{"456281":{"#nid":"456281","#data":{"type":"news","title":"Campuswide Phishing Training Begins This Month","body":[{"value":"\u003Cp\u003ELater this month, the group will conduct a campuswide phishing exercise to help educate students, faculty, and staff on cybersecurity risks and how to identify phishing threats in emails.\u003C\/p\u003E\u003Cp\u003EThe exercise, which will take the form of a regular email, will contain a link to a non-Georgia Tech page that will ask you to enter your Georgia Tech login credentials. There will be apparent red flags in the email, though, that should raise suspicion and stop recipients from taking the proverbial bait. Anyone who enters a username and password on this fake page will be directed to an onscreen training page with tips on how to avoid a real threat.\u003C\/p\u003E\u003Cp\u003E\u201cThis is a non-punitive exercise, so information about individuals who provided their username and password will not be shared,\u201d said Jason Belford, interim associate director for Georgia Tech Cyber Security. \u201cWe will review the results to help us refine our future training efforts. It is critical to conduct these continuous training exercises to help build and maintain awareness throughout the entire community.\u201d\u003C\/p\u003E\u003Cp\u003EGeorgia Tech Cyber Security has seen positive results when they have conducted similar exercises with individual departments and small groups of users on campus. In past exercises among those on campus who had not had phishing training, around 20 to 25 percent of people fell prey to the fake email. Following training, that percentage decreased to around 3 to 5. This month\u2019s exercise, supported by the Office of the President, is the first campuswide phishing exercise and will be repeated every semester.\u003C\/p\u003E\u003Cp\u003EHow big of a problem is phishing on campus? Last year, hundreds of accounts were compromised \u2014 a significant increase from previous years that has grown even larger this year. Belford notes that all notable hacks in recent years, such as those involving Target and The Home Depot, began with a phishing message.\u003C\/p\u003E\u003Cp\u003EWhile preventing all forms of phishing is not possible, one safeguard users can employ is to always check where the URL link in an email is pointing \u2014 before clicking. This can be done by hovering over the link before clicking, or by previewing the link if you use a smartphone. If the domain doesn\u2019t match what you expect it to, that should be a giveaway. For more information, visit \u003Ca href=\u0022http:\/\/www.security.gatech.edu\/phishing\u0022\u003Ewww.security.gatech.edu\/phishing\u003C\/a\u003E.\u003C\/p\u003E\u003Cp\u003EThose on campus who think they have received a phishing message should forward it to \u003Ca href=\u0022mailto:phishing@gatech.edu\u0022\u003Ephishing@gatech.edu\u003C\/a\u003E, or just delete it. Forwarding such messages to Cyber Security helps the team use them to increase operational effectiveness as well as better understand current phishing trends.\u003C\/p\u003E","summary":null,"format":"limited_html"}],"field_subtitle":"","field_summary":"","field_summary_sentence":[{"value":"Later this month, the group will conduct a campuswide phishing exercise to help educate students, faculty, and staff on cybersecurity risks and how to identify phishing threats in emails."}],"uid":"27164","created_gmt":"2015-10-06 12:08:38","changed_gmt":"2022-05-26 17:09:36","author":"Rachael Pocklington","boilerplate_text":"","field_publication":"","field_article_url":"","dateline":{"date":"2015-10-06T00:00:00-04:00","iso_date":"2015-10-06T00:00:00-04:00","tz":"America\/New_York"},"extras":[],"related_links":[{"url":"http:\/\/www.security.gatech.edu\/resources\/phishing","title":"Cyber Security"},{"url":"http:\/\/www.calendar.gatech.edu\/event\/445201","title":"Cyber Security Summit"},{"url":"http:\/\/oit\/","title":"Office of Information Technology"}],"groups":[{"id":"1214","name":"News Room"}],"categories":[{"id":"129","name":"Institute and Campus"}],"keywords":[{"id":"345","name":"cyber security"},{"id":"9299","name":"Office of Information Technology"},{"id":"4112","name":"oit"},{"id":"143911","name":"phishing emails"}],"core_research_areas":[],"news_room_topics":[{"id":"71871","name":"Campus and Community"}],"event_categories":[],"invited_audience":[],"affiliations":[],"classification":[],"areas_of_expertise":[],"news_and_recent_appearances":[],"phone":[],"contact":[{"value":"\u003Cp\u003EInterim Associate Director for Cyber Security - Office of Information Technology\u003C\/p\u003E","format":"limited_html"}],"email":["jason.belford@security.gatech.edu"],"slides":[],"orientation":[],"userdata":""}}}