β Stay Vigilant: Cyber threats are constantly evolving. Following the best practices on this page helps protect you, your colleagues, and the district's data from phishing attacks, malware, and unauthorized access.
Email Best Practices
Email is one of the most common entry points for cyberattacks. Even a message that appears to come from someone you know can be part of a phishing attempt. Follow these guidelines to stay safe.
Be cautious with attachments and links
Even emails from friends or family can be compromised. Files and links can contain malware that weakens your computer's security. When in doubt, don't click.
Do your own typing
If an organization sends you a link or phone number, don't click it — search for the website or number yourself using a trusted search engine.
Make the call if you're not sure
Never respond to emails requesting personal or financial information. Phishers use pressure tactics and prey on fear. Call the sender directly to verify.
Turn on two-factor authentication
For accounts that support it, two-factor authentication (2FA) requires both your password and a second piece of information to log in, adding an important extra layer of security.
Back up your files regularly
Save copies of important files to an external hard drive or cloud storage. Regular backups protect you against viruses and ransomware attacks.
Report phishing emails and texts
If you receive a suspicious message, take a screenshot and forward it to IT. Do not forward the original message itself, as that can spread the threat.
βΉ Report phishing to IT: Forward a screenshot — not the original email — to Email or submit a help ticket so the district can alert others and take action.
User ID and Password Best Practices
Strong passwords are your first line of defense. A weak or reused password can expose your account — and district systems — to attackers. Follow these guidelines to keep your credentials secure.
-
Use a unique and lengthy password Passwords must be at least 8 characters and include an uppercase letter, a lowercase letter, a number, and a special character (e.g., %, @, !). Avoid common words or names.
-
Don't save passwords in your browser Passwords stored in browsers are not secure and can be accessed by anyone with access to your computer. Use a dedicated password manager instead.
-
Change your password at least twice a year Regular password changes limit the damage if your credentials have been exposed without your knowledge.
-
Use multifactor or two-factor authentication (MFA/2FA) Most organizations — including banks and Google — offer MFA. A free authenticator app (such as Google Authenticator) generates a one-time password (OTP) that adds a powerful extra layer of protection.
-
Never share your ID or password It may seem convenient, but sharing credentials is never worth the risk. Guard against prying eyes, shoulder surfing, and social engineering attempts.
Password Example
Here is what a strong password looks like compared to a weak one:
Includes uppercase, lowercase, number, and special character. Not a common dictionary word.
Too short, all lowercase, and a common dictionary word. Easily guessed by attackers.
Need Help?
If you have questions about internet safety, suspect your account has been compromised, or need to report a phishing attempt, contact the Technology Help Desk:
- Submit a ticket: Submit a ticket
- Phone: (951) 509-5000 — Monday through Friday, 7:30 AM to 4:30 PM
β Additional Resources: Visit Stay Safe Online for additional guidance on cybersecurity best practices for individuals and families.