Skip to main content

Phishing??

 



We recently signed an agreement with a company called KnowBe4. They are an internet safety company that provides training resources, safety testing, and more. So far this year, we've done two phishing campaigns for all adult users of crpairie email. Phishing is a intrusive way that hackers try to access information into a system, so an email that may ask to verify a username and password, or one that provides a link to click that can compromise an email account. A big thank you to so many of you that have alerted the Technology Team of these emails. A bit of data for you, 

 
Less than 8% of users actually fell for the last phishing campaign. The fact that over 92% of users passed the test is tremendous! Our goal as we move forward is to continue to decrease the amount of testing failures through awareness and training. 

One of the tools that KnowBe4 provides is a phish alert button built into Gmail for Google Chrome. Later today, we will push that out to all adult users. As part of our ongoing efforts to increase security and mitigate email phishing, we will be installing a Phish Alert Button in our domain Gmail accounts.  Once the PAB add-in is installed, upon your next Chrome restart, you will be prompted with a message to "Allow" the KnowBe4 PAB app. Click the "Allow" button on this message.

This information below is about a short training module that will show you how to use the PAB. 


You will notice a new “Phish Alert Button” in your gmail client. Please click this button whenever you receive a suspicious or potentially dangerous email. Upon clicking, the email will be deleted from your inbox and forwarded to our Technology team for analysis.

Here is additional information about the Phish Alert Button that may be helpful:

Additionally, in the near future, you will be enrolled in “Phish Alert Button” training. The PAB training will teach you how to handle unsafe emails and help you to distinguish between spam, phishing, and spear-phishing emails.

Please keep an eye out and complete this training when it's assigned.   By using this new button, you will help us to keep our organization safe and defend against cyber attacks.




Comments

Popular posts from this blog

Passwords - oh passwords!

 We just recently sent this message to our staff:  Greetings! In our continuing efforts to create a more technology secure environment, we are going to begin to enforce the following rules for STAFF passwords in Google. All passwords must be a minimum length of 12 characters. We recommend passwords that are passphrases, for example “ilovechipsandsalsa”. While we are enforcing a password length requirement, at this time we are not requiring complexity through special characters, or symbols, or upper case letters. All staff will be required to create a new password every 180 days. We will begin enforcing these policies on Wednesday November 16th. When you log into your Google account, you will be prompted to update your password. A few other items regarding this change. Infinite Campus passwords will not be affected. Teacher MacBook logins, office staff’s windows logins, any business office/HR logins, or other website logins will not be affected. Para tablets, chromebooks, or ot...

Campus update

  We get new updates to Infinite Campus every couple of weeks. One of the newest updates now checks your password against known data breaches. If you password is one that is compromised, you'll get a notification like this when signing into Campus:  In order to change your Campus password, you need to go to Account Settings in Campus Tools and select Edit your password. 

Securly - how does it work?

I thought it would be good to post a bit about Securly, which is our web filter. We often get asked about this and sharing what it does and how it works around this time of year seems appropriate. This tool ensures that staff and students access appropriate content on the web. We filter in two ways. In our elementary buildings, content is filtered based up IP address. This is done to allow our young learners to not have to use a username and password to log into devices. The filtering is consistent with all devices in these buildings, no matter if staff or student. In our 5-12 buildings, staff and student sign into their Google accounts and filtering is done based upon their user group. We use Securly's certificate based dns filtering solution. This requires devices on our network to install a certificate or an extension to access the internet. Information about installing the certificate can be found at  http://www.prairiepride.org/procedures/securly.php .