October is Cyber Security Awareness Month     Securing Wellesley Logo

New for Students: SANS Security Training

Beginning with the 2021-2022 academic year, all students are required to complete data security training every year.  This training provides students not only with the basic knowledge to protect one’s own accounts and computer at the College from phishing, ransomware, and other cyber security threats, but also the foundation on how to stay safe online well into the future.

All first year students were asked to complete the SANS training via their Orientation checklist.  All students who have not completed the training in 2021 will need to do so by the end of the fall semester.  To confirm whether you have taken the training, please log into SANS here.

Students are strongly encouraged to complete the training before October 31 to be automatically entered in the raffle drawings as part of our programming for National Cyber Security Awareness Month.


Guest Speaker Event: Your data is under attack! Cybersecurity turned inside out - takeaways for you and our community

Speaker: Brian Kelly, Director of Cybersecurity Program at Educause
October 20th, 2021, 12:00pm, on Zoom - Register today!
Where we work, learn and teach has changed dramatically over the last two years, cybersecurity threats have also evolved and adapted to take advantage of the new borderless networks at most institutions. While our campus cybersecurity professionals have historically supported users, devices and applications on premise, this new reality has cybersecurity strategies turned inside out. This talk will highlight key strategies and collaborations that will help institutions protect their user communities (faculty, staff, students and parents) when threats are everywhere and constantly evolving.
Will discuss the increased importance of -
  • Collaboration, community and information security – All campus community members have a role. Think “only you can prevent wildfires”
  • You’ve got this… why your strategies are working – Reenforce the importance of DUO/MFA and ESET as the first layer of defense.
  • Shared experience – A story or two about lessons learned from EDUCAUSE members

Join us for this event to add an entry to our raffle! We'll draw a winner during the Q&A!


Tips of the Week:  Be Cyber Smart! 

  • Sign up for Duo two-factor authentication to protect your Wellesley Google Apps and Workday accounts.
    This is a new feature that protects your account by requiring phone authentication when logging in.
    Enable two-factor on any other accounts you have that offer it!
  • Use anti-virus software and keep it updated.
    ESET is available for college-owned machines 
  • Keep your web browser up to date.
    Chrome and Firefox are usually quick to flag suspicious websites.
    Go to Help > About in your browser to check for updates.
  • Monitor your credit card and bank accounts regularly.
    Visit the FTC website to get your free credit report.
    Some credit cards also provide credit check services.




Your password is important. Keep it strong. Keep it secret. Keep it safe.

Protect your passwords

  • Use different passwords for each of your accounts. This way, if one site is breached, you have limited your exposure and that username and password combination cannot be used successfully elsewhere
  • Never use your Wellesley password on other sites
  • If you need to store passwords, do so securely using a password manager. The College does not have a subscription for a password manager, but see this link of recent reviews.

Beware of Social Engineering




Fight the Phish!


Understand Social Engineering

  • Social Engineering: clever manipulation of the natural human tendency to trust
  • Something or someone creating a sense of urgency? Something suspicious? An institution reaching you in a new or differnet way than usual?
    • phone call? hang up
    • online chat? close the connection
    • email? don't reply and don't click on any links
  • Is it work-related? contact the Help Desk
  • Not sure if this outreach is legitimate? reach out to the company in question directly, through standard channels you know, and ask. Do not use a link provided or phone number provided in the suspicious email, for example


Cybersecurity First - we encourage you to put cybersecurity first year round! 



Raffle Information

We are running a number of raffles all month long! The more you participate, the greater number of entries you will have in the raffle.


Raffle Entry Option #1

All first year students were asked to complete the SANS training via their Orientation checklist. All students who have not completed the training in 2021 will need to do so by the end of the fall semester. Students who complete the training before October 31 will be automatically entered in the raffle drawings.


Raffle Entry Option #2

Attend our speaker event on October 20th, 2021, 12:00pm, on Zoom to be entered in a live raffle - drawing during the Q&A!


Raffle Entry Option #3

Fill out this Google Form! You must be signed into your Wellesley account to access the form.


In all cases, raffle entries will be tracked by your Wellesley email address and we will reach out to you directly via email if you've won! We will also update this site with the first names of the winners once announced. You must be a current student, faculty or staff to enter.


Raffle prizes are sponsored by Friends of the Library! Prizes include a hard copy of Code Girls: The untold story of the American women code breakers of World War II, a Wellesley hat, and a Wellesley tote bag!

Winners of this year's raffle:

Helen G.

Sally S.

Sarah G.

Nerine U.

Congrats to this year's winners, and thanks to everyone who participated!


Other Security Tips & Resources