Tips to stay cyber safe
There’s plenty of cybersecurity tips out there – so many that it can start to feel overwhelming. But staying safe online doesn’t have to be complicated. That’s why we’ve pulled together some simple, practical tips to help protect yourself, your personal information, and the University’s systems.
Following a recent global Canvas LMS cyber incident, there is an increased risk of highly convincing phishing emails impersonating staff or students. Use caution with links, attachments, MFA prompts and password reset requests. Report suspicious messages using the Report phishing button or contact spam-report@unimelb.edu.au.
Secure your accounts
Strong, unique passwords are your first line of defence against scammers, and a password manager can help you use a different password for every account.
To add extra protection, enable multifactor authentication (MFA) wherever possible. Even if your password is compromised, MFA makes it harder for attackers to gain access.
Stay alert for scams
Scams often share common red flags: unexpected pressure, too good to be true offers, requests for sensitive information, or payments through gift cards or crypto.
Stay sharp and do a quick mental check before acting on any email, SMS, message or QR codes. For more tips, visit our Scam advice page and stay up to date with our Scam alerts.
Keep everything up to date
Turn on automatic updates for your devices and apps. These updates often include fixes for known security issues, so it’s important to act on them as soon as they’re available.
This includes internet browsers, which are often targeted by scammers to steal your information.
Wi-Fi safety
Be cautious when using public Wi-Fi, especially in places like airports and hotels where scammers often set up fake networks to intercept your data. If you need to use it, use a VPN.
Don’t forget to secure your home Wi-Fi by updating your router’s default login details and consider setting up a guest network for visitors.
Staff are recommended to use the UniMelb VPN when accessing University systems remotely.
Real world security
Don’t leave your laptop or mobile devices unattended in public spaces, and always lock your screen when not in use. Biometrics like fingerprint or Face ID make unlocking again quick and secure.
Also be wary of public USB charging ports ; scammers can use them to steal your data (known as juice jacking). It’s much safer to carry a battery pack or your own charger and cable.
Protect your data
Use antivirus or malware protection on all computers. Many options are free or inexpensive.
Enable end-to-end encryption where available in messaging apps. This ensures no one can eavesdrop on your conversations, including the app providers themselves.
Back up your files regularly. At home, that could be to the cloud, external storage, or another secure service. Staff should avoid storing University information on external hard drives.