The holidays are a great time to celebrate. Don't let criminals steal your good cheer! Be aware of scams that prey on your busy schedule and charitable giving. The FBI and Cybersecurity and Infrastructure Security Agency have observed an increase in ransomware attacks occurring on holidays and weekends. Protect yourself online to ensure a safe and happy holiday season.

Immediate actions you can take now to protect against ransomware:

• Be sure to back up your data.
• Keep your apps and devices up to date.
• Verify an email’s legitimacy before you open an attachment or link. It's best practice to be cautious with links and attachments received in email, no matter who sent the message.
• Check the sending address. The message could come from a fake or compromised account.
• Protect your personal information, connected devices, and university data with Two-Step Login and LastPass secure password management.
• Beware of unexpected Two-Step Login prompts and protect yourself against two-factor phishing scams.

Review these tips for safe online shopping from the National Cybersecurity Alliance. Plus, apply simple steps to help protect your mobile devices.

Watch out for email targeted to stir your emotions. Criminals try to knock you off balance with threats, a false sense of urgency, or a deal that's too good to be true. Stay vigilant against fraud and the many ways that cybercriminals can gain access to networks:

• Phishing scams, such as unsolicited emails posing as charitable organizations.
• Fraudulent sites spoofing reputable businesses—malicious actors often target popular sites for online holiday shopping.
• Unencrypted financial transactions. Make sure your information is encrypted.

If you suspect that you're a target of cybercrime, or if your Cornell account has been compromised, change your NetID password immediately and contact the IT Security Office.

Find out more about responding to cyber incidents and reporting cybercrime.