Save $350 on Hands-on Cyber Security Training at SANS Sonoma 2019! Ends 11/21.

Security Awareness Tip of The Day


Welcome to the SANS Tip of the Day site. Each day we post a new tip that focuses on and explains a specific topic and actionable steps people can take to protect themselves, their family and their organization. In addition, each tip is linked to a respective OUCH! newsletter so you can learn more about the topic, in over 20 languages. The Tip of the Day program is distributed under the Creative Commons BY-NC-ND 4.0 license. You are welcome to use these tips within your organization or share with family and friends, the only limitation is you cannot modify them and must reference the source. If you have any suggestions or ideas for new tips please contact us at community@securingthehuman.org.

Go With Passphrases November 15, 2018

Passphrases are the strongest type of passwords and the easiest to remember. Simply use an entire sentence for your password, such as "What time is coffee?" By using spaces and punctuation, you create a long password that is hard to guess but easy to remember.

To learn more, check out this OUCH! newsletter.

Two-Step Verification November 14, 2018

Two-step verification is one of the best steps you can take to secure any account. Two-step verification is when you require both a password and code sent to or generated by your mobile device. Examples of services that support two-step verification include Gmail, Dropbox and Twitter.

To learn more, check out this OUCH! newsletter.


Ransomware November 13, 2018

Ransomware is a special type of malware. Once it infected your computer, it encrypts all of your files and demands you pay a ransome if you want your files back. Be suspicious of any emails trying to trick you into opening infected attachments or click on malicious links, common sense is your best defense. In addition. backups are often the only way you can recover from ransomware.

To learn more, check out this OUCH! newsletter.


Phishing November 12, 2018

Phishing is when an attacker attempts to fool you into clicking on a malicious link or opening an attachment in an email. Be suspicious of any email or online message that creates a sense of urgency, has bad spelling or addresses you as "Dear Customer."

To learn more, check out this OUCH! newsletter.


Cloud Security November 9, 2018

One of the most effective steps you can take to protect your cloud account is to make sure you are using two-step verification. In addition, always be sure you know exactly whom you are sharing files with. It is very easy to accidently share your files with the entire Internet when you think you are only sharing them with specific individuals.

To learn more, check out this OUCH! newsletter.

Tip of the Day Team

The Tip of the Day program is developed through a rigorous process involving numerous volunteers. These tips would not be possible without the hard work of the people below.

Advisory Board

  • Allison Hickman
  • Andrew Richter
  • Janet Roberts
  • Karen McDowell
  • Mariano M. Del Rio
  • Rhonda Kelly
  • Michael Sands
  • Ed Yuwono
  • Stephanye Schuyler
  • Mark Ryan del Mroal Talabis
  • Thomas McMahon
  • Vaman Amarjeet