As part of the state’s ongoing commitment to cybersecurity, the N.C. Department of Information Technology reminds everyone to remain vigilant when working online.
While we are all aware of the importance of online safety, it is especially important to stay alert during times of heightened global tensions. Geopolitical events can often lead to an increase in cyberactivity targeting organizations around the world.
Reminders for Working Online
- Be suspicious of unsolicited emails. Verify the sender and content before responding. Mark messages as spam.
- Follow up, if necessary. Contact the sender by phone or an alternative method if an email seems out of the ordinary or requests sensitive information.
- Think before you click. Avoid clicking on links or attachments in suspicious emails or text messages. Avoid shortened URLs, as they can be used in scams and phishing attempts.
- Verify links and email addresses. Hover over URLs and email addresses to be sure they are legitimate before clicking.
- Watch out for scams. Signs include urgency, scare tactics, scarcity of good deals or products, and threats to reveal information.
- Use unique, strong passwords. Use a different password for each of your online accounts. Avoid weak passwords that contain common information about you or your job, such as birthdays, sports teams, phone numbers or ZIP codes.
- Keep software up to date. Make sure your devices are running the latest version of operating systems and anti-virus software.
- Protect personal information. Avoid sharing sensitive information on social media or other online platforms. Use encryption when sending sensitive information via email.
- Stay informed. Regularly read about latest threats and subscribe to newsletters from reliable sources and security organizations. Participate in webinars and online courses to keep up to date with the latest best practices.
For more tips and information about online safety and privacy, please visit https://it.nc.gov/cybersecureNC.
Finally, if you are an employee of a state or local government agency or university or community college and think you have been a victim of a cyberattack, report it immediately to your IT service desk or security office.