Top 10 Information Security Best Practices
- NEVER give out your password to anyone online or over the phone. ITS knows who you are. We will NEVER ask you for your password, neither will your bank, credit card company, social media website, email provider, or any other entity with whom you have login credentials.
- Be suspicious, do not download any program that you did not specifically seek out to download. Do not agree to a "free virus scan" from a website.
- Do not click links or open attachments in emails you were not expecting. If you get something from someone you know that looks suspicious, call them and ask if they sent it to you.
- Update your computer, this includes the operating system, programs, anti-virus/anti-malware programs, browsers, browser plugins, and other software on a regular basis. Most will notify you when updates are available.
- Schedule regular anti-malware scans of your computer, weekly at least.
- Use encrypted wireless networks whenever possible, using the WPA or WPA2 type encryption. If on unencrypted wireless networks, make sure you are on an HTTPS site if entering login credentials.
- Backup your critical data to a file server, USB drive, or other means of protecting the data against computer hardware failure.
- Lock your computer when you walk away from it. In Windows it's as simple as holding down the "Windows" button and pressing the "L" key. On a Mac, setup a "hot corner" where you can drag your mouse to engage your screen saver. Always use a screen saver password.
- Be careful of the social media apps you use. On several occasions, malicious Facebook apps have been developed that spread malware to your computer, steal your Facebook login credentials, and spread themselves to all of your "friends" in Facebook.
- Never send Social Security Numbers, credit card numbers, completed tax forms, or other personally identifiable information through unencrypted email. It can be intercepted and used to steal your identity.
Learn to protect your email from spam!
Learn More >
View the UTM security policies.
Learn More >