Kansas State University

K-State has been targeted with a new PayPal scam. Scammers are impersonating PayPal and sending fake invoices. Their goal is to trick you into contacting them using the information provided on the invoice. 

If you call the number or send an email, you’ll reach a fake call center. The scammers will claim they can refund the charges but need your credit card or banking information. In some cases, they might convince you to start a remote “help session” to remove nonexistent software from your computer. Once connected, they can blank out your screen and perform malicious activities on your device without your knowledge. Continue reading “Tips to avoid current PayPal scam” →

As part of K-State’s continued commitment to safeguarding the university’s information and technology resources, the Division of Information Technology (IT) is pleased to announce that the 2025 Cybersecurity Training course will be released on Feb. 1, 2025. Details about the completion timeframe for this new training will be announced in January. We encourage all faculty, staff and student employees to watch for the announcement and be prepared to complete the updated course once it becomes available.

Transition period and temporary changes

To ease the burden during the winter break and to reduce disruptions in account access, the disabling of accounts due to incomplete 2024 Cybersecurity Training will be suspended as of Dec. 20, 2024. This temporary pause will ensure that individuals do not lose access to essential systems and resources over the winter break. IT will announce when normal account disablement procedures for non-compliance will resume.

Availability of 2024 Cybersecurity Training Continue reading “2025 Cybersecurity Training available Feb. 1: Temporary suspension of account disabling” →

Scammers use giveaways or low-priced offers to entice you to share personal information or to take your money. One such scheme making the rounds on social media is the fake Walmart Dell laptop offer. Be vigilant. Don’t fall for these types of scams.

How it works

Scammers create realistic-looking posts or ads on social media, often mimicking well-known companies’ branding. These ads claim you’ve been selected to receive a free or very low-priced laptop, phone, or other high-value item as part of a promotion. To claim the offer, you’re asked to click a link and provide personal information or pay a small “processing fee.”

Once scammers have your credit card information, they can make unauthorized purchases, drain your accounts, or sell your details. These actions can lead to financial losses and potential identity theft, making it critical to protect your data. Continue reading “Beware of giveaways” →

Black Friday gives cybercriminals a golden opportunity for scams. They can use social media, email messages and more to entice you to buy or share personal information. Follow these tips to stay safe during Black Friday.

• Phishing emails – Be cautious of emails promising exclusive deals. Scammers often mimic trusted retailers, but their links may lead to fake websites designed to steal your personal or payment information. Hover over links to check if the URL matches the retailer’s website or go directly to the retailer’s website instead of clicking links.
• Beware of fake social media ads – Social media is often used during the holiday season, and often times they are scams. Avoid clicking on ads from unknown brands. Pay attention to comments on the post. Other users may flag scams.
• Protect your personal information – Scammers may ask for unnecessary information during checkout. A legitimate retailer will only require the details needed to process your order.
• Keep your devices secure – Shopping on unsecured devices or public Wi-Fi can expose you to cyber threats. Use strong passwords and enable multi-factor authentication on accounts. Shop on your own device with up-to-date antivirus protection. Avoid entering payment information on public Wi-Fi unless you use a VPN.

Stay vigilant and keep your personal and financial information safe.

Social media is a powerful tool for connecting with friends, sharing experiences, and discovering new content. But it’s also a hotspot for scams. Cybercriminals use clever tactics to trick users into giving up personal information, money, or even access to their accounts. Follow these tips to learn how to spot these scams on social media.

Watch for Red Flags in Messages

Scammers often send messages that look like they’re from someone you know or a trusted company. These messages might ask for personal information, like your password or Social Security number, or try to get you to click on a suspicious link. Be cautious if:

• The message seems urgent or too good to be true.
• The person asks for money, especially through gift cards or wire transfers.
• The language or tone doesn’t sound like the person you know.

Be Wary of Unverified Accounts Continue reading “How to identify scams on social media” →

The holiday season is approaching, and gift card scams are a common tactic used to steal your money. Understanding how this scam works and staying alert can help you avoid becoming a victim.

How the gift card scam works

Gift card scams start with a call, text, email, or social media message. Scammers will try every trick to get you to buy gift cards and hand over the card number and PIN codes. :

Continue reading “Watch out for gift card scams: protect your money and stay safe” →

With the increasing reliance on digital tools and online platforms in education, it’s crucial to ensure that sensitive student information remains confidential and protected from unauthorized access.

Student data includes everything from names and contact details to grades, disciplinary records, and even health information. Unauthorized access or exposure of this data can lead to identity theft, reputational harm, and violations of privacy laws, such as FERPA (Family Educational Rights and Privacy Act). Continue reading “Protecting student data” →

Phishing scams are messages designed to look like they’re from a trusted source. You may open what you thought was a safe email, attachment or image only to find you have been exposed to malware or a scammer looking for your personal data. You can take precautions to protect your data. Be aware of the signs and report phishing to protect devices and data.

Recognize the common signs

• Urgent or emotionally appealing language.
• Requests to send personal or financial information.
• Unexpected attachments.
• Untrusted shortened URLs.
• Email addresses that do not match the supposed sender.
• Poor writing.

Resist and report

Think before you click. More than 90% of successful cyberattacks start with a phishing email. If you receive a suspected phishing email, immediately report the email to abuse@k-state.edu.

Delete

Delete the message. Don’t reply or click on any attachment or link, including any “unsubscribe” link. The unsubscribe button could also carry a link used
for phishing. Just delete.

If a message looks suspicious, it’s probably phishing. But even if there’s a possibility it could be real, don’t click any link, attachment or call any number.
Look up another way to contact a company or person directly: Go to a company’s website to find their contact information. Call the individual at a known number and confirm whether they sent the message

Our online world needs to be protected. There are easy things we can
do to ensure our information is safe from those wishing to steal it.

Recognize & report phishing

Most successful online intrusions result from a recipient of a “phishing”
message accidentally downloading malware or giving their personal
information to a spammer. Do not click or engage with these phishing
attempts. Instead, recognize them by their use of alarming language
or offers that are too good to be true.

Report the phish and delete phishing messages.

Use strong passwords

Simple passwords can be guessed. Make passwords at least
16 characters long, random and unique for each account.
Use a password manager, a secure program that maintains
and creates passwords. This easy-to-use program will store
passwords and fill them in automatically on the web. Continue reading “4 tips to stay safe online” →