Dear members of the Yale Community,
Social engineering remains a top concern. High-quality phishing attacks are increasing in frequency with the widespread use of generative artificial intelligence. We are responding with investment in next-generation email security and multi-factor authentication (MFA) technologies that will help combat these threats.
This past year, we sponsored two awareness campaigns – Bee SAFE, Not Sorry, and Click with Caution (Recognize, Relax, Rethink) to help the Yale community better identify and report suspicious phishing emails. We also introduced automation that locks employee email accounts after ninety days when users are no longer active community members. Limiting the number of active accounts further reduces Yale’s exposure to compromises.
In 2024, we will introduce innovations and policies to increase account and device security, safeguard research data, and allow leaders to understand departmental security concerns.
What can you do right now to start the year in a cyber-safe way? Build strong cyber habits.
- Participate in our New Year, New You campaign, including our campus-wide 21-Day Cyber Habit Challenge that starts February 1, and be entered to win a New Year, New You prize pack.
- Reinforce key cyber behaviors at our February lunch and learn series.
- Complete our 2024 Cybersecurity Awareness survey to help improve our program.
Thank you for your ongoing commitment to doing your part in protecting Yale's systems and mission. Together, we are creating the most secure Yale possible.
Assistant Vice President for IT & Chief Information Security Officer