Security
  • Menu
  • All Tips
  • FAQs
  • Categories
  • Guidelines
  • Data Security Support
  • Tools
  • Have I Been Pwned?
  • Pwned Passwords
  • Email Checker
  • Password Generator
  • My IP
  • Privacy
DATA PRIVACY NOTICE AND CONSENT FORM

Cloudstaff is committed to protecting the privacy of its data subjects, and ensuring the safety and security of personal data under its control and custody. This policy provides information on what personal data is gathered by Cloudstaff Security Tips about its current, past, and prospective employees; how it will use and process this; how it will keep this secure; and how it will dispose of it when it is no longer needed. This information is provided in compliance with the Philippine Republic Act No. 10173, also known as, the Data Privacy Act of 2012 (DPA) and its Implementing Rules and Regulations (DPA-IRR). It sets out Cloudstaffs’ data protection practices designed to safeguard the personal data of individuals it deals with, and also to inform such individuals of their rights under the Act.

The personal data obtained from this application is entered and stored within the Cloudstaff system and will only be accessed by the Cloudstaff’s authorized personnel. Cloudstaff have instituted appropriate organizational, technical and cloud security measures (Amazon Web Services Shared Responsibility) to ensure the protection of the users personal data.

Information collected will be automatically deleted after three (3) years inactivity.

Furthermore, the information collected and stored in the application are as follows:
  • Given Name
  • Family Name
  • Avatar [Profile Picture]

USER CONSENT

I have read the Data Privacy Statement and expressed my consent for Cloudstaff to collect, record, organize, update or modify, retrieve, consult, use, consolidate, block, erase or destruct my personal data as part of my information.

I hereby affirm my right to be informed, object to processing, access and rectify, suspend or withdraw my personal data, and be indemnified in case of damages pursuant to the provisions of the Republic Act No. 10173 of the Philippines, Data Privacy Act of 2012 and its corresponding Implementing Rules and Regulations.

If you want to exercise any of your rights, or if you have any questions about how we process your personal data, please contact Cloudstaff’s Data Protection Officer, through the following channel:

Email to privacy@cloudstaff.com

  • Log in Now
Have some tips? Write it down and share it to your friends!

Click Login Now button to start!


Look Twice, Click Once
 

Be cautious — not everything you see online is real. Scammers often create websites, emails, and messages that appear legitimate. Their goal is to trick you into clicking links, sharing information, or downloading harmful files. If something seems strange or suspicious, don’t rush to click or respond. Always take a moment to double-check and verify before taking any action. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 


July 24, 2025 16:59 (2 days, 1 hour ago) |  0 | QR Ready | 1 minute read
CISA Issues Warning on Ongoing Attacks Targeting SharePoint Systems
 

On July 22, 2025, CISA added two major Microsoft SharePoint flaws — CVE-2025-49704 (remote code execution) and CVE-2025-49706 (authentication bypass) — to its Known Exploited Vulnerabilities list after confirming active use in attacks. Federal agencies were ordered to patch by July 23. Microsoft reported that Chinese hacker groups, Linen Typhoon and Violet Typhoon, have been taking advantage of these bugs since early July using a method called “ToolShell,” which also involves CVE-2025-53770 and CVE-2025-53771.

These flaws allow attackers to install web shells, steal encryption keys, and gather system data. Some malware was disguised as harmless files like “debug.js.” While Microsoft recommends enabling AMSI for protection, researchers found it can be bypassed and stressed that patching is critical. Around 400 organizations are believed to be affected.

Mitigation Steps:

  • Keep your system and apps updated
  • Avoid suspicious links and...
    July 23, 2025 17:56 (3 days ago) |  0 | 1 minute read
Watch Out for Fake Mailbox Deactivation Notices
 

Cybercriminals often send emails claiming that your account is inactive or about to be shut down. These fake notices may ask you to “confirm” your access or click suspicious links.

How to stay safe:

  • Pause and inspect: Look for red flags such as spelling mistakes, unusual formatting, or urgent language.
  • Avoid clicking or replying: Never enter your login details through suspicious links.
  • Report it:
    • Report it via Uber Ticket [PB8324.3] to Data Security Support
    • report the email in Microsoft Outlook.
  • Verify directly: If you’re unsure, check with your IT team through official channels, not the ones provided in the suspicious message.

Staying alert helps keep everyone secure!

