When the holiday season approaches, we often see an increase in
attacks against our computers. These attacks range from wasteful
chain letters and hoaxes to viruses and network attacks and even
so-called "social engineering" attacks. Your computer security and
incident response teams would like to take a moment to offer a quick
refresher on digital self-defense.
- Do not run unknown programs, even screen-savers, that someone
sends you, or sends you a link to.
- Do not forward chain letters, petitions or even warning messages
that you receive from non-authoritative sources.
- NOBODY ever has a legitimate reason to ask you for your personal
password, or to ask you to change it to something of their
choosing. Such inquiries about passwords or any similar requests
that appear strange or unusual to you for information related to
security or operations at Fermilab should be reported immediately
to firstname.lastname@example.org or x2345 as possible incidents.
- If your duties include changing passwords for others and you are
asked to do so, be positive that you are communicating with the
right person. Don't hesitate to require confirmation of their
identity from a mutual acquaintance -- it's for their protection
as well as yours.
- As always, report suspected computer security incidents to
email@example.com. If it seems urgent, go straight to
the helpdesk or call 840-2345.
Fermilab Computer Security Team &
Fermilab Computer Incident Response Team