Phish TankPhish Tank
A collection of phishing scams that have attempted to bait the Auburn community.
Phish TankIn page navigation
2-Factor AuthenticationDUO
Auburn has implemented DUO as high-security login authentication.
2-Factor Authentication (DUO)In page navigation
Enables Auburn employees to comply with protecting restricted data.
SpirionIn page navigation
IT Security TipsSecurity
Auburn sponsored security tips.
IT Security TipsIn page navigation
Mobile Device SecurityMobile Device
Auburn University's mobile device security requirements.
Mobile Device SecurityIn page navigation
Phishing is an attempt to acquire personal information masquerading as a trustworthy entity.
PhishingIn page navigation
SANS Securing the HumanSANS
Each day more and more cyber threats are committed against institutions of higher education.
SANS Securing the HumanIn page navigation
Removal Tips, Tools, and Information.
Spyware/MalwareIn page navigation
Virus ProtectionVirus Protection
Everyone at Auburn University is expected to take precautions to protect their computers against viruses.
Virus ProtectionIn page navigation
VPN ClientVPN Client
A VPN provides a secure two-way communication tunnel to the Auburn University network.
VPN ClientIn page navigation
Case In PointCase In Point
Lessons for the pro-active manager
Case In PointIn page navigation
Project CleanupDelete
Improving security and minimizing risk through proper data management
Project CleanupIn page navigation  or    844-0888 with questions
Kathryn Parker

Everyone on campus has something that's protected by a password. Bank account, email inbox, social media profile – or most likely, a combination of these and many more! Setting a password is a good step, but are you really doing all you can to keep your information and identity safe? To be able to answer 'yes' to that question, you should answer 'no' to all of these:

  • Do you have anything that still uses a default password?
  • Do you use the same password for multiple accounts?
  • Does your password include your name, your pet's name, your birthday, your anniversary, or any other publicly known information?
  • Is your password all lowercase or all uppercase?
  • Is your password a word that's in the dictionary?
  • Do you have your passwords written on post-it notes or in other various locations?
  • Does your password hint contain the actual password?
  • Have you opted out of two-factor authentication?
  • Do you save your passwords in your browser?

If you answered yes to any of these questions, consider looking into changing that practice to help secure your data. Use as many mixed characters as possible, enable two-factor when it's available, use nonsense words or patterns that only make sense to you, and look into a password vault to help you keep everything organized. There's no such thing as 100% secure, but these steps will certainly help you get closer!


Published: 3/28/2018 1:12 PM
# Comments: 0
William Miaoulis

In an effort to better protect all students, faculty, and staff, Auburn's Office of Information Technology has recently implemented Captcha technology on the People Finder page. This simple technology allows us to provide an additional layer of protection for all the information available on that page – including work phone numbers, Auburn email addresses, and physical work addresses. This is helpful because it cuts down on the amount of spam and phishing emails that appear on campus.


Published: 3/9/2018 2:52 PM
Category: Ideas
# Comments: 0
Kathryn Parker

Recent phishing attacks are becoming more and more sophisticated, and we would like to encourage you to protect your Auburn account information by enabling 2-Factor Authentication, also known as 2FA. Even if you've never heard of 2FA, chances are you've used it. Does your bank sometimes call you to confirm your identity? Or does Amazon send you a code via text before you can login? That's 2-Factor Authentication.

Auburn University uses Duo as an added layer of protection – it's like a second password for your account. Not only does 2FA protect you from unauthorized logins, but it can help protect you from phishing attacks as well. How? Some attacks may encourage you to click accept on a Duo request – but Duo and Auburn will NEVER ask you to authorize Duo through your email. You select your Duo authorization method, so you will know immediately that any other request is spam. If you receive a Duo request that you did not initiate, please reject it and mark it as fraud! Someone from the CyberSecurity team will contact you for further information. 

You can also trust that no one will ever ask you for your password via email. If you feel like you have entered your credentials someplace you shouldn't, we urge you to change your Auburn password immediately. If you use that same password elsewhere, please consider changing those as well. And if you feel like you've gotten a suspicious email, please forward it to You can also contact if you're not sure. When in doubt, don't enter your login information!


For more information on phishing attacks, go to the OIT CyberSecurity Center Website.

Published: 3/2/2018 2:58 PM
# Comments: 0
1 - 3Next
Retrieving Data
Retrieving Data