Emergency Preparedness Video: Shots Fired on Campus Video

Below an article from the SecurePurdue web site that includes a link to a video:

http://www.purdue.edu/securePurdue/news/2010/emergency-preparedness-shots-fired-on-campus-video.cfm

“Shots Fired on Campus: When Lightning Strikes,” is a 20-minute video that illustrates what to look for and how to prepare and react, said Carol Shelby, senior director of environmental health and public safety. The video is available online at https://www.purdue.edu/securepurdue/police/video. A Purdue career account and password are necessary to log on to view the video. Its release to the Purdue community coincides with National Emergency Preparedness Month.

“This video stresses awareness, preparation and rehearsal, the keys to safety,” Shelby said. “Students, faculty and staff can take the training on their own and access it anytime they want, but some professors also may want to play it in their classrooms.”

The video was produced by the Center for Personal Protection and Safety, based in Spokane, Wash., and is being shown at several college campuses around the nation, Shelby said. The center is composed of former U.S. Department of Defense and FBI officials and is dedicated to researching and disseminating best practices in workplace violence prevention and travel safety. It is responsible for much of the federal government’s current teaching and training on crisis negotiations, workplace violence, abduction prevention and hostage survival situations.

Shelby said Purdue linked with the center through the university’s participation in the International Association of Campus Law Enforcement Agencies, an organization involved in safety and security on college campuses.

The Video:

https://www.purdue.edu/securepurdue/police/video

The Transcript:

http://www.purdue.edu/securePurdue/download.cfm?File=media/SFOC_Final_Transcript.pdf

New email header will alert individuals to probable phishing scams

Please note the following post from ITaP:

Due to the continual increase in phishing attempts targeting Purdue email accounts, ITaP has created a new email header that will alert Purdue mail users to probable phishing scams.

All individuals who use an @purdue.edu email address will be affected by this change. The alert will be added to the top of messages and will read as follows:

Please be advised that the email below contains a link associated with an identified phishing scam. Clicking on the link may harm your computer. If you believe your Purdue career account has been compromised, please contact your local academic IT support or the ITaP Customer Service Center at 765-494-4000 for help managing risk to you and the University.

For more information see:

http://www.itap.purdue.edu/newsroom/news/140114_phishing_header.html

Writer: Andrea Thomas, ITaP technology writer, 765-496-8204, thomas78@purdue.edu

Source: Mick Haberzetle, manager of messaging and application services, 765-496-1067, mick@purdue.edu

David Shaw, chief information security officer, 765-496-8289, shaw46@purdue.edu

More sophisticated phishing attempts reinforce need for caution, security expert says

“More and more sophisticated phishing attempts have led to an increase in the number of individuals at Purdue falling victim to email scams by more than tenfold in the last two years.  Purdue never solicits personal information — such as passwords and account numbers — via email, phone or any other electronic manner.”  Read more on this page…

http://www.itap.purdue.edu/newsroom/news/130816_phishing_increase.html

SharePoint Security Statement

SharePoint Security Statement

  1. Even though specific SharePoint sites or items may be password protected, SharePoint is an Internet-connected server which means that anyone in the world can generally contact the server and attempt to log in.
  2. Anyone, anywhere in the world, with the correct username and password can access information on the SharePoint server (i.e. data within SharePoint is a username and password away from anyone on the Internet).
  3. There are two kinds of data to consider:
    1. Restricted and Sensitive Data
      1. Generally, this type of data should not be placed in SharePoint.
    2. Intellectual Property that is not restricted, but should remain private
      1. This type of data may be placed in SharePoint at the discretion of project leaders.
  4. In general, if you are concerned about liability or legal ramifications, you should not place the data in SharePoint.  If you want to share restricted or sensitive data with a group, please consider using Purdue’s FileLocker sytem:  https://filelocker.purdue.edu.  While FileLocker is not as flexible as SharePoint, it is secure and encrypts data.

FileLocker – Share Files Securely

If you need to share files securely with others and you don’t want to risk placing your files on a consumer file sharing site, a good alternative @ Purdue is to use use FileLocker to distribute / share your files.

FileLocker is a free Purdue system that allows large files (up to 1 GB) to be securely uploaded and distributed. Files are encrypted within the system and you can protect files with a download password that non-Purdue people can use to fetch the file.

For example, instead of sending out CD’s in the mail to distribute a large file, you could upload it to FileLocker to enable others to securely download it.  If you need to share a group of files and folders, you could upload a ZIP file to FileLocker.

Here is a blurb from the FileLocker online help:

Learn how to share an uploaded file with anyone using a publicly available URL

1. After uploading a file, click on the file that you want to share and check the box next to “Public Share”.
2. Once the box is checked, you’ll be prompted to choose which email addresses should receive a link to the file you are sharing. You must also specify whether the share will expire after one use, or whether it can be downloaded repeatedly.
3. If the file may be downloaded repeatedly, you must specify a password that must be entered before the file can be downloaded. You will have to communicate this password to any intended recipients of the file through some other secure means (phone, encrypted email, etc).
4. Once you click share, a publicly accessible URL to download the file will be created, any email addresses you’ve entered will be sent an email notifying them that file is now available at the generated URL, and the URL will be displayed.
5. You may view the publicly accessible download URL and send it to additional people by email at any time after you share the file publicly by clicking on the “(view link)” text next to the Public Share checkbox.

You can find more information about FileLocker on these web pages:

http://www.itap.purdue.edu/service/catalog/detail.cfm?id=126
http://www.purdue.edu/securepurdue/services/index.cfm

Here is the direct link to the FileLocker login page (requires Purdue career account to log in):

https://filelocker.purdue.edu

Thank you and happy file sharing!

–Education IT