Welcome to
Information Security

The Information Security Office provides leadership to the RIT community in safeguarding the confidentiality, integrity and availability of RIT’s  information resources.

Learn more »

Are you the
Weakest Link

Get information on how to safely remove private information from your devices and stay protected. The chain of security is in your hands.

Learn more »

Guard your
Private Information

The Private Information Management Initiative (PIMI) seeks to identify and reduce the amount of private information found on RIT computers and storage devices.

Learn More »

Learn about
Phishing

The ongoing evolution of digital communication also brings about the evolution of scammers and their methods. Phishing is one kind of such fraud, in which the attacker masquerades as a reputable individual or group, in order to trick users into revealing their private information. Check out our resources to learn how not be baited and reeled in!

Learn more »
 
 

Doxing Mitigation

Submitted by apgiso on Thu, 03/05/2020 - 08:29

What is Doxing?

Doxing is the act of publishing another person's personally identifiable information for the purposes of harassment, intimidation, or humiliation. Published information can include the target's contact information, address, engagement announcements, tax records, notices of political or military involvement, and other details. 

How Can I Protect Myself?

You can take these steps to reduce the risk of being doxed:

  • Create a burner email address for websites that require email confirmation for opting out. 
  • Create a temporary phone number for websites that require verification via telephone or text message. 
  • Search for yourself regularly and see what information is visible.
    • ... ...

Holiday Shopping

Submitted by egliso on Fri, 12/13/2019 - 16:19

Stay safe during the holidays with the following cybersecurity tips!

  1. Keep an eye out for scams: Holidays are prime time for phishing schemes, identity theft, and other scams. Stick with reputable businesses and charities, keep an eye out for suspicious emails, and don’t share your financial information.

 

  1. Beware of fake shipping notifications: If you receive an unexpected shipping notification, do not open it
    2. ... ...

Delivery Notification Scam

Submitted by apgiso on Fri, 04/19/2019 - 14:42

Delivery Notification Scam

Fake package delivery update emails are a form of phishing being used to install malware and steal personal information. These delivery emails appear to come from the U.S. Postal Service, UPS, FedEx, or another delivery service. Clicking a link in one of these emails can install malicious software on your device.

 

If you are unsure if a delivery notification is legitimate, do not click any links in the email or download any attachments. You can copy the tracking link and paste it into the delivery company’s website

 

How to Identify Fraudulent Delivery Notifications

  • Hover your cursor
    • ... ...

RIT Information Security Education--How to Know if You've Been Hacked

Submitted by sxmiso on Fri, 02/08/2019 - 14:16

Compromised accounts happen. Quick identification and response can reduce the harm done to your account and your personal information.

How to know if you’ve been hacked:

  • Your friends tell you. They’ve received a spammy or phishy e-mail from your email account, social media, messaging apps, or SMS.
  • Your phone tells you. Battery and data usage are higher than normal. Charges for premium SMS numbers show up on your bill.
  • Your merchants or bank tell you.You receive collection calls.
    • ... ...

RIT Information Security Alert: Important Security Notification Phishing Attempt

Submitted by awmiso on Sun, 01/14/2018 - 13:37

We’ve received a spear phishing attempt (a phish targeted at a specific population) claiming that there is a security emergency on campus. The email asks the reader to access a linked REPORT and follow protocol. If you encounter this phish, please just delete it.

Here’s the text from the phishing attempt:

--------------------------------

From: "Cullis, Barbara" <EMAIL ADDRESS>
Date: January 12, 2018 at 3:33:00 PM EST
To: Undisclosed recipients:;
Subject: Important Security Notification

Hello All,

There is a security emergency in Campus. Please go through REPORT released for update

and follow protocol.

---------------------------

What can I do to protect myself?

  • Be vigilant! Never respond to an email request for your username or
    • ... ...