In a world where technology is the basis for how we get things done, cybersecurity isn’t just a buzz word — it’s the word. Here’s where you might wonder why cybersecurity is so important. Based on some commonly asked questions, we asked Nav Bassi from University Systems to break it down for us and let us know how we can be cyberaware on campus and in our daily lives. Click the play button to check it out.
5 Common Cybersecurity Questions Answered
1. What IS cybersecurity?
Cybersecurity is identifying risks to the information that is important to us, and figuring out how to properly protect that information. Examples of important information to keep safe are: your SIN#, usernames and passwords for email, banking, etc.
The three dimensions to cybersecurity and keeping your information safe:
- Confidentiality – Making sure that only the people who should have access to the information do have access; and nobody else. (e.g. SIN number, banking info, other sensitive credentials)
- Integrity – Insuring that the important information cannot be altered. (e.g. research and data)
- Availability – When you need the information, it’s there. (e.g. grades and transcripts)
2. What is phishing and why should we be concerned about it?
Phishing is s form of social engineering where you will receive an email representing itself as from someone you trust (e.g. Uvic or your bank). In reality, it will be coming from a malicious attacker. Their goal is to obtain your username and password by getting you to click on a link to what is actually a fake version of a site you would usually log into. This email could also contain malicious attachments that will install malware to capture your credentials with fraudulent purpose.
Phishing messages can also be targeted at individuals; this is called spearphishing.
Keep your info safe! To recognize a phishing email, check out 10 Ways to Spot a Phish and Phishing FAQs.
3. Is click-bait the same as phishing?
There is a similarity in that click-bait and phishing both want the user to click on a link. Phishing is impersonating someone you trust, while click-bait is a sensational news article or headline that entices you to click. Click-bait could lead to phishing-type activities, but is generally more about increasing web traffic – not swindling anyone out of their money!
4. How does UVic keep its campus community cybersecure?
University Systems works with the UVic community to help understand the risk of the information they hold, and educate of how those risks can be mitigated. Training and education, combined with understanding the needs of our various stakeholders, allows for us to identify and implement the appropriate technical controls (e.g. phishing training, encryption). It all comes down to education on both sides.
UVic students, faculty and staff members are strongly encouraged to take the available online phishing training.
5. What can everyone do to keep their information safe?
The first step is to educate yourself on what cyber threats you might face. What information is important for you to keep safe? Educate yourself as much as you can, and adapt your behaviour to meet the possible threats.
Another important way to keep your valuable information safe is your password selection:
- Strong passwords that are more than six characters and use capital letters, numbers, and symbols
- Change your passwords on an annual basis
- Don’t use the same password for everything
- Multifactor authentication – you will often see this with online shopping vendors
Security/software updates on your electronic devices also keep your information safe. When this pops up, click ‘update’!
For more information on cybersecurity, visit uvic.ca/systems.
(Video production: University of Victoria Media Services / Content: Nav Bassi, Yasmine Hardcastle)
_____________________________________
Nav Bassi is the Director of Academic & Administrative Services for University Systems at the University of Victoria. He was responsible for building a Project Management Office for University Systems. Nav holds a BSc in computer science and an MBA (Service Management) from UVic, as well as a Master’s Certificate in project management and the Project Management Professional (PMP) credential, and is also a Chartered Professional in Human Resources (CPHR). He has taught for the Gustavson MBA Program and the Division of Continuing Studies at UVic. Nav was previously an elected member of the University of Victoria Board of Governors and Senate, and a Presidential Appointee to the University Human Rights Committee. You can follow him on Twitter @navbassi.