Keeping your information secure and out of the reach of cybercriminals has never been more important. Phishing attacks – a type of fraud meant to trick you into providing sensitive information – can happen through emails, text messages, or even phone calls. Typically, attackers disguise themselves as a trusted source in an attempt to steal confidential information.
Let’s discuss one cyber-attack method known as ‘Spear Phishing,’ which sadly isn’t a deep-sea spearfishing excursion. Instead, this term describes the most common phishing method, where cyber criminals target a specific individual or organization, typically through email. Simply put, cyber-criminals will send an email where it looks like it’s from a trusted source that you or your organization use regularly. However, this email will often want you to take action immediately, typically indicating that your account was compromised and requesting that you secure your account by using a provided link to login. This tactic aims to access sensitive information, such as login credentials, and cyber-criminals hope you won’t notice that it’s fake. The progression of AI in recent years has also made it much easier for cyber-criminals to create more individually tailored texts and emails in an effort to trick you.
If you ever suspect an email or text message may be fraudulent, ask yourself: Do I have an account with this agency, or do I know the person who just contacted me? If you answer no, this could be a phishing attempt, and it’s important to review the message carefully without clicking on any provided link. If you still aren’t sure, consider contacting the sender directly through a separate message to ensure the communication is valid.
Here at the ASRS, we are committed to keeping your account secure! One way you can help is to regularly update your password and username for added security. Another essential practice is keeping your myASRS account information up-to-date – we use this information to verify your identity anytime you call us with questions about your account.
Thinking before you click or provide information to someone you may not trust is a good habit of protecting yourself from accidentally falling victim to a cyber-criminal.
Other helpful cyber security tips:
- Never duplicate a password! Create a new password for each newly established account.
- Make your password long. Consider a phrase or multiple words; these are called passphrases.
- Do not include personal information in your passwords, such as pet names, year of birth, or the names or birthdates of loved ones.
- Never share your password.
- Include random symbols, numbers, and uppercase and lowercase letters.
- Avoid public WIFI whenever possible.
- Use a password manager. This allows your computer or cell phone to save your password for future use.
Updated 2/10/25
