September 1, 2022

UCSF IT Security

Awareness News You Can Use

Monthly Articles, Contests, and Upcoming Events

September is Ransomware Awareness Month

Please read "Ransomware Running Riot!" and take the monthly quiz. All UCSF faculty, staff, contractors, students, and affiliates who take the quiz will be entered in a drawing for one of six $50 Amazon gift cards.

 

Remember, you can also visit our previous security awareness articles and take the quizzes. Visit our past campaigns at the UCSF Awareness Site.

New and Improved Required UC Cybersecurity Awareness Course

The next time you complete your annual mandatory UC Cyber Fundamentals Awareness Course on the UC Learning Management System (LMS), you will see a new and improved course - and you could win a $50 Amazon gift card. Find out more and see the new contest below!

July 2022 Mock Phishing Campaign

Congratulations to the over 3400 people who reported the mock phish from via Phish Alarm!

 

If you missed the "red flags" from our latest mock phish, they are displayed at the bottom of our page "Protect UCSF and Myself from Phishing and Other Similar Scams".

 

If an email seems at all strange, report it via Phish Alarm. You will find out almost instantly how to further interact with the email. Over-reporting is not an issue! Better safe than sorry!

 

Ongoing Monthly Contests

 

Everyone Can Win a Prize!

1. Refer your UCSF friends and colleagues to the UCSF Awareness Site and ask them to:

  • Read the latest article and take the quiz.
  • Ask them to enter your email address as the referrer.
  • State they are new to the site on the last page of the monthly quiz.

For each 20 people you refer, you will win a $25 Amazon gift card (limit 2/year, referrals do not expire).

 

2. Each month we will be selecting one person to win a $50 gift card from everyone who uses the Phish Alarm Button to report suspicious emails. They will win a $50 gift card. This important security tool analyzes the email and lets you know if it is an actual phish. No need to contact the Service Desk or IT Security when you get something suspicious. For more information, please visit the Phish Alarm Overview Page.

 

3. NEW CONTEST! Each month we will be randomly selecting five people from everyone with “current” status on their UC Cyber Fundamentals Awareness Course assignment to win a $50 Amazon Gift Card. Here’s how to check your status on the annual training requirement:

  • Click on the UC Learning Center link in MyAccess
  • Click on “UC Learning Center Login” from the UC Learning Center page
  • Click on “Required Training”
  • Check the Status of “eCourse: UC Cyber Security Awareness Fundamentals”

Winners Circle

August Awareness Quiz Winners

Virginia Coningsby

Roan Chiong

Abigail Schrock

Alison Guichard

Tiffany Pon

Salman Mahboob

Mengchenvanessa Lin

 

 

August Phish Alarm Winner

Kim Hamilton

 

August LMS Cybersecurity

Awareness Course Winners

Allison Savage

Armando Martinez

Johnkerwin Lagman

James Howard

Antonin Weckel

 

 

Top Quiz Referrers

Millo Paquini

Eve Phong (Dinh)

Cristina Morrison

Matthew Lau

Jason Dong

Jennifer Camacho

Khin Nyunt

John Hasper

Julie Erich

Jennifer Thomas

Thea Dela Cruz

 

Reached 20 Referrals in August

Eve Dinh

Upcoming Events

Thursday, September 14, 2022 9:00-12:00 PM

Privacy 101 Workshop

UC San Diego’s Campus Privacy Office

 

Privacy is for everyone! Learn about privacy laws and how to best protect yourself through our online Privacy 101 Workshop.

Learn about privacy issues and how individuals can best protect themselves and the personal data they handle. Trainings will also discuss recently-enacted privacy laws and how UC San Diego handles personal data.

 

Register: If affiliated with UC San Diego please register via the UC Learning Center to receive credit for completing the course. If not affiliated with UC San Diego please register via EventBrite.

Tuesday, October 4, 2022 11:00AM-12:00 PM

Accessibility and Security Panel

Scott Hollier, CEO & Co-founder Centre for Accessibility; Diane Tyo, IT Operational Continuity Analyst UCLA; Yvette Wilson, Senior IT Risk Analyst UCLA; Nicholas Borton, Chief Information Security Officer UCD; Lucy Greco, Web Accessibility Evangelist UCB; Yue-Ting Siu, TVI PHD, Teacher of Students with Visual Impairments; Jiatyan Chen, Online Accessibility Program Manager Stanford

Part of the University of California Cybersecurity Awareness Month Celebration

 

Panel members will discuss the cross-sections of Accessibility and Security. They will explain the importance and what is and isn't working. Much more information to come at UC Celebrates UCCAM 2022. Check back often.

 

Register Here

Monday, October 24, 2022 10:00AM-11:00 AM

Social Engineering

Rosa L. Smothers, Senior Vice President of Cyber Operations at KnowBe4

Part of the University of California Cybersecurity Awareness Month Celebration

 

Social engineering, in the context of information security, refers to the use of psychological manipulation to trick people into divulging sensitive information (information gathering) or performing actions (fraud, unauthorized system access.) Rosa will discuss these types of approaches and ways to be a “human firewall” for UCSF and your digital life.

Register Here

 

Past Events

Tuesday, June 21, 2022 10:00-11:00 AM

Advanced Persistent Threats (APTs) and their use of social engineering to target your organization

James R. McQuiggan, Security Awareness Advocate

 

APTs often utilize social engineering, the psychological manipulation to trick people into divulging sensitive information (information gathering) or performing actions (fraud, unauthorized system access.) Various approaches by APT groups and ways to be a “human firewall” for UCSF will be discussed.

 

Recording (Must be logged into Microsoft Office 365)

Tuesday May 17, 2022 1:00-2:00 PM

QB3 Webinar: Cybersecurity: What You Need to Know in 2022

Elvis Chan, FBI; Allison Henry, UC Berkeley; Patrick Phelan, UCSF

 

Cybersecurity is a key issue for us in our private lives — think identity theft — and at the national scale — such as federal elections. For scientists in academic & commercial labs, threats include IP theft, ransomware, and hacktivism. Where are we vulnerable to those who want to disrupt or steal from us? How can we do the best possible job of protecting ourselves and the organizations we serve? Join us to learn best practices from the FBI's Elvis Chan, who manages San Francisco’s Cyber Branch, which is responsible for cyber investigations and digital forensics, and Allison Henry and Patrick Phelan, chief information security officers at UC Berkeley and UCSF respectively.

 

Co-sponsored by the UCSF Cyber-Champion Team.

Recording (Must be logged into Microsoft Office 365)