 step. (https://www.google.com/landing/2step/)
- Use malware protection software
- Follow safe computing practices
- On-line training class:
- ~31 videos (2-6 minutes per module)
- Certificate awarded upon completion
- CCSF employees can request this course via the Help Desk (firstname.lastname@example.org)
- Available for CCSF employees through the California Community College Vision Resource Center (https://visionresourcecenter.cccco.edu/)
- SANS Security Awareness
California Community College Information Security
- CCSF is in the process of adopting this standard