Embed Size (px)
Citation preview
1
RMIT Classification: Trusted
—Ready, Willing and Able to be Cybersafe Office of the CISO (Chief Information Security Officer)
2019
2
RMIT Classification: Trusted
2
I’m intrigued • Nearly a quarter of Aussies fail to regularly lock their door • 14% of Australians over 15 years of age smoke daily, a further 2000,000 smoke irregularly• 20% of Australian drivers and passengers killed in crashes are not wearing seatbelts • 30% of fatal crashes in Australia are due to drink driving
YET • We all know the risk of leaving doors open, • Smoking leads to cancer, • Death on roads has a high correlation to the use of seatbelts along with drug and alcohol use
…and yet we think it won’t happen to us. No worries mate!
Fact:
3
RMIT Classification: Trusted
3
Cyber risk is no different• 1 in 3 Australian adults fell victim to Cybercrime last year• Cost to Australian economy of $2.3 billion• More than 6 million people fell victim to identity theft, credit fraud or
had their passwords compromised*
*Source: https://finance.nine.com.au/2018/02/20/10/59/six-million-australians-victim-of-cybercrime**www.pcsoft.com.au Your Identity Can Sell on the Black Market
Did you know?• Your identity can sell on the black market for between $1 - $500 • A passport / or Drivers Licence can be sold for between $10 & $35 • Paypal and ebay accounts with transaction history sell for approx. $300 each• Personally identifiable information is sold at $1 per line
4
RMIT Classification: Trusted
Why care? In addition to loss of money, cybercrime causes other damage including:
• Identify theft• Damage to personal reputation• Loss of business or employment opportunities• Impact on emotional and psychological wellbeing
“No one should ever believe they are unhackable and, in 2019, there is no excuse not to understand the threat landscape.”
”People still think they are either invincible, not a target, or simply unaware of potential cyber threats.” - US Cyber Expert
5
RMIT Classification: Trusted
5
Universities are a top target!
6
RMIT Classification: Trusted
A day in the life …at RMIT 53% of inbound messages
are stopped due to malicious links,
attachments and malware
41K incidents of spyware are detected on our
network
Our security systems block your access to around 31K malicious
websites
and help to keep RMIT a safe and great place to work!
Play your role …….
7
RMIT Classification: Trusted
Protect yourself (top 4) 1. Set strong passwords
2. Social Engineering
3. Device Safety
4. Connect securely
RMIT Classification: Trusted
8
What do you think makes a SMART PASSWORD?
9
RMIT Classification: Trusted
9
Aim for EXCELLENT
• 13 characters • Alphanumeric - consists of lower and upper case letters, numbers and special
characters (@,*,#,+) etc • ‘Passphrase’ as opposed to password
• My grandma’s garden has 2 chickens & 1 duck. My favourite time of year is Winter. Mggh2c&1d. MftoyiW. (20)
• Used solely to access RMIT • Not in the dictionary! • Not used anywhere ever before by you• https://howsecureismypassword.net/• Change you password immediately if you think it has been breached
Smart passwords
10
RMIT Classification: Trusted
10
Deadlock your door before it’s too late • Increased brute force and password spray attacks are used by
cybercriminals to gain unauthorised access to systems utilised by educational institutions
• Password spray attacks attempt to access a large number of accounts with a few commonly used passwords, and often result in the theft of sensitive data
• Brute force attacks run automated software to generate a large number of consecutive guesses on all passwords with the hope of gaining unauthorised access
11
RMIT Classification: Trusted
Set up Self Service Password Reset • From time to time, a Cyber security incident may result in an enforced password
reset. • By having SSPR set up you will be able to help yourself get access sooner and
mininise your need to call ITS Service and Support • https://mypassword.rmit.edu.au/sspr/public/forgottenpassword• Step by step set up instructions: https://community.rmit.edu.au/t5/IT-
Knowledge-Base/How-to-reset-your-RMIT-Password/ba-p/27
RMIT Classification: Trusted
13
SOCIAL ENGINEERINGMalicious activities designed to psychological manipulate us into performing actions or disclosing confidential or personal information for fraudulent purposes (phishing, scams, malware & ransomware).
14
RMIT Classification: Trusted
14
Phish will always be a threat. It only takes one • Human error contributes to over 90% of data breaches• Hackers continue to get through to end users• Begins and ends with YOU• We continue to be easily manipulated giving the bad guys access to our data • Security awareness programs use simulated Phishing tactics to help train us to reduce risk• Hackers are crafty. • The left (first part) of domain hierarchy is the most important (before the /)
• Sense of Urgency
www.haveibeenpwned.com• Check if you have an account that has been compromised in a data
breachCHANGE YOUR PASSWORD / PASSPHRASE IMMEDIATELY
15
RMIT Classification: Trusted
15
Think before you click – Check! THE BIGGEST RED FLAG: • An unexpected email that is it asking you TO ACT: respond, pay,
change password etc with a sense a urgency • Domain name check of sender or links in email (hover mouse over
links)• Note: Some URLS pass through the RMIT filter tools and will not
show up when you hover. This is not a guarantee of a safe link. Please remain vigilant. For example: mimecast.com.au
•
• Check grammar• Sense of Urgency
16
RMIT Classification: Trusted
16
Remain careful of ‘safelinks’
17
RMIT Classification: Trusted
Phish bite. Let’s take a close look DAY 1
Hovering your mouse exposes the URL. Secureedu.zzz is the ALARM factor here. RMIT should appear far left in the hierarchy to be considered.
