{"id":6090,"date":"2017-12-06T12:19:08","date_gmt":"2017-12-06T17:19:08","guid":{"rendered":"https:\/\/michigan.it.umich.edu\/news\/?p=6090"},"modified":"2024-07-08T06:06:09","modified_gmt":"2024-07-08T10:06:09","slug":"self-phishing-guidelines","status":"publish","type":"post","link":"https:\/\/michigan.it.umich.edu\/news\/2017\/12\/06\/self-phishing-guidelines\/","title":{"rendered":"New U-M self-phishing guidelines &#038; norms"},"content":{"rendered":"<div id=\"attachment_6099\" style=\"width: 460px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-6099\" class=\"size-full wp-image-6099\" src=\"https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s.jpg\" alt=\"computer login and password on paper attached to a hook\" width=\"450\" height=\"306\" srcset=\"https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s.jpg 450w, https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s-125x85.jpg 125w, https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s-294x200.jpg 294w, https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s-60x42.jpg 60w\" sizes=\"auto, (max-width: 450px) 100vw, 450px\" \/><p id=\"caption-attachment-6099\" class=\"wp-caption-text\">Copyright: <a href=\"https:\/\/www.123rf.com\/profile_flynt\">flynt \/ 123RF Stock Photo<\/a><\/p><\/div>\n<p><span style=\"font-weight: 400;\">Are you interested in providing anti-phishing education through self-phishing in your unit? If so, be aware that any U-M unit considering such an effort is expected to abide by <\/span><a href=\"https:\/\/www.safecomputing.umich.edu\/protect-the-u\/protect-your-unit\/services\/simulated-phishing\"><span style=\"font-weight: 400;\">self-phishing guidelines and norms<\/span><\/a><span style=\"font-weight: 400;\"> from Information Assurance (IA).<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The guidelines are intended to contribute to the success of your anti-phishing efforts and to share IA expertise based in part on experience with U-M pilots of such programs. The guidelines specify, for example, that IA be be made aware of, review, and approve the campaign, unit leadership must sign off on self-phishing plans, and that Information and Technology Services (ITS) and\/or Health &amp; Information Technology Services must be included well before test messages are scheduled and sent to allow for support and planning.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Affected community members must be informed, before the campaign starts, that the anti-phishing activities will be taking place and that they will be participants. Anti-phishing training should be offered before and after the self-phishing campaign.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Before doing self-phishing, contact IA for consultation, reviews, and approvals through the<\/span> <a href=\"http:\/\/its.umich.edu\/help\"><span style=\"font-weight: 400;\">ITS Service Center<\/span><\/a><span style=\"font-weight: 400;\">. IA and Michigan Medicine have begun planning how to develop self-phishing services in the future that could be made available to U-M units. Staff members are reviewing the results of a <\/span><a href=\"https:\/\/www.safecomputing.umich.edu\/protect-the-u\/protect-your-unit\/services\/simulated-phishing-michigan-medicine\"><span style=\"font-weight: 400;\">pilot at Michigan Medicine<\/span><\/a><span style=\"font-weight: 400;\">, pulling together templates and materials that could be shared, and determining requirements for making such a service operational. UM-Flint staff consulted with IA on the recently completed <a href=\"https:\/\/michigan.it.umich.edu\/news\/2017\/11\/21\/flint-phishing-campaign\/\">UM-Flint phishing awareness campaign<\/a>.\u00a0<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Are you interested in providing anti-phishing education through self-phishing in your unit? If so, be aware that any U-M unit considering such an effort is expected to abide by self-phishing guidelines and norms from Information Assurance (IA). The guidelines are intended to contribute to the success of your anti-phishing efforts and to share IA expertise based in part\u2026 <span class=\"read-more\"><a href=\"https:\/\/michigan.it.umich.edu\/news\/2017\/12\/06\/self-phishing-guidelines\/\">Read More &raquo;<\/a><\/span><\/p>\n","protected":false},"author":24,"featured_media":6099,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_uag_custom_page_level_css":"","_umich_oidc_access":"","_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_ef_editorial_meta_date_first-draft-date":"","_ef_editorial_meta_paragraph_assignment":"","_ef_editorial_meta_checkbox_needs-photo":"","_ef_editorial_meta_number_word-count":"","footnotes":""},"categories":[27],"tags":[332,368,23],"class_list":["post-6090","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-safe-computing","tag-ia","tag-phishing","tag-security"],"uagb_featured_image_src":{"full":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s.jpg",450,306,false],"thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s-125x85.jpg",125,85,true],"medium":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s-294x200.jpg",294,200,true],"medium_large":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s.jpg",450,306,false],"large":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s.jpg",450,306,false],"1536x1536":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s.jpg",450,306,false],"2048x2048":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s.jpg",450,306,false],"excerpt-thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s-200x140.jpg",200,140,true],"themonic-thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s-60x42.jpg",60,42,true],"ioslider-thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s-450x300.jpg",450,300,true],"post-thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s.jpg",450,306,false],"400x250-crop":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2017\/12\/24914138_s.jpg",368,250,false]},"uagb_author_info":{"display_name":"Janet Eaton, ITS Information Assurance","author_link":"https:\/\/michigan.it.umich.edu\/news\/author\/jmfeaton\/"},"uagb_comment_info":0,"uagb_excerpt":"Are you interested in providing anti-phishing education through self-phishing in your unit? If so, be aware that any U-M unit considering such an effort is expected to abide by self-phishing guidelines and norms from Information Assurance (IA). The guidelines are intended to contribute to the success of your anti-phishing efforts and to share IA expertise&hellip;","_links":{"self":[{"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/posts\/6090","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/users\/24"}],"replies":[{"embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/comments?post=6090"}],"version-history":[{"count":6,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/posts\/6090\/revisions"}],"predecessor-version":[{"id":6123,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/posts\/6090\/revisions\/6123"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/media\/6099"}],"wp:attachment":[{"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/media?parent=6090"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/categories?post=6090"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/tags?post=6090"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}