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support


July 23, 2025 17:39 (3 days ago) |  0 | QR Ready | 1 minute read
Never Let Typhoon Scams Sweep Away Your Data
 

Scammers often pretend to offer “calamity loans” to trick you into giving personal information or account access. Remember:

  • The official calamity loan assistance is processed only through the authorized government portal, not through random links, texts, or social media posts.
  • Micro-loans or small cash loans are only offered to eligible users inside the official app, no one will message you to process them for you.
  • Never click suspicious links or share your OTP, PIN, or personal details with anyone claiming they can “help” you get a loan.
  • Always check the official app or government website for legitimate loan details.

When in doubt, avoid clicking — report and block instead. Stay alert and stay safe!

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support


July 23, 2025 16:52 (3 days, 1 hour ago) |  1 | QR Ready | 1 minute read
OTP = One Trusted Person (You)
 

What Is OTP?
One-Time Passwords (OTPs) are temporary, unique codes sent to verify your identity during logins or transactions. They expire after use and are for you only.

Why Never Share Your OTP:

  • Protect your accounts from hackers
  • Prevent identity theft
  • Avoid financial loss
  • Real companies never ask for OTPs via calls, texts, or emails

What To Do:

  • Keep OTPs confidential
  • Use Two-Factor Authentication (2FA)
  • Only enter codes you requested
  • Warn others about OTP scams

“An OTP is personal — treat it like your identity!”

Do you have a question? Submit a ticket at [PB8324.3] Data...


July 22, 2025 17:05 (4 days, 1 hour ago) |  0 | QR Ready | 1 minute read
Name’s Known, Trust Unknown
 

Just because a message comes from a familiar name doesn’t mean it’s really from that person. Attackers can impersonate someone you know to gain your trust. It’s important to verify who is actually behind the message before taking any action. Be cautious with links, attachments, or requests for information. When unsure, reach out to the person directly using a separate contact method. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 


July 22, 2025 16:49 (4 days, 1 hour ago) |  0 | QR Ready | 1 minute read
No Key, No Peek
 

Always ensure your personal data is protected with strong encryption, whether you're storing files, sending emails, or using messaging apps. Without proper encryption, sensitive information like passwords, credit card numbers, private conversations, and emails can be accessed, altered, or stolen—putting you at risk of identity theft, financial loss, or legal consequences. Use trusted services that offer end-to-end encryption for messaging and email, and avoid platforms that rely on outdated or poorly implemented security.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support


July 21, 2025 16:39 (5 days, 1 hour ago) |  0 | QR Ready | 1 minute read
Two's Better Than One
 

Always enable Two-Factor Authentication (2FA) wherever it's available. It provides an extra layer of security beyond just your password. Typically, it requires a second step like a code sent to your phone or generated by an app. Even if someone steals your password, 2FA makes it much harder for them to access your account. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 


July 20, 2025 16:37 (6 days, 1 hour ago) |  0 | QR Ready | 1 minute read
Nothing Is Free
 

Public Wi-Fi is a convenient way to stay connected in places like cafes, airports, and malls, but it often comes with security risks. These networks are typically unsecured, making it easier for attackers to access your data or spy on your activity. To stay safe, avoid logging into sensitive accounts like banking or shopping, use a VPN to encrypt your connection, and disable automatic Wi-Fi connections and file sharing features to reduce the risk of unauthorized access.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support


July 17, 2025 16:56 (1 week, 3 days ago) |  0 | QR Ready | 1 minute read
Chrome Users Urged to Update After Security Bug Found
 

Google has released an important update for its Chrome browser after discovering a serious security flaw that hackers are already using in real-world attacks.

The issue, found in Chrome’s graphics system, could allow attackers to break out of the browser's security protections just by getting someone to visit a harmful website. This kind of security issue is dangerous because it doesn’t require users to click or download anything — simply opening the page could put their device at risk.

The flaw was discovered by Google’s own security team, which investigates high-level threats. While Google hasn’t shared exactly how the attacks work, the company confirmed that the flaw is being actively used and may be linked to targeted, possibly government-backed, cyberattacks.

This is the fifth major Chrome vulnerability to be fixed this year.

What You Should Do:

Update Chrome immediately to the latest...


July 16, 2025 17:11 (1 week, 3 days ago) |  0 | 2 minutes read
  • «
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • »
  • Last


Submit New Tip



  2021 © Mazer

Security Tips v2.0.1 | Crafted with by Saugi