Security Best Practices

The following tips and guidelines can help protect you from computer viruses, hacking and identity theft.  Resnet highly suggests that you follow these guidelines closely while connecting to the network.

Keep your operating system updated

In most cases, viruses and hackers attack your computer by exploiting existing vulnerabilities in your operating system.  It is important to keep your operating system up to date with the latest security updates and patches to fix any known problems.  The common misconception is that only Windows users need to update their operating systems.  This is NOT true.  there are flaws in every operating systems and they also need to be fixed. With that being said, Microsoft Windows is the most exploited operating system and it is especially important for Windows users to keep Windows up to date. 

  • Windows users, turn on Automatic Updates
    We strongly encourage you to turn on Automatic Updates and allow Windows to automatically download and install the updates everyday.
  • The latest Windows updates are also available at http://windowsupdate.microsoft.com

Install an Anti-virus software and keep virus definition up to date

Anti-virus software protect your computer from viruses and worms but it is useless without the latest virus definition.  Virus definition files help anti-virus software detects new viruses and instruct the software on how to remove the virus.  We recommend that you turn on automatic updates for your anti-virus software and check for new updates at least once a week.

Resnet recommends any of the following anti-virus software:

Set a login password

Login password is often the first line of defense against unauthorized access to your computer.  If you are using Windows XP or Windows 2000, SET YOUR ADMINISTRATOR PASSWORD!!! Modern viruses are spreading through network share by exploiting blank passwords. Protect yourself and the UCI network by passwording your computer. 

Choose a strong password

A weak password is just as good as not having a password at all. 

A strong password contains:

  • at least 8 characters
  • characters and numbers
  • upper and lower case
  • and words that are not found in the dictionary

Do not share your password with anyone.  It is also recommended that you change your password every six months.

Don't open suspicious email

A simple rule of thumb is that if you don't know the email sender, be very careful about opening that email.  While most viruses require you to open an email attachment to be infected, there are some that can infect your system simply by viewing the email.  When in doubt, delete it.

Be careful of phishing scams

Phishing is an Internet scam where fraudulent emails and web sites are used to trick recipients into surrendering their personal or financial data for malicious purposes. Phishers often use well-trusted brand names of banks, online retailers, or credit card companies to fool recipients into believing that the email is genuine and from a legitimate source.

Never use links provided in the email. Go to the web site directly by typing the address in your browser's Address/Location field and login from there.   If you are not sure, call the company in which the suspected email came from.

Please visit the What is Phishing Scams? section for more information about phishing, sample phishing email and how to protect yourself.

Be aware of spyware

Spyware potentially provides malicious users with your most private personal information.  For example, a typical online banking visit could yield a malicious user with your banking information.  There are software solutions that can scan your computer for any spyware and remove the spyware for you.  Please visit the What is spyware? section for more information about spyware and how to get anti-spyware tools.

 

If you have a question about any of the above topics, please feel free to contact an RNC at (949) 824-6375.

Note: neither Resnet nor the University of California endorses any of the products or brands mentioned on this page.