18
RMIT Classification: Trusted
Phish bite. Don’t get caught!
19
RMIT Classification: Trusted
Phishing emails should always be top of mind
20
RMIT Classification: Trusted
Lookout for Phishing emails
21
RMIT Classification: Trusted
Lookout for Phishing emails DAY 2
22
RMIT Classification: Trusted
Phishing / Spam – Let us Know
• If you receive spam, phishing email or simulated phishing, forward the original email to:
RMIT Classification: Trusted
23
CONNECTIVITY & DEVICE SAFETY
24
RMIT Classification: Trusted
Quick Wins – Devices & Storage A unified and multi-layered approach is required to secure portable devices.
Secure your Data
• Turn off microphone on phone apps
• Pin or biometrics
• Regular backup & malware scan
• Automate software updates
• Encrypt data using sensitivity labels
• Wherever possible turn on MFA
• Routinely scan devices for malware
• Downloads – official app stores only
• Turn off Bluetooth & keep locked when not in use
• Enable remote tracking, locking or wiping
• Store to OneDrive – access from any device
• Phone charger from reputable provider
• Only charge devices in public using power point
• Avoid use of USBs for work purposes
• Don’t let others use your ports to charge devices
• Phone charger from reputable provider
• Sharepoint – don’t upload sensitive data to public sites
• Only charge devices in public using power point
- RMIT standard laptop has a screen mask / privacy screen
25
RMIT Classification: Trusted
Used a shared PC? It’s no different to the office kitchen ….need to clean up after yourself
For other browsers, get instructions by searching for:• “clear cache Microsoft Edge”• “clear cache Google Chrome”
RMIT Classification: Trusted
26
International Travel
27
RMIT Classification: Trusted
International travel - heightened risk of data breach
Backup data on RMIT’s Office365 (OneDrive)
• Don’t connect external devices (USB drive) or use an internet port (even in your hotel room)
• Use RMIT VPN to encrypt your data
• Keep devices with you
• Avoid storing in hotel room/safe.
Install latest software & antivirus on phone & PC
Before you go While you’re away • Disable
Bluetooth & pairing mode. Don’t connect in a hire car
• Even with a password, hotel Wi-Fi is not safe. Use a hotspot & IR mobile plan.
• Only connect to trusted sites
Onboard Devices always with you
Not stored together
In carry-on luggage
-Set up multifactor authentication-Suitable data plan Refer to travel guide** & high-risk destination criteria
20% of travellers are subject to cyber-crime when abroad* Clear travel guidelines are available**
*https://www.fcmtravel.com/en-us/resources/insights/why-cyber-security-fastest-growing-source-travel-risk**https://www.rmit.edu.au/staff/services-and-tools/buy-or-organise/travel/travel-safety
Use a strong password
28
RMIT Classification: Trusted
Report Incidents ASAP• Forward suspicious emails to: [email protected]• Report any suspicious behaviour directly on x58888• www.rmit.edu.au/its/ithelp
More tips & information:rmit.edu.au/cybersecurity
Latest Online Threats –FREE Alert Service
www.staysmartonline.gov.au/alert-service
2020 Guide to staying safe online
29
RMIT Classification: Trusted
29
• Are you ready, willing and able to be Cybersafe?• Become a Cyber Safety Ambassador – join today!
Email: [email protected]
30
RMIT Classification: Trusted
30
Action Summary: • Careful who you friend on Social Media – FB / LinkedIn• Set up strong passphrase – unique to RMIT• Explore a Password Manager• Set up SSPR• Check ‘haveibeenpwned’ & set up ALERT feature• Avoid use of Public Wi-Fi to access any personal tools and services• Update phone security settings to update automatically• Check URL addresses carefully• Check home router settings • Video surveillance - Be aware of your surroundings (password / user name) • Be an advocate for Cyber safety. See something, say something. • Report Phishing to [email protected]
Awareness drives CHANGE
RMIT Classification: Trusted
31
APPENDICES
32
RMIT Classification: Trusted
iphone / Android – Automatic update settings
Android
If you want to save data, turn cellular data off. Be sure to use trusted Wi-Fi
33
RMIT Classification: TrustedUnusual or unfamiliar email format
Generic or non-personalisedemails
Unusual or non-standard tools posing as official security information
Missing or non-standard signature blocks
Sense of urgency
34
RMIT Classification: Trusted
35
RMIT Classification: Trusted
Smart passwords
20 characters
• Use a passphrase • Avoid known facts
eg: date of birth, pet
• Use a password manager
Private
• Don’t share• Change it (180
days)• Don’t write it down
or leave it on your desk!
Never re-use
• Use different passwords for work, personal and social accounts
• Don’t use your RMIT log in for any other accounts
Multi-factor authentication
• Set up your mobile verification for your RMIT Google mail
• Set up the RMIT self service password reset tool*
36
RMIT Classification: Trusted
What would you do?
