As the Chief Information Security Officer (CISO) at Chapman University, my July blog post is a fictional story about the dangers of password reuse. This narrative highlights the experience of James Cartwell, a fictitious university president, whose accounts were compromised due to a reused password, impacting his personal and professional life. This story serves as
As your Chief Information Security Officer (CISO), I want to chat with you about something important: storing passwords in your web browser. When I speak with members of the Chapman Community, I often get asked if storing passwords in your web browser is a good idea. While saving your passwords there might seem very convenient,
As the Chief Information Security Officer (CISO) at Chapman University, I want to remind everyone in our university community to stay vigilant as we approach the end of the academic and fiscal year. This time of year can be hectic and stressful, making it easier for cyber threats to slip through the cracks. Phishing attacks
Recap of Part 2: Shelby received a suspicious email and reported it to the InfoSec team, who confirmed it was a phishing attempt. Bugsy, on the other hand, received a phishing email and fell for it, compromising his account and computer. That night, while Bugsy slept, alerts were going off in the university’s Security Operations
Recap of Part 1: Shelby Tortoise and Bugsy Hare were two employees with contrasting approaches to their work and cybersecurity practices. Shelby was diligent and careful, while Bugsy was fast and careless. Both applied for a new management position at the university. One day, as the two of them were waiting for the decision on
Recently, a sophisticated scam involving fake checks has targeted Chapman University students. The scammer poses as a faculty member, such as “Professor Chris Bolduc,” and reaches out to students via text. The email based variant of this scam is detailed on the trending email scams page. Here’s a detailed look at how this scam unfolds
As the CISO for Chapman University, I want to highlight the importance of cybersecurity during March. With daylight savings time and spring break upon us, these events bring a change of pace and new opportunities. Still, they also present unique cybersecurity challenges we must be vigilant about. Here’s why maintaining strong cybersecurity practices is crucial
As part of our ongoing commitment to maintaining the security of our systems, the Information Sytems and Technology team (IS&T) will soon send email reminders for the annual password reset to Chapman University’s faculty and staff. Please keep an eye on your inbox for these notifications, which will provide you with all the necessary details
What is AiTM Phishing? Adversary-in-the-Middle (AiTM) phishing is a sophisticated type of cyberattack where attackers intercept the communication between a user and a legitimate website. This allows them to steal sensitive information like passwords and session cookies, even if the user has enabled multifactor authentication (MFA). How Does It Work? In an AiTM attack, the attacker sets
As we start the new year and a new semester, I am filled with optimism for the opportunities that lie ahead. The start of the new year is always a time for reflection and renewal, and this year is no different. At Chapman University, we are committed to continuing our journey toward excellence in all