Cybercriminals are working just as hard as Santa does
As the holiday season draws nearer, elves work extra hard preparing gifts for us all. Sometimes elves (or imposters) may also send a “Merry Christmas” email or seasonal discount offer. We all need to remain vigilant in order to assess if these messages are legitimate season's greetings and not a phishing attack that could lead to data breaches.
Is cyber crime over the holidays a concern?
Retail and logistics industry can expect a significant increase in activity and revenue as customers flock to websites and physical stores to complete their shopping. But this increases the risk of cyberattacks during holidays. Cybercriminals have one goal: to get your personal and financial information to compromise your data, deploy malicious software, steal your identity, and take your money. But with some simple actions, you can stay safe while you shop online.
Here’s what you can do to boost your security this festive season:
Ensure that your device has an anti-virus software with regular updates.
Unsure how to know if a website is secure? The URL for the site will start with HTTPS—instead of just HTTP. It often has an icon of a locked padlock appear too (on the left of the URL in the address bar or the status bar).
If you are using a shopping app, only download apps from a reliable source like the Apple App Store or Google Play
Use unique and strong passwords for any new account you create.
There’s a reason this piece of advice may sound like a broken record—it’s important. Secure, unique passwords are your best gatekeepers when it comes to keeping your private information private.
Notice the real deals
In addition to sneaky attacks in emails, beware of links to deals that are too good to be true on social networking sites. Real elves would not remain honest about the real deals.
Avoid giving too much information.
If a complete address or phone number is optional, then skip those fields. It is a good idea to take the time to read their privacy policy and find out exactly where and how your information will be shared.
Avoid using free public networks
Free hotspots are convenient when you are ‘on the go’, but they are rarely secured. Avoid using banking or payment sites on a public network—and make sure that you are logged out of such sites on mobile devices before connecting to a public network.
Remember to log off
Always use a passcode to access your tablet or smartphone and log off your computer or lock the screen when you walk away from it. After accessing a shopping or banking site, be sure to completely log out of the site before exiting.
If in doubt, do not click on the link.
Remember, cyber attackers are busy this season too. If you receive a cheerful “Merry Christmas” email or e-card, be mindful that it might be a phishing attack!
Reporting a suspicious email?
Via the Security Awareness tool, KnowBe4, staff and current students have a quick and easy way to report suspicious emails with the Phish Alert Button. Using this feature within your email will ensure the quickest way to alert the Cyber Security Team to commence an investigation.
To help understand the new process better, please see our Phish Reporting Help Guide.
Phish Reporting Help Guide.pdf (450KB)
Unsure what a scam looks like? Find out more on Phishing and Other Scams website.
Reporting a suspected security incident?
For all other incidents, contact the IT Service Centre by email ithelp@griffith.edu.au, phone (07) 3735 5555, or by chat below.
Please provide as much information as you can, such as:
- dates and times
- people and places involved
- any impact you are aware of
- any other background information or context
Griffith's Information Security Policy outlines further details about your responsibilities as a Griffith staff member or student.
Need help?
General enquiries
Access the Service Catalogue to see the full list of cyber security services available.
Or you can ask our friendly staff about IT products and services. Contact us by phone, email or chat.
