Keep your PC Safe!

Don't let your account get hijacked; bad guys can use your account to send out huge amounts of spam.  And, because it originates from "Cerritos.edu" our college can be blocked (or prioritized very low) by internet service providers for allowing spam through our system.  

Here are some guidelines to help keep your PC safe!

Use a strong password and keep is safe.  It is good practice to apply the rules below to all your passwords.  Also, here is an article from Microsoft regarding “Strong Passwords”: http://technet.microsoft.com/en-us/library/cc736605(v=ws.10).aspx

1. Your password should never match your user ID

2. You should not use the same password that you've used previously

3. You should one or more numbers or special characters in your password

4. Your password should be 6 characters or longer

5. If your enter the wrong password 3 times, your account will be disabled

6. You must change your password every 180 days* but you should change it more frequently

*If you don’t change your password in a timely manner once your 180 days expire, your account will be locked.  You can call the helpdesk at x2166 or email helpdesk@cerritos.edu from another email account for password assistance.  We have also developed a web program to reset your password that can be found here: https://secure.cerritos.edu/cgi-bin/reset_password.cgi.  The Information Technology Department will NEVER ask you for your password; please don’t give it out to anyone.

A common method to gain access to your personal information is with e-mail scams, called “phishing”.

What is phishing?
It's a scam! Phishing (pronounced "fishing") involves the use of e-mail messages that appear to come from your bank or another trusted business, but are actually from imposters.  Phishing e-mails typically ask you to click a link to visit a Web site, where you're asked to enter or confirm personal financial information such as your account numbers, passwords, Social Security number or other data. Although these Web sites may appear legitimate, they are not. Thieves can collect whatever data you enter and use it to access your personal accounts.

How can I spot a phishing scam?
Look for these warning signs:

1. Language and tone. The message you receive may urge you to act quickly by suggesting that your account is threatened. It may say that if you fail to update, verify or confirm your personal or account information, access to your accounts will be suspended. The wording may also be sloppy and contain misspellings.

2. Requests for personal information. Scam e-mails typically ask for personal or account information such as:

- Account numbers 
- Credit and check card numbers 
- Social Security numbers 
- Online banking user IDs and passwords 
- Mother's maiden name 
- Date of birth 
- Any other confidential information

3. Non-secure Web pages. Clever thieves can build a fake Web site that looks nearly identical to an authentic one. They can even alter the URL (the Web address) that appears in your browser window. Watch out for non-secure Web pages that ask for sensitive information (secure sites will typically display a lock in the status bar at the bottom of your browser window).

How can I decrease my risk of being a phishing victim?
Here are some safety tips:

1. Be suspicious of demanding messages. Messages threatening to terminate or suspend your account without your quick response should be treated as suspicious. A legitimate bank or business should not request personal information from you over an unsecured Web site. When in doubt, call the business' customer service number (available on your account statement) to confirm the status of your account. Do not use telephone numbers found on the suspected Web site.

2. Always type in the URL of the Web page you need. Phishing scams rely on embedded links that take you to fake Web sites. It's safer to type your bank's Web address directly into your browser so you know you're visiting the legitimate site.

3. Protect your password. Don't write down sensitive personal information such as your password or Social Security number. Change your password frequently.

Learn more about phishing from the FDIC: http://www.fdic.gov/consumers/consumer/alerts/phishing.html