Each and every member of the Middlebury community is critical to our security efforts. Learn about your responsibilities and how to keep your devices and data secure.
*Please see below for COVID-19 related Cybersecurity information!
COVID-19 Related Cybersecurity Information
- Watch Out for Email and Phone Scams!
During media intense events like the Coronavirus outbreak (COVID-19), cyber attackers take advantage of the situation by preying on our fears. They will try to scam you, or launch phishing attacks that attempt to get you to: disclose your credentials and personal and private information, click on malicious links, or open infected email attachments. Please remain vigilant! Here are some of the most common indicators that the email or phone call you received may be a scam, or worse. Please forward any suspected scam emails to email@example.com and contact firstname.lastname@example.org with any specific concerns.
- Be Careful with Sensitive Data!
A reminder to all Middlebury employees that restricted, confidential, and sensitive information related to Middlebury people and activities must not be stored on individual faculty, staff, or student employee computers, or personally-owned devices. Please keep all such data in appropriate and secure Middlebury-provided services. Questions? Contact the ITS Helpdesk or Middlebury Information Security
- Secure Your Home Network and Stay Safe Online!
A secure home network means you and your family can use the internet more safely. StaySafeOnline.org is an excellent online resource (powered by the National Cyber Security Alliance) which includes practical information about:
During media intense events like the Coronavirus outbreak (COVID-19), cyber attackers take advantage of the situation by preying on our fears. They will try to scam you, or launch phishing attacks that attempt to get you to; disclose your credentials and personal and private information, click on malicious links, or open infected email attachments. Here are some of the most common indicators that the phone call or email you received may be a scam.
- Any messages that communicates a tremendous sense of urgency. The bad guys are trying to rush you into making a mistake.
- Any message that pressures you into bypassing or ignoring our security policies and procedures.
- Any message that promotes miracle cures, such as vaccines or medicine that will protect you. If it sounds too good to be true, it probably is.
- Be very suspicious of any phone call or message that pretends to be an official or government organization urging you to take immediate action.
Please keep in mind Coronavirus scams and attacks can happen at work or at home, via email, text messaging or even over the phone. Don’t fall victim to bad guys playing on your emotions. If you feel you have received such an attack, let us know at email@example.com.
Following are tips from the Federal Trade Commission (FTC) to help you keep the scammers away:
- Watch for emails claiming to be from the Centers for Disease Control and Prevention (CDC) or experts saying that have information about the virus. For the most up-to-date information about the Coronavirus, visit the Centers for Disease Control and Prevention (CDC) and the World Health Organization (WHO).
- Ignore online offers for vaccinations. There currently are no vaccines, pills, potions, lotions, lozenges or other prescription or over-the-counter products available to treat or cure Coronavirus disease 2019 (COVID-19) — online or in stores.
- Do your homework when it comes to donations, whether through charities or crowdfunding sites. Don’t let anyone rush you into making a donation. If someone wants donations in cash, by gift card, or by wiring money, don’t do it.
The Cyber and Infrastructure Security Agency (CISA) also offers this advice:
- Avoid clicking on links in unsolicited emails and be wary of email attachments. See Using Caution with Email Attachments and Avoiding Social Engineering and Phishing Scams for more information.
- Use trusted sources—such as legitimate, government websites—for up-to-date, fact-based information about COVID-19.
- Do not reveal personal or financial information in email, and do not respond to email solicitations for this information.
- Review CISA Insights on Risk Management for COVID-19 for more information.
Should you have any questions, please contact Middlebury’s Information Security team at: firstname.lastname@example.org.
(Most of the content above was borrowed from Brown.edu’s excellent example.)