You are a SPECIAL Librarian! You are a Military Librarian!

Tag Archive | "Federal Libraries"

New posts on “New Technologies for Federal Libraries”

 

 

Posted in Current EventsComments (0)

After USPS Phishing Hack, Audit Shows Postal Workers Still Click on Links – Nextgov.com

Highlights from the Story:  hackers

A quarter of agency employees fell for a simulated email scheme, according to an internal watchdog.

Most of the participants in the recent phishing drill (96 percent) had not completed annual information security awareness training, including 95 percent of the clickers, the report found.

“When management does not require all employees with network access to take annual information security awareness training, users are less likely to appropriately respond to threats,” Thompson said.

Currently, only new hires and chief information office personnel are required by policy to complete the curriculum every year.

Postal employees are not alone in the struggle to spot deceptive emails. Phishers even gained a foothold into the Joint Chiefs of Staff administrative email network over the summer, according to Ars Technica, faking emails from a bank used by many service members.

My takeaways from this story:

  1. All (100%) employees and contractors must have at least annual information security awareness training.
  2. Never click on a link in an email without knowing what URL it should be going to.
  3. Stop.   — think a dozen times before clicking on a link.
  4. Call your bank directly via a verified phone number to check on validity of emails.

 

Full Story: After USPS Phishing Hack, Audit Shows Postal Workers Still Click on Links – Nextgov.com


Source: New Tech for Federal Libraries

Posted in NewTech4FedLibComments Off on After USPS Phishing Hack, Audit Shows Postal Workers Still Click on Links – Nextgov.com

‘Let’s Encrypt’ the Internet: From HTTP to HTTPS

In November 2014, Electronic Frontier Foundation (EFF) announced the Let’s Encrypt initiative, which is designed to help transition the internet infotodayfrom using HTTP to using an encrypted HTTPS environment. Let’s Encrypt simplifies the cumbersome—and potentially expensive—process of obtaining and installing a Transport Layer Security (TLS) certificate from a trusted authority in order to encrypt web traffic. TLS is the updated version of the Secure Sockets Layer (SSL) encryption model, an earlier method for encrypting web traffic that has since been deprecated and is no longer in widespread use. On Sept. 14, 2015, Let’s Encrypt issued its first certificate, marking a major milestone in the project, which is now run by the newly created nonprofit organization ISRG (Internet Security Research Group). Major sponsors offer support, including Mozilla, Akamai, Cisco, EFF, IdenTrust, Automattic, Shopify, and the American Library Association’s Office for Intellectual Freedom.

Full Story: ‘Let’s Encrypt’ the Internet: From HTTP to HTTPS


Source: New Tech for Federal Libraries

Posted in NewTech4FedLibComments Off on ‘Let’s Encrypt’ the Internet: From HTTP to HTTPS

Translate:

DMIL on Facebook

"Cassandra in Oz: Counterinsurgency and Future War by Dr. Conrad Crane and GEN (Ret.) David Petraeus" from the U.S. Army Heritage and Education Center YouTube page

https://youtu.be/pFwzzadtMew
... See MoreSee Less

Mon April 10th  ·  

View on Facebook

Follow Us On:

Categories

Blog Archives