Email and online security (including phishing scams)

What is phishing?

Phishing is a scam where individuals send spam or pop-up messages to lure personal and financial information from unsuspecting victims.

Be wary of suspicious emails.

Carefully review any email requesting or including your username or password information, particularly if the email urges you to provide additional personal information to restore a deactivated account, verify a financial statement, or obtain some kind of reward.

Avoid opening any questionable emails. If you have opened an email that seems suspicious or is from an unknown source, do not open any attachments or links it may contain, and delete it.

Know who you're dealing with.

Don't interact with unsolicited email from organizations with whom you do not have a relationship. Don't visit Web sites that use suspicious URLs such as numbers instead of domain names, or misspelled domain names that resemble but don't match legitimate domains.

Protect your personal information.

Only provide credit card or other sensitive personal information to organizations you know and trust.

Pay attention to security warnings provided by your browser or email program.

If your browser alerts you that a site you are attempting to visit is unsafe, avoid that site. If your email program flags a message as suspicious because its sender cannot be verified, do not interact with the email.

Check up on the latest email fraud activity.

For more information on the latest email frauds on the Internet, visit http://hoaxbusters.org/.

General online and computer security tips

Protect your passwords.

Memorize your passwords. Do not write them down or share them with anyone. Change them regularly and use combinations of letters, numbers, and "special characters" such as @, %, & and #.

Do not use your Social Security number as a username or password.

Keep your computer operating system up to date.

If your computer is more than five years old, its operating system (e.g. Windows 98, OS 7, etc.) may not offer the same level of protection as newer systems. System manufacturers provide frequent updates to help make your system more secure, possibly automatically through email or via your Internet connection. For more information, visit:

• Microsoft®: http://www.microsoft.com/security/
• Apple Computer®: http://www.apple.com/softwareupdate/  

Use a current Web browser.

The latest Web browsers have the latest encryption technology and other security implements that can help keep your data safe. Some sites are implementing new security technologies that are not compatible with older Web browsers.

Install a personal firewall.

Though most office networks include firewall protection, your home computer may benefit from this added level of security. Check to see if your operating system already includes a firewall prior to purchasing a separate one.

Install, run, and keep anti-virus software updated.

Commercially available virus protection software helps reduce the risk of contracting computer viruses that can compromise your security. These programs offer continuous upgrades in response to the latest threats.

Avoid downloading programs from unknown sources.

Downloads from unfamiliar sources may contain hidden programs or viruses that can compromise your computer's security.

Disconnect from the Internet when not in use.

Dedicated services such as DSL or high-speed cable provide a constant connection between your computer and the Internet. Even if you have a firewall installed, as an additional step to help protect yourself, disconnect from the Internet when not in use to avoid unwanted access to your computer's data.