September 28, 2006

Lansing – Governor Jennifer M. Granholm has proclaimed October as Cyber Security Awareness Month in Michigan and the Michigan Department of Information Technology (MDIT) is working to remind citizens to protect themselves while online.  With more Michigan citizens using the Internet than ever before and because of the increasing dependence on information technology in almost every facet of life, there is an increased need to take the necessary precaution.

“Access to the Internet and to online services is at an all-time high and that’s a good thing,” said Teri Takai, Director of MDIT and the Chief Information Officer for the State of Michigan.  “But there is no denying the fact that we face the threat of malicious attacks that can infringe on privacy and degrade service.  That’s why we are encouraging all Michigan citizens to learn about cyber security and then put that knowledge into practice in their homes, schools, workplaces, and businesses.”

There are eight critical cyber security practices:

1. Protect your personal information – With an estimated 10 million victims in the United States each year when it comes to identity theft, anyone can be a victim.  If you're asked for your personal information – your name, email or home address, phone number, account numbers, or Social Security number – learn how it's going to be used, and how it will be protected, before you share it. Don't open unsolicited or unknown email messages.  If you do get an email or pop-up message asking for personal information, don't reply or click on the link in the message.  Never send your personal information via email. 
2. Know who you are dealing with online -  Don't take the bait: and don't open unsolicited or unknown email messages; don't open attachments from people you don't know or don't expect; and never reply to or click on links in email or pop-ups that ask for personal information. Legitimate companies don't ask for this information via email. 
3. Use anti-virus software, a firewall, and anti-spyware software to help keep your computer safe and secure - Anti-virus software protects your computer from viruses that can destroy your data, slow your computer's performance, cause a crash, or even allow spammers to send email through your account.  To be effective, your anti-virus software should update routinely with antidotes to the latest "bugs" circulating through the Internet. Most commercial anti-virus software includes a feature to download updates automatically when you are on the Internet.
4. Be sure to set up your operating system and Web browser software properly, and update them regularly - Lessen your risk by changing the settings in your browser or operating system and increasing your online security.  Check the "Tools" or "Options" menus for built-in security features.
5. Use strong passwords or strong authentication technology to help protect your personal information - Keep your passwords in a secure place and out of plain view.  Don't share your passwords on the Internet, over email, or on the phone. Use passwords that have at least eight characters and include numerals and symbols and change your passwords regularly (at minimum, every 90 days).
6. Back up important files - No system is completely secure. If you have important files stored on your computer, copy them onto a removable disc, and store them in a secure place in a different building than your computer.  Also, make sure you keep your original software start-up disks handy and accessible for use in the event of a system crash.
7. Learn what to do if something goes wrong - If your computer gets hacked or infected by a virus, immediately unplug the phone or cable line from your machine. Then scan your entire computer with fully updated anti-virus software, and update your firewall.  You should also contact your Internet service provider.  If you believe you have mistakenly given your information to a fraudster, file a complaint at ftc.gov, and then visit the Federal Trade Commission's Identity Theft website at www.consumer.gov/idtheft to learn how to minimize your risk of damage from a potential theft of your identity.
8. Protect your children online - Keep your computer in a central and open location in your home and be aware of other computers your child may be using.  Discuss and set guidelines/rules for computer use with your children.  Use the Internet with your children. Familiarize yourself with your children's online activities and maintain a dialogue with your child about what applications they are using.  Implement parental control tools, but remember that no program is a substitute for parental supervision.  Know who your children's online friends are and supervise their chat areas.  Teach your children never to give out personal information to people they meet online such as in chat rooms or bulletin boards.  If you know of a child in immediate risk or danger, call law enforcement immediately.  

A national webcast is being held on Wednesday, October 4 entitled “Kids Safe Online” and it will consist of a play geared toward the 4th and 5th grade levels in which actors will perform a cyber security-related skit.  The play will be a fun and interactive way for children to learn more about cyber security and how to be careful in using computers and the Internet.  Additional information and registration is available online at:  http://www.cscic.state.ny.us/msisac/webcast/10_06/

“If we can get people to learn some of these practices and to take these necessary precautions, we can have a big impact on improving cyber security,” added Dan Lohrmann, the Chief Information Security Office for MDIT.  Lohrmann and his team within MDIT at the Office on Enterprise Security have led the implementation of the Secure Michigan Initiative to protect Michigan government computers and information from unauthorized access.

The following sites provide additional help toward increasing cyber security knowledge:
www.Michigan.gov/cybersecurity:
www.ikeepsafe.org:
www.staysafeonline.info/
www.uscert.gov