Security
  • Menu
  • All Tips
  • FAQs
  • Categories
  • Guidelines
  • Data Security Support
  • Tools
  • Have I Been Pwned?
  • Pwned Passwords
  • Email Checker
  • Password Generator
  • My IP
  • Privacy
DATA PRIVACY NOTICE AND CONSENT FORM

Cloudstaff is committed to protecting the privacy of its data subjects, and ensuring the safety and security of personal data under its control and custody. This policy provides information on what personal data is gathered by Cloudstaff Security Tips about its current, past, and prospective employees; how it will use and process this; how it will keep this secure; and how it will dispose of it when it is no longer needed. This information is provided in compliance with the Philippine Republic Act No. 10173, also known as, the Data Privacy Act of 2012 (DPA) and its Implementing Rules and Regulations (DPA-IRR). It sets out Cloudstaffs’ data protection practices designed to safeguard the personal data of individuals it deals with, and also to inform such individuals of their rights under the Act.

The personal data obtained from this application is entered and stored within the Cloudstaff system and will only be accessed by the Cloudstaff’s authorized personnel. Cloudstaff have instituted appropriate organizational, technical and cloud security measures (Amazon Web Services Shared Responsibility) to ensure the protection of the users personal data.

Information collected will be automatically deleted after three (3) years inactivity.

Furthermore, the information collected and stored in the application are as follows:
  • Given Name
  • Family Name
  • Avatar [Profile Picture]

USER CONSENT

I have read the Data Privacy Statement and expressed my consent for Cloudstaff to collect, record, organize, update or modify, retrieve, consult, use, consolidate, block, erase or destruct my personal data as part of my information.

I hereby affirm my right to be informed, object to processing, access and rectify, suspend or withdraw my personal data, and be indemnified in case of damages pursuant to the provisions of the Republic Act No. 10173 of the Philippines, Data Privacy Act of 2012 and its corresponding Implementing Rules and Regulations.

If you want to exercise any of your rights, or if you have any questions about how we process your personal data, please contact Cloudstaff’s Data Protection Officer, through the following channel:

Email to privacy@cloudstaff.com

  • Log in Now
Have some tips? Write it down and share it to your friends!

Click Login Now button to start!


Cloak of Invisibility
 

When exploring public Wi-Fi networks, it's crucial to arm yourself with the ultimate protection: a Virtual Private Network (VPN). With this powerful tool, your online presence is completely encrypted, rendering you invisible and impenetrable to anyone trying to spy on you. So, don't take any chances with your data; always remember to use a VPN whenever you go online in public places.

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

November 1, 2023 19:36 (on 11/2/23) |  1 | QR Ready | 1 minute read
Patchwork Hero
 

It is imperative that you update all software, including your operating system, applications, and antivirus tools. This action will fix any vulnerabilities and prevent malicious attackers from exploiting any weak points. Take charge of your digital realm and keep it safe by taking these necessary steps.

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

November 1, 2023 19:35 (on 11/2/23) |  0 | QR Ready | 1 minute read
Google's Alert: Unveiling Potential Exploits of Calendar Service as a Hidden C2 Communication Channel
 

Google has issued a warning regarding a potential threat wherein multiple actors are sharing a public proof-of-concept (PoC) exploit, known as the Google Calendar RAT (GCR). This tool utilizes Google Calendar Events within a Gmail account for command-and-control (C2) purposes. While it was first made public on GitHub in June 2023, it has not been observed in real-world usage as of yet. Nevertheless, Google's Mandiant threat intelligence unit has detected threat actors sharing the PoC on underground forums.

GCR, when installed on a compromised machine, periodically checks Google Calendar event descriptions for new commands, executes these commands on the target device, and updates the event description with command output. Notably, the tool exclusively utilizes legitimate infrastructure, making it challenging for defenders to identify suspicious activity. This situation underscores the...

