Skip to main content

One Step Ahead: Welcome to a Secure New Year

One Step Ahead logo

Another tip in a series provided by the Offices of Information Security, Information Systems & Computing and Audit, Compliance & Privacy

Dear University of Pennsylvania Faculty and Staff,

Welcome to the 2023-2024 academic year. Over the past several years, we have noticed increased reports of attempts at phishing and data breaches. To protect both our work data, as well as our sensitive personal information, we at the Office of Information Security recommend following several important best practices.

  • Delete emails or text messages from unknown senders, or when the message sounds too good to be true. Don’t click on email links or attachments from an unknown sender, or if the message pressures you for immediate action.
  • Promptly update the software you use on your computing devices, especially devices not managed by IT support staff.
  • Install and run anti-virus software. Penn provides Sophos anti-virus free of charge for all full-time employees and students for their personal devices.
  • Understand the type of data you work with. Penn publishes Data Risk Classification guidelines categorizing data into three categories (low, moderate, and high) based on its sensitivity and the impact on the University in the event of unauthorized access.
  • Don’t scan bar or QR codes without first checking the legitimacy of the business or sender. Check with IT support staff to confirm if the information comes from a reputable source.

Now is a good time to consult with your IT Support staff to learn how to put these and other best practices to into action for you.

We also encourage you to visit these web pages for more information:

Have a secure year!

—The Office of Information Security

For additional tips, see the One Step Ahead link on the Information Security website: https://www.isc.upenn.edu/security/news-alerts#One-Step-Ahead.

Back to Top