By Michael Canfield
IT Communication Specialist

October is National Cyber Security Awareness Month. Follow UBIT on X and Instagram all October long for #BeCyberSmart tips on securing your connected devices at home, school and work.

It’s common to think of cybersecurity as just protecting your own devices and personal data. But in our interconnected world, your actions impact everyone’s security. So, what can you do?  

Start by adopting stronger security habits. Use a strong, unique password for every service you sign up for. Reusing the same password across multiple sites weakens the security of all your accounts.

Better yet, use a passphrase—like a password, but a longer phrase that’s easier for you to remember, and more secure too. 

Multifactor authentication (MFA), also known as two-factor authentication or two-step verification, is a cybersecurity measure that requires individuals to verify their identity in multiple ways when logging into an account. UB uses Duo for multi-factor authentication. 

Verifying your identity through Duo involves entering your username and password, followed by a prompt you’ll respond to on another device, like your smartphone. 

A simple way to improve your cybersecurity is by keeping your software and apps up to date. By installing the latest updates for your devices, software, and apps, you get the best security available and access to the newest features. But remember, these benefits only come if you update! The good news is that updating is simple, and you can even set it to happen automatically. 

Phishing attempts can be subtle, but knowing the signs helps you avoid them. Always double-check emails before clicking links or downloading attachments.

• Job/internship scams: Emails offer jobs or internships that seem too good to be true. Even if it looks like it's from UB, verify the source.
• Impersonation scams: Scammers pretend to be UB staff or students, asking for gift card purchases. Verify identities before taking action.
• Social media scams: Be cautious of suspicious links in direct messages, even from friends. Their accounts may be compromised.
• Financial aid scams: Scam emails target students, especially at the semester's start. UB will never ask for your password.
• QR code scams: Fraudulent emails claim HR sent a file with a QR code. Check sender details and be wary of strange requests.
• Google Docs/M365 scams: Phishing emails may trick you into sharing account info. Always verify URLs and use two-factor authentication (Duo).

If you have any reason to believe your UBITName account has been compromised, change your password immediately—log into the UBITName Manager at ubidm.buffalo.edu, or contact the UBIT Help Center at 716-645-3542, or online at buffalo.edu/ubit/help.

If you believe you are the victim of identity theft, you can report the theft and make a recovery plan at identitytheft.gov.

You can always find the latest tips and alerts about cyber security on the UBIT website—just visit buffalo.edu/ubit/safe.