November 6, 2023 16:34 (on 11/7/23) |  0 | 2 minutes read
Focus, Avoid Getting Confused
 

Beware of confusing text messages, as they could be a scammer's tactic to trick you. These messages may appear urgent and contain information not meant for you, such as a rescheduled meeting or a new date. Responding to such messages could lead to scammers luring you into adult websites or persuading you to invest in cryptocurrency. To protect yourself, it's best to ignore unfamiliar texts, avoid clicking on any links, and refrain from responding with the word 'STOP.' You can also block the number the message came from.

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

October 15, 2023 18:50 (on 10/16/23) |  0 | QR Ready | 1 minute read
Shield Against the Spear
 

Spear phishing is a targeted form of phishing that involves sending personalized emails to specific individuals. Attackers conduct extensive research on their victims and create convincing messages to exploit their trust. To identify spear phishing attempts, be wary of emails that seem to be from people you know but exhibit an unfamiliar tone, insist on urgent action, or originate from personal email accounts despite being work-related.

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

October 15, 2023 18:47 (on 10/16/23) |  0 | QR Ready | 1 minute read
Home Network Warding
 

If you're working remotely, it's important to secure your home network to ensure your online safety. One of the first steps you can take is to change the default password on your router. Hackers often target default passwords as they are easily accessible online. 

Another important step is to enable WPA3 encryption on your router. This provides a more secure way of protecting your network compared to the older WPA2 encryption which can be more easily breached. 

It's also recommended to rename your Wi-Fi network to something inconspicuous. This can help to prevent potential intruders from identifying your network and attempting to hack into it. 

By taking these steps, you can ensure that your home network is more secure and less vulnerable to cyber attacks.

November 1, 2023 20:40 (on 11/2/23) |  2 | QR Ready | 1 minute read

The Bot Scam
 

It has become increasingly important to be aware of the use of automated programs, also known as bots, in the scam known as one-time password (OTP) fraud. This scam involves tricking people into divulging the two-factor authentication codes they receive via text or email from financial institutions. The bot may make a robocall or send a text, posing as a bank, to request approval for a transaction. It then prompts the victim to enter the received authentication code if the transaction appears unfamiliar. However, the bot's true intention is to gain access to the victim's bank account using the security code sent by the bank.

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

October 15, 2023 18:50 (on 10/16/23) |  0 | QR Ready | 1 minute read
Cloudstaff Cybersecurity Training
 

Cloudstaff's Data Security Team is dedicated to delivering top-tier cybersecurity education to our employees. Here's their routine to bolster Cloudstaff's data security:

  • Awareness: Ensure employees are well-informed about cybersecurity threats and understand the potential impacts on our organization.
  • Phishing Simulation: Conduct simulated phishing attacks to evaluate employees' capacity to recognize and counter phishing attempts, enhancing their preparedness.
  • Password Policies: Enforce robust password complexity rules and offer guidance on secure password practices to fortify account security.
  • Reporting Incidents: Establish clear incident reporting procedures to encourage prompt and accurate reporting, while providing incentives for responsible reporting behavior.

November 1, 2023 19:01 (on 11/2/23) |  1 | QR Ready | 1 minute read

Check Before Installing Apps 
 

Before downloading and installing any application, it is important to take the necessary precautions to ensure your device's safety and security. Always verify the app's source, check its permissions and user reviews, and make sure it has strong security features and receives regular updates. Additionally, be cautious of any risks associated with third-party integrations and carefully review user agreements. Conducting thorough online research can also help minimize the risk of installing potentially harmful applications. 

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

October 15, 2023 18:48 (on 10/16/23) |  0 | QR Ready | 1 minute read
The Cyber Bullying Stops Here!
 

If you're experiencing online harassment on social media, there are ways to customize your settings to limit who can respond to your posts. For instance, you can adjust your preferences so that only individuals you know or mention can reply to your updates. Simply update your settings that allow you to control who can interact with your posts.

Got questions? Submit a ticket at [PB8324.3] Data Security Support.

October 15, 2023 18:48 (on 10/16/23) |  0 | QR Ready | 1 minute read
  • First
  • «
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • »
  • Last


Submit New Tip



  2021 © Mazer

Security Tips v2.0.1 | Crafted with by Saugi