Security

SF State's Information Security Program covers multiple facets of protecting information assets, whether they are recorded digitally, on paper, or through other media. Following SF State's Information Security policies and procedures is critical to helping protect you and the University.

Security breaches of confidential or sensitive data have potentially serious consequences: for the person whose confidential information is compromised and for the University, which is accountable for upholding federal and state laws as well as CSU orders and regulations. In addition, individuals involved in unauthorized disclosure of information (even when accidental) may be subject to disciplinary and/or civil action.

Related Announcement

Phishing training

Submitted by Julianne Tolson
on Friday, 10/27/17 - 14:43

Simulated phishing messages will be sent to faculty and staff who use the SF State Exchange server. If you receive real or simulated phishing messages report it using PhishMe Reporter or forward it as an attachment.

Tips to detect phishing attacks

Submitted by Julianne Tolson
on Thursday, 10/26/17 - 8:38

Be suspicious of all requests – Ask is this real? User the following checklist to check for common signs of phishing messages.

  1. Message indicates urgent action is needed
  2. Message indicates negative consequences will occur if action is not taken
  3. Message is not expected
  4. Message sender is not known
  5. Message cannot be read without opening an attachment
  6. Message requests sensitive information be sent
  7. Message directs users to click here
  8. Message uses poor grammar and/or spelling
  9. Sender from: name does not match message signature
  10. Sender email address does not match organization name
  11. Sender email address is not exactly the same as real address
  12. Sender name is not listed in campus directory
  13. Department name shown in message does not match A-Z listing
  14. Web site address (URL) of linked site does not match organization
  15. Message was not sent using SF State approved servers

For more information please see: Information Security Awareness program for faculty and staff