Our information security team is growing, and our program is changing!
We have some exciting new things rolling out, so continue to check back as we release more information.
CrowdStrike Falcon for Tulane-Owned Devices
Tulane's newest premium security software, CrowdStrike, is now required for all Tulane-managed devices. This industry-leading endpoint detection and response software has replaced TrendMicro as Tulane's enterprise security solution against bad cyber actors. Read more about CrowdStrike at Tulane. To start, visit the portal below and choose "Tulane Assets - Full EDR" to download and secure your Tulane-owned devices.
- Check for CrowdStrike Falcon on your Tulane device before downloading.
- Contact help@tulane.edu for assistance.
Download and install CrowdStrike Falcon for Tulane-Owned Devices
CrowdStrike for Personal Devices
We offer all employees and students a free premium version of CrowdStrike for their personal devices. To start, visit the portal below and choose "personal devices" to download and secure your computers.
Download Your Free Security Software for Personal Devices
2023 Global Threat Report
Click to view and download the full report.
Over 200 tracked adversaries as of 2022 are participating in eCrime, state-sponsored cyberattacks, or hacktivism. These adversaries or "bad actors" are active across 7 major industries, including higher education. Below are additional statistics on who they are, where they are active, how they operate, and what they are after.
Tulane's Phish Bowl
Phishing is the top social attack on organizations and the most common cause of data breaches. Our Phish Bowl is designed to help Tulanians identify a phishing email, collect and show real fraudulent emails received by Tulane users, and provide you with ways to report a phishing email quickly.
Visit the Tulane Phish Bowl, it.tulane.edu/phishbowl
Did you receive a suspicious email?
-
REPORT IT! Forward the email to security@tulane.edu.
-
DON'T TAKE THE BAIT! Learn the Anatomy of a Phishing Email.
Highlights from Cybersecurity Awareness Month 2022
THANK YOU! Tulane's inaugural Cybersecurity Awareness Month participation was a success because of you.
Our university joined over 3,400 private and public companies and institutions as official 2022 champions with the sole purpose of educating our communities on the importance of strong cybersecurity practices. Without cyber awareness, we cannot protect ourselves or Tulane from the rapidly increasing rate of online attacks. The Information Security Office (ISO) is committed to helping Tulane stay safe online not only in October but year-round with ongoing initiatives that we kicked off during Cybersecurity Awareness Month.
These initiatives include:
- Tulane's inaugural Phish Bowl
- Phishing email simulations
- The Anatomy of a Phishing Email infographic
- Cyber awareness quizzes and educational videos
- Tips and best practices shared on our website and social media
The ISO will continue to arm you with the knowledge and tools to combat cybercrime and protect your data and devices. Follow them on social media @tulaneinfosec, visit them online at cybersecurity.tulane.edu, or email them at security@tulane.edu.
Be #TUCyberSmart!
Work Safe, Play Smart
We want you to work safely and play smart at Tulane.
Watch this video to learn how you can better protect yourself and your family online in only 60 seconds.
Week Four: Detect and report phishing attacks
Did you know this year alone, cybercriminals have sent over 3.3 billion phishing messages
and caused over 4,000 data breaches, exposing over 22 billion personal records?!
Spot and stop phishing attacks by learning to identify the bait!
Learn more in 60 seconds.
Don't take the bait!
When you open your email, you probably see endless ads, responsibilities, and links to funny cat videos. When an attacker sees your inbox, they see a potential goldmine.
Complete the phishing quiz for a chance to win cool prizes like a Crowdstrike backpack or cooler, gift cards to Barnes & Noble, Amazon or PJs, and more.
Winners will be emailed on November 1.
Complete all four weekly quizzes to increase your chances of winning!
Downtown Campus
Tuesday, October 25 | 11 a.m. - 1 p.m. | Deming Pavilion lobby
Uptown Campus
Wednesday, October 26 | 12 p.m. - 2 p.m. | Lavin-Bernick Center first floor
Weekly Newsletter
Coming soon!
Downloadable Graphics
See a suspicious email? Check for SLAM: Sender, Links, Attachments, Message
Always pause and think before you click on a link
Enable MFA on your online account when possible for additional security
Check out our Phish Bowl for the latest phishing messages
Week Three: Prevent & respond with updated software
Did you know that simply updating your software regularly can help protect you
from ransomware attacks and other online account breaches?
Watch to learn more in 60 seconds!
Staying up-to-date is staying safe!
Software. To paraphrase Dickens, it is the best of things, it is the worst of things. It drives all the technology around us but is constantly in need of patching or replacement.
Complete Crowdstrike's online trivia to be entered to win prizes like a Crowdstrike backpack or cooler, gift cards to Barnes & Noble, Amazon, and PJs Coffee, and more.
Turn on automatic updates if possible
Update your software and apps asap
Stop using outdated operating systems now
Use advanced next-generation endpoint detection and response software like CrowdStrike
Backup your data and devices often
Week Two: Identify & strengthen with multi-factor authentication
Multi-factor authentication provides two-step verification to confirm your real identity online
and strengthen account security for your personal and professional data!
Watch to learn more in 60 seconds!
One is None.
Perhaps you have watched one of the dozen or so survival shows where the contestants are left in the middle of a barren godforsaken landscape with nothing but a few items and their wits to survive. Or you may have seen one of the many global competitions where contestants engage in a larger-than-life race around the world.
Complete the MFA quiz for a chance to win cool prizes like a Crowdstrike backpack or cooler, gift cards to Barnes & Noble, Amazon or PJ's Coffee, and more.
Don't get spooked! Winners will be announced on October 31.
-
Use MFA for all personal and work accounts to prevent account takeover and identity theft.
-
Authentication methods include one-time codes via text message or push notification approvals sent through an app.
-
Push notification to your MFA mobile app is more secure than voice and text messages.
-
Deny unusual repeat prompts to your device to prevent falling for a false prompt from an attacker.
-
Never give an MFA code to someone over the phone.
Week One: Protect & secure accounts with strong passwords
Passwords are the keys to your kingdom.
Learn how to strengthen, protect, and secure them in only 60 seconds.
They want their passwords back!
Passwords, love them or hate them, are here for a while. We deal with them in almost every facet of our lives and they just keep getting longer. I am not going to disagree that it is annoying, but I am here to convince you that it’s important.
Complete the password quiz for a chance to win cool prizes like a Crowdstrike backpack or cooler, gift cards to Barnes & Noble, Amazon or PJs, and more.
Longer is better.
Passwords or passphrases should be 12 characters or more, no matter the site’s requirements – e.g., “Every1 needs long passwords!”
Create a unique password for each account.
One stolen password can be leveraged to gain access to every single account. Using one password also increases your chances of becoming a victim of identity theft.
Use a password manager.
Instead of a notebook, sticky notes, or web browser, find a trustworthy password manager. Then you only need to remember ONE password.
Passwords are personal.
Treat your passwords like your toothbrush. Don’t share them with anyone!
