Information Security

CI Students, join the CI NETSEC Club
CInetsec is a club where you can learn about cybersecurity in a group setting
and practice techniques with the support of others. We hope to learn through CTF exercises and participation, Blue/Red Teaming, discussion, research, and guidance from several people in the field. Any level of experience is welcome. Come get creative!

CSUCI is offering webinars for Cyber Security Awareness Month (CSAM)

“CompTIA” on Tuesday, Oct. 25, at 10 a.m. — James Stanger, chief technology evangelist with CompTIA (Computing Technology Industry Association), will discuss the steps involved in becoming a qualified cybersecurity professional.

• “ITPRO TV” on Thursday, Oct. 27, at 10 a.m. — Representatives from CSUCI and ITPRO TV, which provides online IT training, will discuss the cybersecurity field and the many career opportunities.

• “Degree or Certification” on Thursday, Oct. 27, at 2 p.m. — CSUCI and CSU Chico representatives will discuss whether a cybersecurity degree or certification is the best choice in 2022.

This years theme is #See yourself in Cyber. For information on the webinars, visit the CSUCI and CSU Cybersecurity Awareness Month pages.

Multi-Factor Authentication is now live for all Students, Faculty and Staff

CI Rolls out Multi-Factor Authentication.

On June 2, 2020 Information Security completed the roll out of Multi-Factor Authentication for students, faculty, and staff. This security feature will provide a greater level of protection for your myCI credentials and the information accessed while using myCI systems and services. Information about Multi-Factor Authentication at CSUCI may be found at Multi-Factor Authentication (MFA).

Please contact CSUCI's Information Security Team at infosec@csuci.edu if you have any questions.

New "Fake Job Offer" Texting Scam for Students Being Reported

A new variant of the "fake job offer" phishing scam has started to be reported and is targeting CSUCI students. Have you received a job offer via text from a job you didn't apply to? With a follow-up interview on Zoom. CSUCI has seen an increase in job scams recently targeting our student population via text to their personal smartphone. Here are some ways to spot these employment scams:

If it sounds too good to be true, it probably is.
Do your research, look online, and reach out to infosec@csuci.edu if you have any questions or concerns.
Most jobs require a resume, an interview, a background check, and a job application.
Asking you to buy a gift card to iTunes or any other service is a sign the offer is a scam.
Do not share your information until you have verified the possible employer as being legitimate.

For on-campus jobs, please visit the Dolphin CareerLink:
https://www.csuci.edu/careerdevelopment/services/dolphin-careerlink.htm
For more information or questions about Information Security, contact CSUCI's Information Security Team at infosec@csuci.edu or visit Information security.

Securing Zoom Meetings

Check out this new resource on how to better secure your Zoom meetings for meetings or classes.

"Walk-in" virtual Office hours powered by Microsoft Teams

Virtual "walk-in" office hours are available via Microsoft Teams from 10:00 am to 2:00 pm (Excluding noon) Monday through Friday on a first-come, first-serve basis. Hours are scheduled online at this link: Schedule your office hours with Info Sec

Beware of Coronavirus (COVID-19) Scams

Most of us have seen and read in the news about the Coronavirus outbreak, currently known as SARS-CoV-2 or Coronavirus Disease 2019 (COVID-19). CSUCI wants to remind you that during media intense events like this, cyber attackers take advantage, and attempt to scam you or launch phishing attacks that attempt to get you to click on malicious links or open infected email attachments.

Information on Coronavirus (COVID-19) scams and best practices and how to spot these scams.

Reported Coronavirus (COVID-19) Scams

March 10, 2020 - Fake Online Coronavirus Map Delivers Well-Known Malware

Guiding Principles / Mission Statement

Information Security works with the campus community to secure system and network resources, and protect the confidentiality, integrity, and availability of student, faculty, and staff information.

To support this mission, Information Security will:

Develop processes, procedures, and policies required for the protection of confidential information
Identify risks to the security of information and systems and mitigate these risks to levels acceptable to the campus
Define security requirements, establish baselines and measure compliance, based on applicable laws, regulations, and best practices
Consult with campus users and departments to investigate security issues and evaluate products and processes
Collaborate with ITS administrators and staff to develop the campus information security strategy and architecture
Ensure incident response and disaster recovery plans are developed and implemented
Respond to and recover from disruptive and destructive information security events
Increase campus awareness of information security through training and communication

Phishing News and Updates

The IRS is warning faculty, students, and staff of an impersonation email scam targeting educational institutions, primarily those with a “.edu” email address. The suspect emails display the IRS logo and use various subject lines such as “Tax Refund Payment” or “Recalculation of your tax refund payment.” It asks people to click a link and submit a form to claim their refund. Taxpayers who believe they have a pending refund can easily check its status on “Where’s My Refund?” on IRS.gov.

If you receive this or any scam email, do not click on any link(s) in the email. We ask that you are vigilant of this and all other potential phishing scams.