IT Security Alerts and Advisories 

Phishing for Passwords

There have been a number of recent email-based "phishing" attempts in which recipients are requested to provide their login credentials.  While many of these campaigns look obviously suspicious, some have been very carefully crafted so as to appear to be genuine.

Please be advised that IT Services will never request users to divulge their login information via email.  If you are the recipient of such an email request, please ignore it and delete it. 

If you suspect that you may have been a victim of such a phishing attempt, you should change your password immediately.

 For more information on phishing, see the following article entitled Anatomy of a Phishing Attempt.


Two-Factor Authentication

Facebook, Google, Microsoft, and more recently, Twitter are offering two-factor authentication.

What is this?  Two-factor authentication goes beyond just a password and requires an additional piece of privileged information.

This could be something you know and/or something you have, and/or something you are (i.e. a fingerprint)

Using Microsoft as an example, you can opt for their two-factor authentication solution which beyond your password (something you know) also requires a special code that is texted to you (something you have) and then must be entered in order to log in.

Two-factor authentication is not new, but more and more social media sites are now adopting it as a means of increasing security and privacy for their users.






Twitter Facebook Linkedin Flikr UFV on Google+ YouTube goUFV